quasar | 99db4a991bf7ea42e196b4c3f7374e132c07a7f46cf5ae2917559f5e36ee8cc6

Analysis

max time kernel
209s
max time network
210s
platform
windows11-21h2_x64
resource
win11-20241023-en
resource tags

arch:x64arch:x86image:win11-20241023-enlocale:en-usos:windows11-21h2-x64system
submitted
04/01/2025, 21:13 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a.html
Size

1KB
MD5

177aba1e5662a7962dd89c81d9544308
SHA1

685f8e7bf4b0849ea0546d1616bd351a47e3b31a
SHA256

99db4a991bf7ea42e196b4c3f7374e132c07a7f46cf5ae2917559f5e36ee8cc6
SHA512

35b9a0e8ec9570f844e959fdbd802b2c370006514fd245a25951b865b8627a41963d608242cdce6e20edd633f7b1982e16bf508c7f4b61a481f1a98162b5a2ac

Score

10^/10

quasar roblox executor defense_evasion discovery spyware trojan

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

ROBLOX EXECUTOR

192.168.50.1:4782

10.0.0.113:4782

LETSQOOO-62766.portmap.host:62766

89.10.178.51:4782

Mutex

90faf922-159d-4166-b661-4ba16af8650e

Attributes

encryption_key
FFEE70B90F5EBED6085600C989F1D6D56E2DEC26
install_name
windows 3543.exe
log_directory
roblox executor
reconnect_delay
3000
startup_key
windows background updater
subdirectory
windows updater

Signatures

Quasar RAT
Quasar is an open source Remote Access Tool.
trojan spyware quasar
Quasar family
quasar

Quasar payload 2 IoCs

resource	yara_rule
behavioral1/files/0x001a00000002aac9-192.dat	family_quasar
behavioral1/memory/2220-237-0x0000000000A80000-0x0000000000DA4000-memory.dmp	family_quasar

Downloads MZ/PE file

Executes dropped EXE 6 IoCs

pid	Process
2220	JJSPLOIT.V2.exe
1348	JJSPLOIT.V2.exe
2324	JJSPLOIT.V2.exe
4504	windows 3543.exe
3368	windows 3543.exe
1728	windows 3543.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 1 IoCs

Web Service

T1102

flow	ioc
110	raw.githubusercontent.com

Subvert Trust Controls: Mark-of-the-Web Bypass 1 TTPs 1 IoCs

When files are downloaded from the Internet, they are tagged with a hidden NTFS Alternate Data Stream (ADS) named Zone.Identifier with a specific value known as the MOTW.

defense_evasion

SIP and Trust Provider Hijacking

T1553.003

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\JJSPLOIT.V2.exe:Zone.Identifier	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 7 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	AcroRd32.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	RdrCEF.exe

System Network Configuration Discovery: Internet Connection Discovery 1 TTPs 2 IoCs

Adversaries may check for Internet connectivity on compromised systems.

discovery

Internet Connection Discovery

T1016.001

pid	Process
3048	PING.EXE
1140	PING.EXE

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	AcroRd32.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	AcroRd32.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION	AcroRd32.exe

Modifies registry class 58 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByKey:PID = "0"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\MRUListEx = ffffffff	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\LogicalViewMode = "1"	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4"	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	msedge.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\Shell\SniffedFolderType = "Generic"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1"	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 020000000000000001000000ffffffff	OpenWith.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202020202	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616257"	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202020202	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByDirection = "1"	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\Shell	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\FFlags = "1092616257"	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupView = "0"	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}"	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\FFlags = "1"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\MRUListEx = 0100000000000000ffffffff	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\MRUListEx = ffffffff	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\Shell\SniffedFolderType = "Documents"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}"	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0"	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\Shell	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\IconSize = "16"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 00000000ffffffff	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1 = 8c003100000000005759a776110050524f4752417e310000740009000400efbec55259615759a7762e0000003f0000000000010000000000000000004a000000000011542600500072006f006700720061006d002000460069006c0065007300000040007300680065006c006c00330032002e0064006c006c002c002d0032003100370038003100000018000000	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\NodeSlot = "5"	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2 = 14002e80922b16d365937a46956b92703aca08af0000	OpenWith.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 0000000001000000ffffffff	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1"	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\NodeSlot = "6"	OpenWith.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\Mode = "4"	OpenWith.exe

NTFS ADS 2 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\JJSPLOIT.V2.exe:Zone.Identifier	msedge.exe
File opened for modification	C:\Users\Admin\Downloads\JJsploit-2.1.0.zip:Zone.Identifier	msedge.exe

Runs ping.exe 1 TTPs 2 IoCs

Remote System Discovery

T1018

pid	Process
3048	PING.EXE
1140	PING.EXE

Scheduled Task/Job: Scheduled Task 1 TTPs 4 IoCs

Schtasks is often used by malware for persistence or to perform post-infection execution.

persistence execution

Scheduled Task

T1053.005

pid	Process
244	schtasks.exe
1420	schtasks.exe
3812	schtasks.exe
5052	schtasks.exe

Suspicious behavior: EnumeratesProcesses 16 IoCs

pid	Process
1352	msedge.exe
1352	msedge.exe
3144	msedge.exe
3144	msedge.exe
4268	msedge.exe
4268	msedge.exe
2616	identity_helper.exe
2616	identity_helper.exe
1508	msedge.exe
1508	msedge.exe
3832	msedge.exe
3832	msedge.exe
224	msedge.exe
224	msedge.exe
224	msedge.exe
224	msedge.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
760	OpenWith.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 36 IoCs

pid	Process
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe

Suspicious use of AdjustPrivilegeToken 8 IoCs

description	pid	Process
Token: SeDebugPrivilege	2220	JJSPLOIT.V2.exe
Token: SeDebugPrivilege	1348	JJSPLOIT.V2.exe
Token: SeDebugPrivilege	2324	JJSPLOIT.V2.exe
Token: SeDebugPrivilege	3504	JJSPLOIT.V2.exe
Token: SeDebugPrivilege	2564	JJSPLOIT.V2.exe
Token: SeDebugPrivilege	2940	JJSPLOIT.V2.exe
Token: SeDebugPrivilege	3368	windows 3543.exe
Token: SeDebugPrivilege	1728	windows 3543.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe

Suspicious use of SendNotifyMessage 12 IoCs

pid	Process
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe
3144	msedge.exe

Suspicious use of SetWindowsHookEx 34 IoCs

pid	Process
2896	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
760	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
2884	OpenWith.exe
4460	AcroRd32.exe
4460	AcroRd32.exe
4460	AcroRd32.exe
4460	AcroRd32.exe
3368	windows 3543.exe
1728	windows 3543.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3144 wrote to memory of 1868	3144	msedge.exe	77
PID 3144 wrote to memory of 1868	3144	msedge.exe	77
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 4548	3144	msedge.exe	78
PID 3144 wrote to memory of 1352	3144	msedge.exe	79
PID 3144 wrote to memory of 1352	3144	msedge.exe	79
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80
PID 3144 wrote to memory of 5064	3144	msedge.exe	80

Uses Task Scheduler COM API 1 TTPs
The Task Scheduler COM API can be used to schedule applications to run on boot or at set times.
persistence

Query Registry
T1012

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument C:\Users\Admin\AppData\Local\Temp\a.html
1⤵
- Enumerates system info in registry
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3144
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff846df3cb8,0x7ff846df3cc8,0x7ff846df3cd8
  2⤵
  PID:1868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1920 /prefetch:2
  2⤵
  PID:4548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2360 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1352
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2636 /prefetch:8
  2⤵
  PID:5064
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3112 /prefetch:1
  2⤵
  PID:2948
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3136 /prefetch:1
  2⤵
  PID:3116
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4016 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4268
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1856 /prefetch:1
  2⤵
  PID:3496
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5140 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2616
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5124 /prefetch:1
  2⤵
  PID:748
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3912 /prefetch:1
  2⤵
  PID:5048
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1968 /prefetch:1
  2⤵
  PID:3172
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4180 /prefetch:1
  2⤵
  PID:1496
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5180 /prefetch:1
  2⤵
  PID:1648
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5820 /prefetch:8
  2⤵
  PID:3856
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4092 /prefetch:8
  2⤵
  - Subvert Trust Controls: Mark-of-the-Web Bypass
  - NTFS ADS
  - Suspicious behavior: EnumeratesProcesses
  PID:1508
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6540 /prefetch:1
  2⤵
  PID:1408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5308 /prefetch:8
  2⤵
  - NTFS ADS
  - Suspicious behavior: EnumeratesProcesses
  PID:3832
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6232 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:224
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3612 /prefetch:1
  2⤵
  PID:2436
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6764 /prefetch:1
  2⤵
  PID:2288
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4652 /prefetch:1
  2⤵
  PID:3328
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6788 /prefetch:1
  2⤵
  PID:4052
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5628 /prefetch:1
  2⤵
  PID:1120
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1652 /prefetch:1
  2⤵
  PID:860
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7052 /prefetch:1
  2⤵
  PID:4344
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1
  2⤵
  PID:2612
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6836 /prefetch:1
  2⤵
  PID:4864
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6124 /prefetch:1
  2⤵
  PID:200
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2512 /prefetch:1
  2⤵
  PID:4208
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3704 /prefetch:1
  2⤵
  PID:4484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7024 /prefetch:1
  2⤵
  PID:4072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5868 /prefetch:1
  2⤵
  PID:424
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6740 /prefetch:1
  2⤵
  PID:4276
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6900 /prefetch:1
  2⤵
  PID:1532
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
  2⤵
  PID:2840
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5924 /prefetch:1
  2⤵
  PID:2940
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4088 /prefetch:1
  2⤵
  PID:2400
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4828 /prefetch:1
  2⤵
  PID:2744
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7008 /prefetch:1
  2⤵
  PID:4760
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6868 /prefetch:1
  2⤵
  PID:2412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5984 /prefetch:1
  2⤵
  PID:4224
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5156 /prefetch:1
  2⤵
  PID:4828
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7520 /prefetch:1
  2⤵
  PID:1380
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=7764 /prefetch:8
  2⤵
  PID:4656
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6720 /prefetch:1
  2⤵
  PID:2376
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7460 /prefetch:1
  2⤵
  PID:5016
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1912,1069479955248891806,16131867924077937831,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5688 /prefetch:8
  2⤵
  PID:2428

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2480

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:380

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:3340

C:\Users\Admin\Downloads\JJSPLOIT.V2.exe
"C:\Users\Admin\Downloads\JJSPLOIT.V2.exe"
1⤵
- Executes dropped EXE
- Suspicious use of AdjustPrivilegeToken
PID:2220

C:\Users\Admin\Downloads\JJSPLOIT.V2.exe
"C:\Users\Admin\Downloads\JJSPLOIT.V2.exe"
1⤵
- Executes dropped EXE
- Suspicious use of AdjustPrivilegeToken
PID:1348

C:\Users\Admin\Downloads\JJSPLOIT.V2.exe
"C:\Users\Admin\Downloads\JJSPLOIT.V2.exe"
1⤵
- Executes dropped EXE
- Suspicious use of AdjustPrivilegeToken
PID:2324

C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\JJSPLOIT.V2.exe
"C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\JJSPLOIT.V2.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:3504
- C:\Windows\SYSTEM32\schtasks.exe
  "schtasks" /create /tn "windows background updater" /sc ONLOGON /tr "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe" /rl HIGHEST /f
  2⤵
  - Scheduled Task/Job: Scheduled Task
  PID:5052
- C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe
  "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe"
  2⤵
  - Executes dropped EXE
  PID:4504
- - C:\Windows\SYSTEM32\schtasks.exe
    "schtasks" /create /tn "windows background updater" /sc ONLOGON /tr "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe" /rl HIGHEST /f
    3⤵
    - Scheduled Task/Job: Scheduled Task
    PID:244
- - C:\Windows\system32\cmd.exe
    C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\AppData\Local\Temp\3lhcv5Yx0m0C.bat" "
    3⤵
    PID:1900
  - - C:\Windows\system32\chcp.com
      chcp 65001
      4⤵
      PID:3088
  - - C:\Windows\system32\PING.EXE
      ping -n 10 localhost
      4⤵
      System Network Configuration Discovery: Internet Connection Discovery
      Runs ping.exe
      PID:3048
  - - C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe
      "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe"
      4⤵
      Executes dropped EXE
      Suspicious use of AdjustPrivilegeToken
      Suspicious use of SetWindowsHookEx
      PID:3368
    - - C:\Windows\SYSTEM32\schtasks.exe
        
        "schtasks" /create /tn "windows background updater" /sc ONLOGON /tr "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe" /rl HIGHEST /f
        5⤵
        Scheduled Task/Job: Scheduled Task
        
        PID:1420
    - - C:\Windows\system32\cmd.exe
        
        C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\AppData\Local\Temp\dmIXD6z6Aqtg.bat" "
        5⤵
        
        PID:4916
      - C:\Windows\system32\chcp.com
        
        chcp 65001
        6⤵
        
        PID:5076
      - C:\Windows\system32\PING.EXE
        
        ping -n 10 localhost
        6⤵
        System Network Configuration Discovery: Internet Connection Discovery
        Runs ping.exe
        
        PID:1140
      - C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe
        
        "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe"
        6⤵
        Executes dropped EXE
        Suspicious use of AdjustPrivilegeToken
        Suspicious use of SetWindowsHookEx
        
        PID:1728
        
        C:\Windows\SYSTEM32\schtasks.exe
        
        "schtasks" /create /tn "windows background updater" /sc ONLOGON /tr "C:\Users\Admin\AppData\Roaming\windows updater\windows 3543.exe" /rl HIGHEST /f
        7⤵
        Scheduled Task/Job: Scheduled Task
        
        PID:3812

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:2896

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:760

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:2884
- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
  "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\README.md"
  2⤵
  - System Location Discovery: System Language Discovery
  - Checks processor information in registry
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:4460
- - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
    "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
    3⤵
    - System Location Discovery: System Language Discovery
    PID:4448
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=6BAD1054A547EB3FA6418BCE32AEE850 --mojo-platform-channel-handle=1768 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:2016
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=56F63FCA77B30E16DD5D79507532B23F --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=56F63FCA77B30E16DD5D79507532B23F --renderer-client-id=2 --mojo-platform-channel-handle=1776 --allow-no-sandbox-job /prefetch:1
      4⤵
      System Location Discovery: System Language Discovery
      PID:836
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=41D57C8215C4E8B115E943F52A6716D6 --mojo-platform-channel-handle=2340 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:1928
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=37F8E02EEE4D5CA2D97CF17B5DAAE6C6 --mojo-platform-channel-handle=1984 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:752
  - - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
      "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=8D7E4F333D504835E1D913974A180A5F --mojo-platform-channel-handle=2392 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
      4⤵
      System Location Discovery: System Language Discovery
      PID:720

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3932

C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\JJSPLOIT.V2.exe
"C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\JJSPLOIT.V2.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2564

C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\JJSPLOIT.V2.exe
"C:\Users\Admin\Downloads\JJsploit-2.1.0\JJsploit-2.1.0\JJSPLOIT.V2.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:2940

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004D4 0x00000000000004BC
1⤵
PID:1992

Network

GET

https://github.com/TOP-executors/JJsploit/releases

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /TOP-executors/JJsploit/releases HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: GitHub.com
date: Sat, 04 Jan 2025 21:14:20 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ab14dd132290d6d63369dd883455d766"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
set-cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.1531087685.1736025259; Path=/; Domain=github.com; Expires=Sun, 04 Jan 2026 21:14:19 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Sun, 04 Jan 2026 21:14:19 GMT; HttpOnly; Secure; SameSite=Lax
accept-ranges: bytes
x-github-request-id: C268:0ACB:47711A2:58623AB:6779A4AB
GET

https://github.com/TOP-executors/JJsploit/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /TOP-executors/JJsploit/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no

Response

HTTP/2.0 200

server: GitHub.com
date: Sat, 04 Jan 2025 21:14:20 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: C268:0ACB:4771209:586242E:6779A4AC
GET

https://github.com/manifest.json

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /manifest.json HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Sat, 04 Jan 2025 21:14:19 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=604800, public
etag: W/"c75e05794d72230a695e880f1a6c83a4"
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-type: application/manifest+json; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
content-length: 474
x-github-request-id: C268:0ACB:4771253:5862483:6779A4AD
GET

https://github.com/TOP-executors/JJsploit/releases/expanded_assets/v2.1.0

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /TOP-executors/JJsploit/releases/expanded_assets/v2.1.0 HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sat, 04 Jan 2025 21:14:24 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7e5fdabdde782cc09782e92c8e1b25de"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: f2020cb85998e79496a5a097246665bb9162f80a49c6bac3d1259c4417fa1b5d
accept-ranges: bytes
content-length: 1174
x-github-request-id: C268:0ACB:4771337:586259D:6779A4AD
GET

https://github.com/TOP-executors/JJsploit/releases/download/v2.1.0/JJSPLOIT.V2.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /TOP-executors/JJsploit/releases/download/v2.1.0/JJSPLOIT.V2.exe HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sat, 04 Jan 2025 21:14:42 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/877772159/a8b6bd16-5f97-4a30-8808-65c761396f62?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250104%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250104T211442Z&X-Amz-Expires=300&X-Amz-Signature=840c7291c90a716de7c926c5ed30d27b8326cdac4e1684864feb10157d394513&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DJJSPLOIT.V2.exe&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C268:0ACB:4771B10:5862F2F:6779A4B0
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR

Response
DNS

github-cloud.s3.amazonaws.com

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.234.233

s3-w.us-east-1.amazonaws.com

IN A

54.231.159.9

s3-w.us-east-1.amazonaws.com

IN A

52.217.124.201

s3-w.us-east-1.amazonaws.com

IN A

3.5.29.207

s3-w.us-east-1.amazonaws.com

IN A

54.231.228.233

s3-w.us-east-1.amazonaws.com

IN A

16.182.36.209

s3-w.us-east-1.amazonaws.com

IN A

52.217.124.113

s3-w.us-east-1.amazonaws.com

IN A

52.217.174.241
DNS

210.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.156.26.20.in-addr.arpa

IN PTR

Response
DNS

ctldl.windowsupdate.com

Remote address:

8.8.8.8:53

Request

ctldl.windowsupdate.com

IN A

Response

ctldl.windowsupdate.com

IN CNAME

ctldl.windowsupdate.com.delivery.microsoft.com

ctldl.windowsupdate.com.delivery.microsoft.com

IN CNAME

wu-b-net.trafficmanager.net

wu-b-net.trafficmanager.net

IN CNAME

bg.microsoft.map.fastly.net

bg.microsoft.map.fastly.net

IN A

199.232.214.172

bg.microsoft.map.fastly.net

IN A

199.232.210.172
DNS

nexusrules.officeapps.live.com

Remote address:

8.8.8.8:53

Request

nexusrules.officeapps.live.com

IN A

Response

nexusrules.officeapps.live.com

IN CNAME

prod.nexusrules.live.com.akadns.net

prod.nexusrules.live.com.akadns.net

IN A

52.111.227.11
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.170

e86303.dscx.akamaiedge.net

IN A

92.123.128.173

e86303.dscx.akamaiedge.net

IN A

92.123.128.168

e86303.dscx.akamaiedge.net

IN A

92.123.128.174

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.164

e86303.dscx.akamaiedge.net

IN A

92.123.128.175

e86303.dscx.akamaiedge.net

IN A

92.123.128.165

e86303.dscx.akamaiedge.net

IN A

92.123.128.171
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.137

e86303.dscx.akamaiedge.net

IN A

92.123.128.134

e86303.dscx.akamaiedge.net

IN A

92.123.128.138

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.132

e86303.dscx.akamaiedge.net

IN A

92.123.128.194

e86303.dscx.akamaiedge.net

IN A

92.123.128.191

e86303.dscx.akamaiedge.net

IN A

92.123.128.192

e86303.dscx.akamaiedge.net

IN A

92.123.128.136
DNS

r.bing.com

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.132

e86303.dscx.akamaiedge.net

IN A

92.123.128.185

e86303.dscx.akamaiedge.net

IN A

92.123.128.193

e86303.dscx.akamaiedge.net

IN A

92.123.128.192

e86303.dscx.akamaiedge.net

IN A

92.123.128.186

e86303.dscx.akamaiedge.net

IN A

92.123.128.194

e86303.dscx.akamaiedge.net

IN A

92.123.128.188

e86303.dscx.akamaiedge.net

IN A

92.123.128.189

e86303.dscx.akamaiedge.net

IN A

92.123.128.187
DNS

137.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

137.128.123.92.in-addr.arpa

IN PTR

Response

137.128.123.92.in-addr.arpa

IN PTR

a92-123-128-137deploystaticakamaitechnologiescom
DNS

137.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

137.128.123.92.in-addr.arpa

IN PTR
DNS

83.210.23.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

83.210.23.2.in-addr.arpa

IN PTR

Response

83.210.23.2.in-addr.arpa

IN PTR

a2-23-210-83deploystaticakamaitechnologiescom
DNS

github.githubassets.com

Remote address:

8.8.8.8:53

Request

github.githubassets.com

IN A

Response

github.githubassets.com

IN A

185.199.109.154

github.githubassets.com

IN A

185.199.108.154

github.githubassets.com

IN A

185.199.110.154

github.githubassets.com

IN A

185.199.111.154
DNS

133.109.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.109.199.185.in-addr.arpa

IN PTR

Response

133.109.199.185.in-addr.arpa

IN PTR

cdn-185-199-109-133githubcom
DNS

nav.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-3.ukwest.cloudapp.azure.com

prod-agic-uw-3.ukwest.cloudapp.azure.com

IN A

51.11.108.188
DNS

github.com

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

Remote address:

8.8.8.8:53

Request

github.com

IN A
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

user-images.githubusercontent.com

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.109.133

user-images.githubusercontent.com

IN A

185.199.110.133

user-images.githubusercontent.com

IN A

185.199.108.133

user-images.githubusercontent.com

IN A

185.199.111.133
DNS

api.github.com

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
DNS

objects.githubusercontent.com

Remote address:

8.8.8.8:53

Request

objects.githubusercontent.com

IN A

Response

objects.githubusercontent.com

IN A

185.199.111.133

objects.githubusercontent.com

IN A

185.199.110.133

objects.githubusercontent.com

IN A

185.199.108.133

objects.githubusercontent.com

IN A

185.199.109.133
DNS

216.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

216.156.26.20.in-addr.arpa

IN PTR

Response
DNS

github-cloud.s3.amazonaws.com

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.0.19

s3-w.us-east-1.amazonaws.com

IN A

52.217.48.36

s3-w.us-east-1.amazonaws.com

IN A

52.217.232.177

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.250

s3-w.us-east-1.amazonaws.com

IN A

3.5.25.217

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.182

s3-w.us-east-1.amazonaws.com

IN A

52.217.115.65

s3-w.us-east-1.amazonaws.com

IN A

52.217.116.177
DNS

LETSQOOO-62766.portmap.host

Remote address:

8.8.8.8:53

Request

LETSQOOO-62766.portmap.host

IN A

Response
DNS

LETSQOOO-62766.portmap.host

Remote address:

8.8.8.8:53

Request

LETSQOOO-62766.portmap.host

IN A
DNS

LETSQOOO-62766.portmap.host

Remote address:

8.8.8.8:53

Request

LETSQOOO-62766.portmap.host

IN A
DNS

LETSQOOO-62766.portmap.host

Remote address:

8.8.8.8:53

Request

LETSQOOO-62766.portmap.host

IN A
GET

https://github.githubassets.com/assets/light-0cfd1fd8509e.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/light-0cfd1fd8509e.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 20 Nov 2024 21:24:18 GMT
etag: "0x8DD09A9B15EC064"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2668004
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 141, 46701
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7a60c156074994af9ab4aac89e71945b2ef8a7e1
content-length: 6899
GET

https://github.githubassets.com/assets/dark-d782f59290e2.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/dark-d782f59290e2.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 17 Dec 2024 18:43:31 GMT
etag: "0x8DD1ECAB43210B5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1374343
x-served-by: cache-iad-kjyo7100094-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 26329
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ab701fea8ce5d09901536f403d4f5a1a0e5e2cba
content-length: 39148
GET

https://github.githubassets.com/assets/primer-primitives-953961b66e63.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/primer-primitives-953961b66e63.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 11 Dec 2024 17:38:33 GMT
etag: "0x8DD1A0AA2CE9848"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2015877
x-served-by: cache-iad-kcgs7200156-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 9, 43840
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 881f823be628d9f87a987c43031890a7384d8d6f
content-length: 2591
GET

https://github.githubassets.com/assets/primer-4430d3c2c150.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/primer-4430d3c2c150.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 20 Nov 2024 21:24:16 GMT
etag: "0x8DD09A9B01484BC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2668001
x-served-by: cache-iad-kiad7000027-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 139, 47052
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e029f45be78125ae00e4383136ddad849c0efefb
content-length: 6985
GET

https://github.githubassets.com/assets/global-47b8b2ca21ae.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/global-47b8b2ca21ae.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 26 Nov 2024 21:12:56 GMT
etag: "0x8DD0E5F193AF82C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2692289
x-served-by: cache-iad-kjyo7100144-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 38071
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 546e357b82e8d11ad0a2b778ccd1f7a3225ff72c
content-length: 5150
GET

https://github.githubassets.com/assets/github-e72829f5538b.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/github-e72829f5538b.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 13 Dec 2024 19:44:51 GMT
etag: "0x8DD1BAE9C74ED39"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1564289
x-served-by: cache-iad-kcgs7200070-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 26, 32750
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 03330a9e3173e31f008c3ed9c8b83ecae88d632b
content-length: 21280
GET

https://github.githubassets.com/assets/repository-d031bcc14e1b.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/repository-d031bcc14e1b.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 20 Dec 2024 19:37:11 GMT
etag: "0x8DD212DB320AE8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1294726
x-served-by: cache-iad-kiad7000146-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 99, 25992
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e506b5f4d546893a677ecba6df5525c5068baca8
content-length: 38143
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:17 GMT
etag: "0x8DCC5ED35736954"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 5978866
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 32, 33706
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 79bbbb18ad72620fa21a06cd41e1024a4643721b
content-length: 479
GET

https://github.githubassets.com/assets/primer-react.797c8ec006b327590422.module.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/primer-react.797c8ec006b327590422.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 18 Dec 2024 14:30:02 GMT
etag: "0x8DD1F7075BC9820"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1386348
x-served-by: cache-iad-kcgs7200091-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 33, 29012
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 21e1327d8c2d9fd04415b862fdf02def0d5ce8a1
content-length: 18441
GET

https://github.githubassets.com/assets/releases-d27bae89dc62.css

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/releases-d27bae89dc62.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 01 Oct 2024 15:34:46 GMT
etag: "0x8DCE22E94389022"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 3418316
x-served-by: cache-iad-kiad7000069-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 6613
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fdf4f8d67796fca432c6e7bf230d82704c969c3d
content-length: 556
GET

https://github.githubassets.com/assets/wp-runtime-7c7cbcadd2c9.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/wp-runtime-7c7cbcadd2c9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 03 Jan 2025 19:47:15 GMT
etag: "0x8DD2C2F6CCE7AEB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 81713
x-served-by: cache-iad-kcgs7200045-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 2010
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b9484ac43fdd15256c6654910f598667361cc01e
content-length: 14084
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:04 GMT
etag: "0x8DD1A31D2913996"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1641290
x-served-by: cache-iad-kcgs7200056-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 73, 33088
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5ec035c1af757f02874468bcf5481e3faaa8c96e
content-length: 3629
GET

https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:36 GMT
etag: "0x8DD0D5EFC4A53FF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2789326
x-served-by: cache-iad-kiad7000134-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 46248
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3c77808c012188cdfb2c1b040cf799df27285d86
content-length: 735
GET

https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-c551691a8183.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/ui_packages_failbot_failbot_ts-c551691a8183.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FBFE222"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345514
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48265
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b6b54cef7685d231b671837f4b71cd76443ea035
content-length: 4848
GET

https://github.githubassets.com/assets/environment-7b93e0f0c8ff.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/environment-7b93e0f0c8ff.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E029647C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345514
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48013
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 37b5b2f8132178d9000fa383f2735e0a1293dbea
content-length: 3080
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F8D41"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 6265620
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 42466, 44768
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 691b3f406be86b1840920d1e085c3f9d05a2e4e0
content-length: 3284
GET

https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500CD2AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100040-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48312
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5c2f8c9ac3930cfcbe3c23a959cbc8ea130c1df8
content-length: 5756
GET

https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD15446030C279"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 49260
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ae05d72da0f6d3c1ebd8eb5eb67bc202224c1f32
content-length: 18635
GET

https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F3F7D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 5324447
x-served-by: cache-iad-kcgs7200153-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 22219, 45089
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a1c1d5839806e5187947e31163df8ea0e894f62a
content-length: 3816
GET

https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:40 GMT
etag: "0x8DD02B44F3EF886"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kcgs7200145-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48484
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 52d1ef0b7864920603eb6a34899431a75b0c2e43
content-length: 4851
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602F3D8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345514
x-served-by: cache-iad-kiad7000100-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 28209
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0f15803b9bd77ee5de72e14921c42d886af5fa90
content-length: 19397
GET

https://github.githubassets.com/assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500C5DFD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kiad7000164-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48293
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8ff16f9206d473b9745a019b92adce32d065a826
content-length: 4311
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 20 Dec 2024 15:26:09 GMT
etag: "0x8DD210AA1713CDB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 786830
x-served-by: cache-iad-kiad7000120-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 85, 16835
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7f678e234ff52acea12778211e8cf3820ddb322b
content-length: 7899
GET

https://github.githubassets.com/assets/github-elements-f991cfab5105.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/github-elements-f991cfab5105.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 19:56:20 GMT
etag: "0x8DD1954B7817C15"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414898
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 28910
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0afd8331ccb431966ed2745b56d918358b32bb4a
content-length: 3683
GET

https://github.githubassets.com/assets/element-registry-68317a5dae9a.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/element-registry-68317a5dae9a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:24:25 GMT
etag: "0x8DD2051FC564485"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1374343
x-served-by: cache-iad-kjyo7100112-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 25987
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5bf7d15fcfec4137e10a23f4628fb7535438b10f
content-length: 9522
GET

https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 18:22:05 GMT
etag: "0x8DD187E625ACB6B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2231257
x-served-by: cache-iad-kiad7000085-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 604, 50095
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2e95e0d0c850ade5e01c53eddde7836a472e7f33
content-length: 4645
GET

https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:52 GMT
etag: "0x8DD0D5F05CBAB3B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2789326
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 46955
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7a60e940851bc9d10d017991bddb95267ac7094f
content-length: 6786
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:27 GMT
etag: "0x8DD0D665E0F9ED8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kcgs7200078-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48426
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a794bf71def31a82eae31ee8086e80292d4f5590
content-length: 5379
GET

https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:24:30 GMT
etag: "0x8DD2051FF28CC62"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1374343
x-served-by: cache-iad-kjyo7100035-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 26219
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a1ec296313ee89c1111e83d150c0ac0b2be9320a
content-length: 27463
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 16:12:32 GMT
etag: "0x8DCED342CC2D5FC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 4626680
x-served-by: cache-iad-kcgs7200039-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 59, 45454
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 81ac32eb72485ab5410927c887770606015ea0dd
content-length: 3363
GET

https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:27 GMT
etag: "0x8DD0D5EF6E1B53E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2789326
x-served-by: cache-iad-kcgs7200138-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 46760
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 403ca5e30265de7116486062a8ba0b43c1370579
content-length: 3083
GET

https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:11 GMT
etag: "0x8DD15445D10CB59"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kcgs7200049-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48375
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 675132a8fdd7c4dc78818913480af9ae4534beea
content-length: 3027
GET

https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 09:56:04 GMT
etag: "0x8DD1900DC86F5C7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2109417
x-served-by: cache-iad-kcgs7200058-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 47110
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2be6120bc06d02e535ae4e390299e85cca8aa716
content-length: 3407
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 20:13:06 GMT
etag: "0x8DD1FA062B76FEE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414898
x-served-by: cache-iad-kjyo7100051-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 28901
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 34e727b561865c181d15314500c89efa259a1796
content-length: 4964
GET

https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500E579D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48405
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4f1836377c6589dc94228793eabd32a91bff1ce0
content-length: 3918
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B44FAF168F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kiad7000037-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 48360
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a17f5f70de17ab6f34850d0b87a5187886faae22
content-length: 2385
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FC02FE8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345499
x-served-by: cache-iad-kiad7000022-IAD, cache-lcy-eglc8600031-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 28340
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2ed4d57e746bbf0b17291a4e659b6101fa37f6d4
content-length: 3500
GET

https://github.githubassets.com/assets/behaviors-a6abce982f3f.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/behaviors-a6abce982f3f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:00 GMT
etag: "0x8DD1A31D010928E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1641285
x-served-by: cache-iad-kiad7000113-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 61, 24214
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ee401fe58e8e0369a25720706e3beb58093c7f17
content-length: 4986
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 19 Nov 2024 17:47:26 GMT
etag: "0x8DD08C23B22EDF8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 3968673
x-served-by: cache-iad-kiad7000141-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 45891
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 210ce8f0c4856b1a843df60f7b2250912fc51359
content-length: 4143
GET

https://github.githubassets.com/assets/notifications-global-cfcd9f4f0f23.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/notifications-global-cfcd9f4f0f23.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 22:25:52 GMT
etag: "0x8DD207C18FC3FA9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1357857
x-served-by: cache-iad-kjyo7100114-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 92, 28036
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8f84021348dbdce23b65bbd41486ba097bebe5a1
content-length: 60145
GET

https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 17:45:32 GMT
etag: "0x8DD1879474B8D64"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2150936
x-served-by: cache-iad-kcgs7200057-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 63, 47850
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7c6834e20ad47c51bcb427023a4ea5b8e19af33a
content-length: 4452
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:17 GMT
etag: "0x8DD1969F1BFDB43"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2150936
x-served-by: cache-iad-kjyo7100119-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 63, 47990
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 97c7ddfb73da4da5553c8ecec72d63e2c933a5e2
content-length: 6141
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Sat, 16 Nov 2024 19:35:21 GMT
etag: "0x8DD0675CF86BAD9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345498
x-served-by: cache-iad-kiad7000054-IAD, cache-lcy-eglc8600031-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 30156
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c141c1c79d6fbb2916426efa9ee6e0f7df9ded59
content-length: 4341
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:15 GMT
etag: "0x8DCB7D5A25F63A1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 3993959
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 7891, 32155
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 819471dc2ff561c047793ac86f62ee2543dafc65
content-length: 3888
GET

https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FC3AE69"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345498
x-served-by: cache-iad-kcgs7200159-IAD, cache-lcy-eglc8600031-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 31206
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b0766b7137125e612119d8ee6d12ab8a60de9cab
content-length: 6126
GET

https://github.githubassets.com/assets/repositories-f3093651fb0e.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/repositories-f3093651fb0e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 13:29:38 GMT
etag: "0x8DD185587B55AC2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2160748
x-served-by: cache-iad-kcgs7200080-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 34461
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5404d5ac931078c9e3bcfbfda153897706b2b093
content-length: 5400
GET

https://github.githubassets.com/assets/primer-react-753dc87b1e29.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/primer-react-753dc87b1e29.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:00 GMT
etag: "0x8DD1A31D05E5B2D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1641290
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 31463
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dd49c4d0f6079c607d7a6b6181c7b3d3d5977c08
content-length: 7760
GET

https://github.githubassets.com/assets/react-core-accb67f1350f.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/react-core-accb67f1350f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 12 Dec 2024 15:17:53 GMT
etag: "0x8DD1AC026545DBA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kiad7000126-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 25737
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a9f74980306e3ba1f6d2f4834b611e57b7dbfb5a
content-length: 16643
GET

https://github.githubassets.com/assets/react-lib-2131e17288a8.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/react-lib-2131e17288a8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BCFA12"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kcgs7200085-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 26771
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a68bf24dde693e3759fe58963db7c1de8771d5e7
content-length: 3165
GET

https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/octicons-react-45c3a19dd792.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BAD98C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kiad7000114-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 25551
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 340ee4aaeccd0e9cbc98eaeb983392ca72fd3a25
content-length: 5020
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 13:39:03 GMT
etag: "0x8DD1F695643DD5B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kcgs7200121-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 25690
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 90be7f324c6ee48f8252cc0a1b6f5f1ce146cd5d
content-length: 2523
GET

https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 13:29:36 GMT
etag: "0x8DD185586577B2A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2160759
x-served-by: cache-iad-kcgs7200178-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 44858
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c7637556863408dc95ae14efa1ea1658690df651
content-length: 6212
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Dec 2024 17:20:12 GMT
etag: "0x8DD1B9A66F92367"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1641289
x-served-by: cache-iad-kcgs7200070-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 73, 38005
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 25f3c93787f207f4850e4c9b349ee06aa193bcf1
content-length: 108340
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C817F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100132-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 51248
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fcbc366aa4d349a2732f632b6e0910caced7413f
content-length: 5120
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu-51601778bd8d.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/notifications-subscriptions-menu-51601778bd8d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E025E5FB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kcgs7200172-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 51194
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b8784952f5f27b0442fcb8cf3366429d3b353575
content-length: 3077
GET

https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-df3b47d86af0.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/ui_packages_ui-commands_ui-commands_ts-df3b47d86af0.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C33B7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345000
x-served-by: cache-iad-kjyo7100030-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 41424
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 90219f51a76e527a2421d9eea030752d165dacfd
content-length: 5246
GET

https://github.githubassets.com/assets/keyboard-shortcuts-dialog-958cae8ecd6c.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/keyboard-shortcuts-dialog-958cae8ecd6c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:02 GMT
etag: "0x8DCE3127730EEAF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 3422820
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 50612
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6966bc27d59caec624630aa08814f2068c3e451f
content-length: 90797
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:01 GMT
etag: "0x8DD1A31D08393AD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1641290
x-served-by: cache-iad-kjyo7100056-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 29356
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1063e62334920baae422399311efe65b244e0d1e
content-length: 4436
GET

https://github.githubassets.com/assets/sessions-5d6426bbf16a.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/sessions-5d6426bbf16a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3C55516"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kiad7000044-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 25727
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: af97ee09911454f8d056eae9825a0e4d4dc2b797
content-length: 6323
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:27 GMT
etag: "0x8DD1969F7D55965"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2150936
x-served-by: cache-iad-kcgs7200176-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 28544
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7c710e6bca16afeee2f8a9a88fbc3ed242f22fa3
content-length: 16144
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:06 GMT
etag: "0x8DD154459929787"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kiad7000145-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 42643
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 072b686bb4c1274b5d2e5c16ad32151d5497f63e
content-length: 4066
GET

https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 03:47:22 GMT
etag: "0x8DD1FDFD884F18B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1386347
x-served-by: cache-iad-kjyo7100151-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 117, 25860
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ef782fa7f7966ca816cf0154190bd86e779006e8
content-length: 5898
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FBEF8D2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kiad7000052-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 51612
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b72719657ba054d9a1c63a7abc3f674c94fcfad2
content-length: 9716
GET

https://github.githubassets.com/assets/ui_packages_paths_index_ts-4e4d706da555.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/ui_packages_paths_index_ts-4e4d706da555.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:22 GMT
etag: "0x8DD0D665B346AD3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345000
x-served-by: cache-iad-kiad7000020-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 41367
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1068ec4c9645622245e9b48f193c0e898473aadb
content-length: 4152
GET

https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:32 GMT
etag: "0x8DD02B44A573252"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kcgs7200111-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 44998
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b6049c2e2fbf4b0349bebc1faa24d6144f35f9b2
content-length: 543
GET

https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:33 GMT
etag: "0x8DD162AEA51054B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kiad7000077-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 25747
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 74bfaf8b9152a67f039f305f2c66d3d7780e526a
content-length: 7440
GET

https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:21 GMT
etag: "0x8DD162AE37E62AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1414899
x-served-by: cache-iad-kjyo7100125-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 26768
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c966fb089a6bfb8747e828985c64c6e02d72e5c1
content-length: 2920
GET

https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:20:57 GMT
etag: "0x8DD205180915E18"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1390052
x-served-by: cache-iad-kjyo7100141-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 38, 29873
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3966ed11ab13e4b2ad8f8346f9139d506a0e9b81
content-length: 40640
GET

https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:38 GMT
etag: "0x8DD02B44DEAF90D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100051-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 52937
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 54bd75066e21a17e7320b383fb33cd0e396ec882
content-length: 54804
GET

https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 21:21:05 GMT
etag: "0x8DD1FA9E1A14879"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 1390052
x-served-by: cache-iad-kjyo7100061-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 38, 27674
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 609a1e91e41200012a36d4d5c2009068f8f3cf38
content-length: 6241
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:20 GMT
etag: "0x8DD0327CB20BA64"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100077-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 42910
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 569cc5e0628a71452d8e828bc06d90b75076bc5a
content-length: 5382
GET

https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD154460870CCD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100114-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 51414
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8ec98f92ca70b26cece099c989a25e850a167a7a
content-length: 7079
GET

https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BC3790"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:21 GMT
age: 1414899
x-served-by: cache-iad-kiad7000163-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 26842
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e2c3109d5d8bc8184fce60d8d71f478584d1c55c
content-length: 2790
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:32 GMT
etag: "0x8DD02B44AD10969"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:21 GMT
age: 2345515
x-served-by: cache-iad-kjyo7100146-IAD, cache-lcy-eglc8600031-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 43675
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1e16d691b0ea6bf1389ff79c1dfaacfbc7f292cc
content-length: 9421
GET

https://avatars.githubusercontent.com/u/186148682?s=40&v=4

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/186148682?s=40&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "c14abac12e07098dd46d57fb5fad98da4967dac96bfd27b9039ac3d18feb97a2"
last-modified: Sun, 14 Dec 2014 23:09:35 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: DA3E:330608:815FC3:9ADBCC:676014FD
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:20 GMT
via: 1.1 varnish
x-served-by: cache-lon4272-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736025260.360418,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: cb0355af52aa647d43a80dabd63c82774daa3e1d
expires: Sat, 04 Jan 2025 21:19:20 GMT
source-age: 1675097
vary: Authorization,Accept-Encoding
content-length: 1558
GET

https://objects.githubusercontent.com/github-production-release-asset-2e65be/877772159/a8b6bd16-5f97-4a30-8808-65c761396f62?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250104%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250104T211442Z&X-Amz-Expires=300&X-Amz-Signature=840c7291c90a716de7c926c5ed30d27b8326cdac4e1684864feb10157d394513&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DJJSPLOIT.V2.exe&response-content-type=application%2Foctet-stream

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /github-production-release-asset-2e65be/877772159/a8b6bd16-5f97-4a30-8808-65c761396f62?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250104%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250104T211442Z&X-Amz-Expires=300&X-Amz-Signature=840c7291c90a716de7c926c5ed30d27b8326cdac4e1684864feb10157d394513&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DJJSPLOIT.V2.exe&response-content-type=application%2Foctet-stream HTTP/2.0
host: objects.githubusercontent.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/octet-stream
last-modified: Thu, 24 Oct 2024 08:15:29 GMT
etag: "0x8DCF4040592BEAA"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f3cb3e52-401e-002b-68cd-456199000000
x-ms-version: 2024-11-04
x-ms-creation-time: Thu, 24 Oct 2024 08:15:29 GMT
x-ms-blob-content-md5: 1Kd26lXiTTEkpuB1n7CsRA==
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=JJSPLOIT.V2.exe
x-ms-server-encrypted: true
via: 1.1 varnish, 1.1 varnish
fastly-restarts: 1
accept-ranges: bytes
age: 1723
date: Sat, 04 Jan 2025 21:14:43 GMT
x-served-by: cache-iad-kjyo7100177-IAD, cache-lon4272-LON
x-cache: HIT, HIT
x-cache-hits: 36, 0
x-timer: S1736025283.762940,VS0,VE76
content-length: 3266048
GET

https://raw.githubusercontent.com/wcrddn/wcrddn.github.io/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /wcrddn/wcrddn.github.io/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi HTTP/2.0
host: raw.githubusercontent.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"8fe728440562dfe0bde3f0670d9b554af289edc15c58e6b4a72779d96e04f26e"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: F73B:8D570:E8AA49:13571EA:6778E401
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:17:04 GMT
via: 1.1 varnish
x-served-by: cache-lon4272-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736025425.863277,VS0,VE123
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 8a49991efa50a0591e8c629b051090c662cdc38b
expires: Sat, 04 Jan 2025 21:22:04 GMT
source-age: 0
content-length: 5345280
GET

https://github.githubassets.com/favicons/favicon.svg

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /favicons/favicon.svg HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
content-md5: bYAvaN8MCaSZfP0o7q/Z/w==
last-modified: Wed, 14 Aug 2024 19:18:58 GMT
etag: "0x8DCBC95F2647EDF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:21 GMT
age: 127
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 1250203, 2
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cb1833737b9d19392669e582e45bae8965534e84
content-length: 959
GET

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/apple-touch-icon-144x144-b882e354c005.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: image/png
content-md5: YDrNCDxuYozaAYS2sPzvIQ==
last-modified: Wed, 14 Aug 2024 19:49:39 GMT
etag: "0x8DCBC9A3C0EF02F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:21 GMT
age: 2477106
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 1220, 18005
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 61808763b7f4a632a0eaa98b75e2f1f01c7c84a0
content-length: 14426
GET

https://github.githubassets.com/favicons/favicon.png

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /favicons/favicon.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
content-md5: NG4JRxNi8pB1EKMYEhKc0g==
last-modified: Wed, 14 Aug 2024 19:18:46 GMT
etag: "0x8DCBC95EB57AC96"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:14:21 GMT
age: 143
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 3627102, 2
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d25f0b8ba15ca28f3c85e112806bf59de4202868
content-length: 958
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_hotkey_dist_index_js-524e40420665.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_hotkey_dist_index_js-524e40420665.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Dec 2024 16:50:34 GMT
etag: "0x8DD1DF1C295A8E2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:16:25 GMT
age: 1641402
x-served-by: cache-iad-kjyo7100087-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 6836
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 231d6b1661cb4ad508e5d13833c458fc65f0c8ce
content-length: 12278
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_remote-form_dist_-8c3668-4ebea233dc11.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_remote-form_dist_-8c3668-4ebea233dc11.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 22 Aug 2024 20:39:16 GMT
etag: "0x8DCC2EA7DD5D838"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:16:25 GMT
age: 3943165
x-served-by: cache-iad-kjyo7100100-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 50, 10513
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 92847922c0f0dd49b31a5cc350b108a227f0c126
content-length: 3572
GET

https://github.githubassets.com/assets/ui_packages_form-utils_form-utils_ts-ui_packages_input-navigation-behavior_input-navigation-b-a97423-0ee33bdc7197.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/ui_packages_form-utils_form-utils_ts-ui_packages_input-navigation-behavior_input-navigation-b-a97423-0ee33bdc7197.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:39 GMT
etag: "0x8DD02B44EDD4936"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:16:25 GMT
age: 2345579
x-served-by: cache-iad-kjyo7100020-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 12808
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ef7bc06594812fa2364464bb7555ebe774c49eb3
content-length: 3185
GET

https://github.githubassets.com/assets/issues-49a49680995d.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/issues-49a49680995d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:40 GMT
etag: "0x8DD02B44F413FF2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:16:25 GMT
age: 2345579
x-served-by: cache-iad-kiad7000151-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 12770
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fbef439c99afbc582167a5773e0dfa39fefcbc01
content-length: 4205
GET

https://github.githubassets.com/assets/structured-issues-eb321c77cee9.js

msedge.exe

Remote address:

185.199.109.154:443

Request

GET /assets/structured-issues-eb321c77cee9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C0CD1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 Jan 2025 21:16:25 GMT
age: 2345580
x-served-by: cache-iad-kjyo7100158-IAD, cache-lcy-eglc8600087-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 10524
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a0fdf3950169c72cb78525b545705d6d5890c894
content-length: 8450
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 940
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:14:21 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002227
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:96C918:E11222:6779A4AD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1274
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:14:21 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003922
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:96C918:E11224:6779A4AD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1238
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:14:25 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002593
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:96CB86:E1163C:6779A4AD
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1441
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:14:42 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003128
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:96D783:E12983:6779A4B1
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1200
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:16:05 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002668
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:971819:E18D4E:6779A4C2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1058
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:16:23 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003136
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:9727E3:E1A500:6779A515
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1333
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:16:26 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.099919
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:9729A7:E1A7AB:6779A527
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 961
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:16:26 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001810
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:9729C0:E1A7D7:6779A52A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.113.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1337
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sat, 04 Jan 2025 21:16:26 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003155
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E2:13A2B:9729C0:E1A7D6:6779A52A
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 290
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:14:21 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736028861
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C2E4:1E2D0A:3EBB5BA:4D26181:6779A4AD
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 290
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:14:26 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736028866
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C2E4:1E2D0A:3EBB689:4D26292:6779A4AD
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 389
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:14:42 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736028882
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C2E4:1E2D0A:3EBB9E4:4D266F9:6779A4B2
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoialVRcnUwa3BFVms9Iiwia2V5IjoiMEI2NFNCKzdadmhLcnZTZ1JPUWdFdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1482
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:24 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 909
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiOTh4MXFPV0dpYzA9Iiwia2V5IjoiTzZQR1RkS1dHeHNhNXZBUGYvZUJCZz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1450
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:42 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 961
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/download/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiTDJ1ZkR3RnBnYWs9Iiwia2V5Ijoidk9WdGUybHFFWFhnb2NtNVhVRm1GQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1898
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:43 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2018
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiWWJrMDh6ZlJOdmc9Iiwia2V5IjoiRHFQTkM0L3NTeG1kWkFCcVByZUR5Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1438
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:15:22 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 945
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/download/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoibzNtdEc4eVVYaVE9Iiwia2V5IjoiVEZjVXcrRFFSTVlHMjh5L0FSQUI5Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1455
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:15:23 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 948
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/actions HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiNUFzWlcxSTVlamc9Iiwia2V5IjoieTBwSWhMQlcwOVBkMmY5WVNZaTBrdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 931
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:24 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 192
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoibzZ0SDBRZDd3eU09Iiwia2V5IjoidWx2b0NvTHcrbDBVTnBtR2NGdXFDdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1374
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:27 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 952
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoidzN6eDB5c0RWTmc9Iiwia2V5IjoiSVBmVnJPT3A0WGhBWHk3MkcwQlo0dz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1993
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:42 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2019
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/downloadcomplete/1

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/downloadcomplete/1 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiVEdXa3c2MXBFZzg9Iiwia2V5IjoiYnUwTHRaUTkxQURjWHZ2SlBJOUJLUT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1482
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:14:43 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1123
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiTy9Kb3NzSmtwbTA9Iiwia2V5IjoibVgwSjJIbmh1MUwzVzlQM09PLzI4QT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1538
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:15:22 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 943
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
GET

https://github.com/TOP-executors/JJsploit/archive/refs/tags/v2.1.0.zip

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /TOP-executors/JJsploit/archive/refs/tags/v2.1.0.zip HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sat, 04 Jan 2025 21:15:22 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://codeload.github.com/TOP-executors/JJsploit/zip/refs/tags/v2.1.0
cache-control: max-age=0, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C377:0AE5:4BDCB13:5E1C72A:6779A4EA
GET

https://codeload.github.com/TOP-executors/JJsploit/zip/refs/tags/v2.1.0

msedge.exe

Remote address:

20.26.156.216:443

Request

GET /TOP-executors/JJsploit/zip/refs/tags/v2.1.0 HTTP/2.0
host: codeload.github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

access-control-allow-origin: https://render.githubusercontent.com
content-disposition: attachment; filename=JJsploit-2.1.0.zip
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
cross-origin-resource-policy: cross-origin
etag: W/"5c27506048255ba57bca93bc45ecd982f243d951d475f26d7c33fcda1adfa82f"
strict-transport-security: max-age=31536000
vary: Authorization,Accept-Encoding,Origin
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
date: Sat, 04 Jan 2025 21:15:23 GMT
x-github-request-id: C378:19264:1055EA:52FE4C:6779A4EA
GET

https://github.com/TOP-executors/JJsploit/issues

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /TOP-executors/JJsploit/issues HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: text/html, application/xhtml+xml
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
turbo-frame: repo-content-turbo-frame
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/releases
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sat, 04 Jan 2025 21:16:25 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"dbaa3b9dfe2311e00ca840b01704b1c6"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: f2020cb85998e79496a5a097246665bb9162f80a49c6bac3d1259c4417fa1b5d
accept-ranges: bytes
x-github-request-id: C3E7:35A22:5911214:6EB6992:6779A528
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 646
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:26 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736028986
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C3F8:3D7CD:41B8FD9:5024197:6779A52A
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 453
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/TOP-executors/JJsploit/issues
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:26 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736028986
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C3F8:3D7CD:41B8FD9:5024196:6779A52A
GET

https://www.bing.com/qbox?query=jjs&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=69ee5fb6d2bc4878a167ab6dc1bec5f1&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=jjs&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=69ee5fb6d2bc4878a167ab6dc1bec5f1&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 267
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a52b543e4051bab8e04693becc26
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-gEtEFsQq6tuPSkRSwzPUgGC+S85P4suXqIzy+uh7nEI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:27 GMT
set-cookie: MUID=19F8DF24E7586DEF2FD1CA4EE6176C31; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=19F8DF24E7586DEF2FD1CA4EE6176C31; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1826C2D6EF0E6C933A66D7BCEE416D97; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=402F8A0DFC4F4F0599339F2D8EED62C7&dmnchg=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250104; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1826C2D6EF0E6C933A66D7BCEE416D97; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025387.13c1ed0b
GET

https://www.bing.com/qbox?query=jjsp&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=8935b2ef2cc94c8c8662257f96566a23&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=jjsp&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=8935b2ef2cc94c8c8662257f96566a23&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 271
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a52b8220443598caf4ade47c558f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VLAwNl8dGwPDf3n7YAZnH4gjrN9BC7pkBbDECfmJarU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:27 GMT
set-cookie: MUID=314E95553CA761BC3CBB803F3D12601D; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=314E95553CA761BC3CBB803F3D12601D; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3FEFE60ACDA56E0B1DDDF360CC106F98; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=2950409F1C344C09AEFC89ED94749FFA&dmnchg=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250104; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3FEFE60ACDA56E0B1DDDF360CC106F98; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025387.13c1edcc
GET

https://www.bing.com/qbox?query=jjspl&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=3a80e0248bf9464590884769a90aec07&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=jjspl&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=3a80e0248bf9464590884769a90aec07&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 268
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a52bdfa44d3d95bf8f088b455856
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jqqaltotyG4DxPK+1ciUScWNBu0HJuKlWw1JgInB5Y8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:27 GMT
set-cookie: MUID=191A48673211630A1A075D0D3352627C; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=191A48673211630A1A075D0D3352627C; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=18932AF3B2A6698A319E3F99B3E56887; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=EADF9F0A5CE9466984C378D67196593A&dmnchg=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250104; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=18932AF3B2A6698A319E3F99B3E56887; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025387.13c1efb2
GET

https://www.bing.com/qbox?query=jjsplo&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=79fa9d3ee1234a5a91db9a5a3c816730&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=jjsplo&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=79fa9d3ee1234a5a91db9a5a3c816730&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sat, 04 Jan 2025 21:15:27 GMT
vary: Accept-Encoding
x-eventid: 6779a52b65394782a26b4820880b5e86
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-YrU/riaVDMRMbsQf4B2Rf+gpwX9Y6H+vOEgoV+OuNlQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sat, 04 Jan 2025 21:16:27 GMT
set-cookie: MUID=28151858BA2767D9100B0D32BBDE6647; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250104; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:27 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025387.13c1f1e9
set-cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU; Domain=.bing.com; Path=/; Expires=Sat, 04 Jan 2025 23:16:27 GMT; Max-Age=7200
GET

https://www.bing.com/qbox?query=jjsploi&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=288f7c365db546e393fb2a94aa90cc3a&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=jjsploi&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=288f7c365db546e393fb2a94aa90cc3a&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-sHgI2KF5qU4AQ3xCUQckckSpf+W62hm+BtSCl7vQoVg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Sat, 04 Jan 2025 21:16:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025387.13c1f304
GET

https://www.bing.com/qbox?query=jjsploit&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=f70efc3ae90f49c1b7773744d570ae6b&oit=1&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=jjsploit&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=f70efc3ae90f49c1b7773744d570ae6b&oit=1&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

expires: Tue, 07 Jan 2025 08:22:14 GMT
last-modified: Tue, 24 Sep 2024 06:53:27 GMT
etag: 0x8DCDC6597B401F0
cache-control: public, no-transform, max-age=262161
akamai-grn: 0.521a1202.1735947990.e5943c27
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-amd-bc-debug: [a=92.122.211.87,b=4065134134,c=c,d=1733425146,h=304,k=1,l=1,n=GB_EN_LONDON,o=20940,r=2]
content-length: 9310
content-type: image/png
content-md5: GUexVzkiHrDbJxwd2PleRg==
x-ms-request-id: 490b4d38-e01e-005f-1926-15186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20c4b
GET

https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-M0xpQtLzzJkj/4vNXa2c0aNVt1kgGjB4BwegH5PfntY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20c4a
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20c4c
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 66e3d8edf38a4b9983f22f7a554873e3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20cf2
GET

https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

expires: Tue, 17 Dec 2024 11:35:19 GMT
last-modified: Wed, 20 Nov 2024 06:08:28 GMT
etag: 0x8DD0929C09196E1
cache-control: public, no-transform, max-age=356929
content-type: text/javascript; charset=utf-8
content-md5: x2EwVHeB7ANtgfiXW7B0ZQ==
x-ms-request-id: cc59156c-a01e-0058-6ab4-3beeeb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 7527
akamai-amd-bc-debug: [a=95.100.194.14,b=72845725,c=c,d=1732152262,h=200,k=8,l=70,n=GB_EN_LONDON,o=20940,r=80,p=7527,j=[[a=20.60.205.196,b=72845725,c=o,d=1732152262,h=200,k=47,l=19,m=4,r=70,p=7650,t=cus]]]
vary: Accept-Encoding
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20d03
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20cf1
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:217,%22SE%22:-1,%22TC%22:-1,%22H%22:385,%22BP%22:3723,%22CT%22:3736,%22IL%22:14},%22ad%22:[43,194,1263,601,1263,2221,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:217,%22SE%22:-1,%22TC%22:-1,%22H%22:385,%22BP%22:3723,%22CT%22:3736,%22IL%22:14},%22ad%22:[43,194,1263,601,1263,2221,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20cf3
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Wed, 13 Nov 2024 18:09:46 GMT
vary: Accept-Encoding
x-ms-request-id: a8de0bb9-401e-0029-4c7e-5e59ff000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20250104T080000Z-1755c7d8b78jzhvbhC1DB1v36g0000000210000000004wtu
x-fd-int-roxy-purgeid: 0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 6778ea80a90d4cfb865fb456a0e04886|AFD:6778ea80a90d4cfb865fb456a0e04886|2025-01-04T08:00:00.778Z
content-length: 48856
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20d82
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 356
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

expires: Thu, 28 Nov 2024 10:42:30 GMT
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
cache-control: public, no-transform, max-age=314721
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 1d60634c-401e-0052-2736-1bf762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b5777b5c.1730973867.6f31583
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
timing-allow-origin: *
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20d9d
GET

https://www.bing.com/rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a52fbb2c46f6b0038945b956a260
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7T9Ak810l/uj2qbwdaBfyZn0m8BVbQ+WjityNfFK/Ow='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: F9F91747B41A4DB8A9FF75BFBCB1538A Ref B: LON601060108034 Ref C: 2025-01-04T21:16:31Z
date: Sat, 04 Jan 2025 21:16:31 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:31 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:31 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:31 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025391.13c20e50
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250104

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250104 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21bf3
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21bf0
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=undefined

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21bef
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025391221%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736025391221%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025391221%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736025391221%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21c43
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21bf2
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21c68
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21c9c
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391243%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736025391245%2C%22Name%22%3A351%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391246%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391250%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391243%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736025391245%2C%22Name%22%3A351%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391246%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391250%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21d63
GET

https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=bd1932da496c4d479ab25e8b6d474ba5&oit=1&cp=1&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=w&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=bd1932da496c4d479ab25e8b6d474ba5&oit=1&cp=1&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c21d6b
GET

https://www.bing.com/qbox?query=we&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=b75f9f3f3ee14da58de0266b01e4eba2&oit=1&cp=2&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=we&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=b75f9f3f3ee14da58de0266b01e4eba2&oit=1&cp=2&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 16046
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a532629a4a5bbd4907a0c021417e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WkcKS2SK8LcALsBOqLUSygeEbjD810EdSHAJy5bOiMg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:34 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c2212a
GET

https://www.bing.com/qbox?query=wea&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=d4e2c48cb3f445368fec24e5e9147e7f&oit=1&cp=3&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wea&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=d4e2c48cb3f445368fec24e5e9147e7f&oit=1&cp=3&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6779a53294c841aca932ab5b4a36a8a5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UipZFrx4iDHDMlXseqtI1JvfbZROeQP03cTY+xcCsT8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6779a53294c841aca932ab5b4a36a8a5|AFD:6779a53294c841aca932ab5b4a36a8a5|2025-01-04T21:16:34.928Z
date: Sat, 04 Jan 2025 21:16:34 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c2212d
GET

https://www.bing.com/qbox?query=wear&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=16f88bd79348450ba759f362231783e0&oit=1&cp=4&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wear&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=16f88bd79348450ba759f362231783e0&oit=1&cp=4&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 439
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a53203964aa6b40832e9ec886840
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lnYtvW/lqJUIhiJBEYpBJa04BXhUUODvO2x+l/Bo3Hc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:34 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2863B6F803466EBF3688A39202296F17; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c2212c
GET

https://www.bing.com/qbox?query=weare&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=8bcd3f89bd294e8c836fb3b5cb36f770&oit=1&cp=5&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=weare&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=8bcd3f89bd294e8c836fb3b5cb36f770&oit=1&cp=5&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 994
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6779a532c46e4cd28e517b388a8130bd
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zS7glueTN3FXuVdA7xwSsHJzSk2mSh3cWO4lRKpINA8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6779a532c46e4cd28e517b388a8130bd|AFD:6779a532c46e4cd28e517b388a8130bd|2025-01-04T21:16:34.950Z
date: Sat, 04 Jan 2025 21:16:34 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Sun, 04-Jan-2026 21:16:34 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-04; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025394.13c2214c
GET

https://www.bing.com/qbox?query=wearee&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=12e2be7cd1ce4d8db72127917072e7a2&oit=1&cp=6&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearee&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=12e2be7cd1ce4d8db72127917072e7a2&oit=1&cp=6&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 431
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a533bb6e421f973ce2bb8dcfd065
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bTeuVXOEBoTvTJyI3T83JLg9+KAtKM0mbIfCKztIyUA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:35 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2289426B74696264214A570175586317; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025395.13c221ef
GET

https://www.bing.com/qbox?query=weareed&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=dcb015a623dd406fbb8fd3c033474ca1&oit=1&cp=7&pgcl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=weareed&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=dcb015a623dd406fbb8fd3c033474ca1&oit=1&cp=7&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 457
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a53391ca445ba84a9f8d17b2df44
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/qo4OVacFdjeYsj1V6aDAcekZ7NvDW8Bka1hMC0NKTE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:36 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=01379920623565E131668C4A63836467; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025395.13c227b2
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 266
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025396.13c22b9b
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736025392099%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736025392099%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025396.13c22b9c
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%228%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%228%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025396.13c22bc0
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 322
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a5343e1e43678fc8eeef831ca7ac
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-43Wqbs+I2HM69YnQBLLPNsf1pL/1cLxxwtXS3vPQrPk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:36 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:36 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3CD4179DA2D76CEF37A702F7A3866D07; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:36 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025396.13c22bc3
GET

https://www.bing.com/images/sbi?mmasync=1&ig=B8E2C05EC3CB49C58D85191E3D81D809&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /images/sbi?mmasync=1&ig=B8E2C05EC3CB49C58D85191E3D81D809&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025397.13c2304c
GET

https://www.bing.com/qbox?query=d&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=31c30eafc90b4b15b3eebe1c9c756407&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=d&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=31c30eafc90b4b15b3eebe1c9c756407&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sat, 04 Jan 2025 21:15:37 GMT
vary: Accept-Encoding
x-eventid: 6779a535c4b9461baf3e6dff61071b8a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IkNYQ5g0MuNtmcksAtM8SqtMh/PmXsQHPXYkkX08KDI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sat, 04 Jan 2025 21:16:37 GMT
set-cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025397.13c2304d
set-cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1; Domain=.bing.com; Path=/; Expires=Sat, 04 Jan 2025 23:16:37 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=de&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=260511c6214242588ea1ab9b899d1762&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=de&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=260511c6214242588ea1ab9b899d1762&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025397.13c232f2
POST

https://www.bing.com/rewardsapp/ncheader?ver=52516973&IID=SERP.5056&IG=B8E2C05EC3CB49C58D85191E3D81D809

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /rewardsapp/ncheader?ver=52516973&IID=SERP.5056&IG=B8E2C05EC3CB49C58D85191E3D81D809 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025397.13c23429
POST

https://www.bing.com/rewardsapp/reportActivity?IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.5066&q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /rewardsapp/reportActivity?IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.5066&q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 173
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025397.13c23430
GET

https://www.bing.com/qbox?query=d&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=6fb468b0c5404264ae051e1c2ce4efc9&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=d&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=6fb468b0c5404264ae051e1c2ce4efc9&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025398.13c234d5
GET

https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=6ac864d582e24604983bca72665ba2be&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=w&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=6ac864d582e24604983bca72665ba2be&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025398.13c234d3
GET

https://www.bing.com/qbox?query=we&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=a62184c9e8964418a40aba5ee2ec4da1&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=we&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=a62184c9e8964418a40aba5ee2ec4da1&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025398.13c234d4
GET

https://www.bing.com/qbox?query=wea&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=b57750f1c2b84504a72271c835dd1a08&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wea&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=b57750f1c2b84504a72271c835dd1a08&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025398.13c23567
GET

https://www.bing.com/qbox?query=weare&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=50b657752f7f47f182473278d2046a6c&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=weare&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=50b657752f7f47f182473278d2046a6c&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025398.13c2356d
GET

https://www.bing.com/qbox?query=weared&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=099773d7b7cb4432bf8d2ddc6ac1cb76&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=weared&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=099773d7b7cb4432bf8d2ddc6ac1cb76&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23c81
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736025394025%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226779a52b65394782a26b4820880b5e86%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025394044%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226779a52b65394782a26b4820880b5e86%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025394044%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736025394025%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226779a52b65394782a26b4820880b5e86%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025394044%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226779a52b65394782a26b4820880b5e86%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025394044%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 38374
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a537cba84a2181ad229ef3a00932
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-o7UaaKQ1ipFPzAT8dqtp3FbUSHEbEW/LvA09hvX5bnM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d2d
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A7490%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A7490%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

cache-control: private,no-store
pragma: no-cache
vary: Origin
p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1FF235066A0F4253A9423B5B283788CF Ref B: LON601060105042 Ref C: 2025-01-04T21:16:39Z
content-length: 0
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d2c
GET

https://www.bing.com/qbox?query=wearede&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=409f7c6286e84cc2a61dce1c8cb14e3b&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearede&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=409f7c6286e84cc2a61dce1c8cb14e3b&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d2e
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 321
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a537b7574c92a85d30d342c114b8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-2Z1lrk/BoITqo4N8s3LU//0QpXEe3mwWOJwmtNS/bUU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d33
GET

https://www.bing.com/qbox?query=wearedev&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=ea42b684dce44f4ba341ce9dc42f961d&oit=1&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedev&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=ea42b684dce44f4ba341ce9dc42f961d&oit=1&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 378
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a5373c144d7ea1aba092c3bba212
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rjQGdcopcMUiHCW5cSjSG6CTajf2WZiyKDDX3UJV03Y='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d30
GET

https://www.bing.com/qbox?query=wearedevs&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=bd6d4fd9bec94de8a18b68fc39202de6&oit=1&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedevs&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=bd6d4fd9bec94de8a18b68fc39202de6&oit=1&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23e00
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 423
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a5372a6843b1a6a8420ff45bb6d1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bcPdeqnlqi5zqKkrWwouMF2Jz7omrT/ffMdR2OKLPfo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d31
GET

https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
ect: 3g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 272
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a53798a44c01a856528e3d2b6c69
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RvSdCp+64NGigqn3EvF8PHwjMA9zL5XxufLXlgY5S/8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d32
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C2%3A2%2C3%3A3%2C4%3A4%2C5%3A5%2C6%3A6%2C8%3A7%2C7%3A8%2C9%3A9%2C10%3A10%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C2%3A2%2C3%3A3%2C4%3A4%2C5%3A5%2C6%3A6%2C8%3A7%2C7%3A8%2C9%3A9%2C10%3A10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1

Response

HTTP/2.0 400

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 6779a537e7cf45b492db7c7d34a583b5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7udaRTFrCerQ7dabzpOEXezvV32v6+toCIFAzf+hw8g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A03352F2EAD641618387B79720C41DFC Ref B: LON601060103060 Ref C: 2025-01-04T21:16:39Z
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23e19
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:17,%22BC%22:17,%22SE%22:-1,%22TC%22:-1,%22H%22:118,%22BP%22:145,%22CT%22:148,%22IL%22:5},%22ad%22:[-1,-1,1263,601,1263,3398,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:17,%22BC%22:17,%22SE%22:-1,%22TC%22:-1,%22H%22:118,%22BP%22:145,%22CT%22:148,%22IL%22:5},%22ad%22:[-1,-1,1263,601,1263,3398,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1

Response

HTTP/2.0 200

content-length: 545
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a53756804a87bc6a12c23ef38622
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+C8MJDOJhjfmfFjQCAWVGs9ETSVkYEwjZIKoQqhOgpE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23d2f
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 372
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a537aaa54c739972260d65904f07
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-hXyUiatYEYGLT2ugNeJXt64k1serd2d/dpGGdj0IgLM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: AB8F93168ADB40D29B70A6459C1B3EBA Ref B: LON601060102036 Ref C: 2025-01-04T21:16:39Z
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; HttpOnly
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23e17
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025397358%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22300%22%2C%22Downlink%22%3A%221.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736025397358%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736025397368%2C%22Name%22%3A755%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397368%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397372%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025397358%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22300%22%2C%22Downlink%22%3A%221.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736025397358%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736025397368%2C%22Name%22%3A755%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397368%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397372%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 16048
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a537424643d4a48a31ea9f1e23cc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-NY+gZTLX10ZwI3Ib2y5JV2kuwx3vHWG+lHDzW9d4DJ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23e18
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397372%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397372%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23e01
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23e02
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=B8E2C05EC3CB49C58D85191E3D81D809&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?BF=MSJ1&IG=B8E2C05EC3CB49C58D85191E3D81D809&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23f13
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=B8E2C05EC3CB49C58D85191E3D81D809&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?BF=MSJ0&IG=B8E2C05EC3CB49C58D85191E3D81D809&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23f14
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 415
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23f23
GET

https://www.bing.com/aes/c.gif?type=mv&tids=21,23,25,27&rg=d75ab62428394a76a1bd48b57213e253&reqver=1.0

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /aes/c.gif?type=mv&tids=21,23,25,27&rg=d75ab62428394a76a1bd48b57213e253&reqver=1.0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6779a5370b1a49e2ae8310ca2f680b9c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/FnXXfEjfrn36dLvvVcF7FpUUV2UnMVjowImHG+MsCI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6779a5370b1a49e2ae8310ca2f680b9c|AFD:6779a5370b1a49e2ae8310ca2f680b9c|2025-01-04T21:16:39.671Z
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: _C_ETH=1; expires=Fri, 03 Jan 2025 21:16:39 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23f71
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=B8E2C05EC3CB49C58D85191E3D81D809&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=B8E2C05EC3CB49C58D85191E3D81D809&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a537ca2a4100a81a49d06e94f42c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-upaPLC0kycUDuLdrh3uNdiuFGI37Ugbx2roCVxX0wKo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: CA28FD8806584A549EEA469B7A5D6E38 Ref B: LON601060102036 Ref C: 2025-01-04T21:16:39Z
date: Sat, 04 Jan 2025 21:16:39 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:39 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c23fd9
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397212%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397212%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025399.13c24064
GET

https://www.bing.com/videos/vdasync?f=ch&mid=444283A3E116B05586E7444283A3E116B05586E7&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /videos/vdasync?f=ch&mid=444283A3E116B05586E7444283A3E116B05586E7&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 997
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6779a538ab3c42e8bad74c96718fe43d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IvE756A5Enu7aAC2WhlGsGGJI5Bqhai74gbgFg8W94g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6779a538ab3c42e8bad74c96718fe43d|AFD:6779a538ab3c42e8bad74c96718fe43d|2025-01-04T21:16:40.021Z
date: Sat, 04 Jan 2025 21:16:40 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Sun, 04-Jan-2026 21:16:40 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-04; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025400.13c24185
GET

https://www.bing.com/videos/vdasync?f=ch&mid=5A344F017517530744B45A344F017517530744B4&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /videos/vdasync?f=ch&mid=5A344F017517530744B45A344F017517530744B4&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a5389d7c4cd39b156b847eb25cd8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bmzrwk3QNslPRSkSe8qYL2yYN37MkB39oTWWCl4oIMg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 8862FDF378EB43DCB318934EE7FA42F2 Ref B: LON601060105031 Ref C: 2025-01-04T21:16:40Z
date: Sat, 04 Jan 2025 21:16:40 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:40 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:40 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025400.13c24187
GET

https://www.bing.com/videos/vdasync?f=ch&mid=380F7DDD526B77713ECE380F7DDD526B77713ECE&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /videos/vdasync?f=ch&mid=380F7DDD526B77713ECE380F7DDD526B77713ECE&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025400.13c24339
GET

https://www.bing.com/videos/vdasync?f=ch&mid=3C75A1255A7E0AB555C43C75A1255A7E0AB555C4&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /videos/vdasync?f=ch&mid=3C75A1255A7E0AB555C43C75A1255A7E0AB555C4&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 236
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a539c808439ab1c95d89f4f9c3ef
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-DTA0JzCUJr3NSJvkLutoF5wY5FHFERlnUi+JaCsIjgg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 7CA5B1810C1E49819D0ACF747F321153 Ref B: LON601060102036 Ref C: 2025-01-04T21:16:41Z
date: Sat, 04 Jan 2025 21:16:41 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:41 GMT; path=/; HttpOnly
set-cookie: DIDC=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDC=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025401.13c248b5
GET

https://www.bing.com/videos/vdasync?f=ch&mid=51C0E8A1226D8A27A2E051C0E8A1226D8A27A2E0&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /videos/vdasync?f=ch&mid=51C0E8A1226D8A27A2E051C0E8A1226D8A27A2E0&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025401.13c24857
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397374%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397375%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397382%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397385%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397389%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397389%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22MouseEventId%22%3A%22f480a208-d9a9-e036-5e07-d2eb713dbf2d%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1736025397552%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseEnter%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397374%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397375%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397382%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397385%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397389%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397389%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22MouseEventId%22%3A%22f480a208-d9a9-e036-5e07-d2eb713dbf2d%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1736025397552%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseEnter%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025401.13c24a38
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%229%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%229%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 6779a53b7b194f74b9fc94dd913e13dc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Q3Wz6sbcv2sYkmD/bPOmskb+6+mZcTcBU1FLW/wIcqU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 790598E3541342F4924C5334F6B98EC8 Ref B: LON601060108060 Ref C: 2025-01-04T21:16:43Z
content-length: 0
date: Sat, 04 Jan 2025 21:16:43 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:43 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025403.13c25c8a
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025403.13c25c87
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 3g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6779a53b51c0405abfd207dc1397fd8d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AgBU91z1UijWjP9z4VZrzaCP7ZW1nno40p/9lOf8Plw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025403.13c25c89
GET

https://www.bing.com/images/sbi?mmasync=1&ig=7A17024427584A86AB1CA612FF66F67E&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /images/sbi?mmasync=1&ig=7A17024427584A86AB1CA612FF66F67E&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025403.13c25c88
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=B8E2C05EC3CB49C58D85191E3D81D809

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=B8E2C05EC3CB49C58D85191E3D81D809 HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: no-cache
pragma: no-cache
content-length: 1
content-type: text/html
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a53c6abd4ac9a7964258efb2bdfe
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qMEhcv81GVIc3mB4hz1px9+jOfZG2A277BwCE4qGWn8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 84D5A054209B42A287EDDC99F1364BCA Ref B: LON601060108034 Ref C: 2025-01-04T21:16:44Z
date: Sat, 04 Jan 2025 21:16:44 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:44 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025404.13c25f4a
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397562%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22MouseEventId%22%3A%22f480a208-d9a9-e036-5e07-d2eb713dbf2d%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1736025397798%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseLeave%22%7D%2C%7B%22Time%22%3A2432%2C%22time%22%3A2432%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736025398896%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397562%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22MouseEventId%22%3A%22f480a208-d9a9-e036-5e07-d2eb713dbf2d%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1736025397798%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseLeave%22%7D%2C%7B%22Time%22%3A2432%2C%22time%22%3A2432%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736025398896%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

expires: Sat, 30 Nov 2024 02:29:54 GMT
last-modified: Tue, 24 Sep 2024 06:11:01 GMT
etag: 0x8DCDC5FAA0C3E31
cache-control: public, no-transform, max-age=369661
content-length: 644
content-type: image/gif
content-md5: HGU2zuFG7AoIwp9z9fxz2A==
x-ms-request-id: 2ff3b732-601e-004e-3620-152f75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7361602.1729689441.eeaf154
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sat, 04 Jan 2025 21:16:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025405.13c26861
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A2434%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025398897%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A2434%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025398897%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025405.13c26860
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A2434%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025398897%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A2434%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025398897%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025405.13c268bb
POST

https://www.bing.com/rewardsapp/ncheader?ver=52516973&IID=SERP.5056&IG=7A17024427584A86AB1CA612FF66F67E

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /rewardsapp/ncheader?ver=52516973&IID=SERP.5056&IG=7A17024427584A86AB1CA612FF66F67E HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025405.13c268b8
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 3g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025405.13c26934
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025405.13c26dc5
POST

https://www.bing.com/rewardsapp/reportActivity?IG=7A17024427584A86AB1CA612FF66F67E&IID=SERP.5066&q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /rewardsapp/reportActivity?IG=7A17024427584A86AB1CA612FF66F67E&IID=SERP.5066&q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 153
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025406.13c26e57
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=22FC2F28EE7B6B5C1B4B3A42EF826A53&clientsid=undefined

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /geolocation/write?isBlocked=true&sid=22FC2F28EE7B6B5C1B4B3A42EF826A53&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025406.13c26e73
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736025397758%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1736025399075%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1736025399295%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399315%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736025397758%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1736025399075%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1736025399295%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399315%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025407.13c2772c
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399316%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399316%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025409.13c28649
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 3g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DIDC=ct%3D1736025400%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C549_SN1.0.D.CqRfa5HaIAYg9rQuvqR3OGmNV5JjjoaZKSzkzZhcahHpKRR5DSyvI38d8wXl8g6fYRaqIfdm/mOfsBF5kHSkk8SynjDqTDhujQtGAXkppeerBowQEZ3%252BHrWab4KxWX2YuKEwul2kOLcfXjmumhJwyJGQlHAXNSUIMlT00XU4S6MxThRSfglaQLdAo1DLeesly6hI4fdotITqn1OjDSFR1DC1AnrGNvg%252B4GWfqF/dpiZ8PACHuzYD5XJLpQ/fnLonNFoVQxLkRZsc8OwTvPNG/1PfwNdN2nlMR2T2Fxfr9aP9MmGrstc2YMm0n2yNkoBfc9WyX1oX12xXX0XADuJxL5uikEnLUndCKC2ZhtaZtvAld9MsqmpetZtr3hWXjQ6ka0PqxPcRyxhnaMjGGoH0Bho0E1S1S9JdMwIkqrlKKBSjRo7/OLQ089x1EZ2m0HRIvjUabWi0KJyYJ/Q2ep76eU4kqwLRFBLfDhdDFgxkcrPOAnkbJJlarD8kkjJmoMMsmix51z0b8ZRO9cqZcQXc/IYxlpJCSnymDMyd3zWBn077%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3DwElD3IG5nmKPtWOTR%252BkwlwR7aVVIhz6m%26hash%3DZuIAFIk9Z5oTHo%252FcXjSR1dcS41e219T3SUAgnEZD3l0%253D%26dd%3D1
cookie: DIDCL=ct%3D1736025400%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C549_SN1.0.D.CqRfa5HaIAYg9rQuvqR3OGmNV5JjjoaZKSzkzZhcahHpKRR5DSyvI38d8wXl8g6fYRaqIfdm/mOfsBF5kHSkk8SynjDqTDhujQtGAXkppeerBowQEZ3%252BHrWab4KxWX2YuKEwul2kOLcfXjmumhJwyJGQlHAXNSUIMlT00XU4S6MxThRSfglaQLdAo1DLeesly6hI4fdotITqn1OjDSFR1DC1AnrGNvg%252B4GWfqF/dpiZ8PACHuzYD5XJLpQ/fnLonNFoVQxLkRZsc8OwTvPNG/1PfwNdN2nlMR2T2Fxfr9aP9MmGrstc2YMm0n2yNkoBfc9WyX1oX12xXX0XADuJxL5uikEnLUndCKC2ZhtaZtvAld9MsqmpetZtr3hWXjQ6ka0PqxPcRyxhnaMjGGoH0Bho0E1S1S9JdMwIkqrlKKBSjRo7/OLQ089x1EZ2m0HRIvjUabWi0KJyYJ/Q2ep76eU4kqwLRFBLfDhdDFgxkcrPOAnkbJJlarD8kkjJmoMMsmix51z0b8ZRO9cqZcQXc/IYxlpJCSnymDMyd3zWBn077%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3DwElD3IG5nmKPtWOTR%252BkwlwR7aVVIhz6m%26hash%3DZuIAFIk9Z5oTHo%252FcXjSR1dcS41e219T3SUAgnEZD3l0%253D%26dd%3D1
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025412.13c29d5a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 22626
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187

Response

HTTP/2.0 200

content-length: 330
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a544d3174978b7939b88fd50c559
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LvCVpTTPUE6ME0yWZ3NglIBmKNYOB1/+11Pm6neOt4A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:53 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=03B7B6138F3D6B441EFDA3798E6A6A79; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:52 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025412.13c2a0a8
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736025399124%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226779a535c4b9461baf3e6dff61071b8a%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025399138%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226779a535c4b9461baf3e6dff61071b8a%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025399138%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025399353%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399368%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1736025399476%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736025399567%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399629%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736025399124%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226779a535c4b9461baf3e6dff61071b8a%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025399138%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226779a535c4b9461baf3e6dff61071b8a%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025399138%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025399353%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399368%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1736025399476%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736025399567%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399629%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187

Response

HTTP/2.0 200

content-length: 324
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a545f97248a48e27846ad6edcdf1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Yx6o7t4wwCJhjwRyzI+wJ7Krg8Zlu5nhEx0sXEN7wcI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:53 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1F8DE4C8660462B03595F1A2678D6390; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025413.13c2a25a
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025399361%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025399361%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187

Response

HTTP/2.0 200

content-length: 246
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a54557d04811976534c08a5809b7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-E/Vl39Fbvx+Lbq/WfKlq3Ecw3t2MHniL5TWFrjG3Fg8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:53 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=16ABEDAF6E916F8E01FEF8C56F2F6E8A; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025413.13c2a3c6
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187

Response

HTTP/2.0 200

content-length: 259
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a5451e114606aa25d68c97ceb3f1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-L+ZkdbFn+SPyrGq3dwg1pnzgRQbnISwQeujjAYVgYxM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:53 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=31B5C9F27F6562E705C6DC987EA96325; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025413.13c2a5ce
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=7A17024427584A86AB1CA612FF66F67E&ID=SERP,5758.1&url=javascript%3A%20void(0)

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=7A17024427584A86AB1CA612FF66F67E&ID=SERP,5758.1&url=javascript%3A%20void(0) HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758

Response

HTTP/2.0 200

content-length: 258
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6779a54548fe4581a0377e87664e110e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-mvykAnsHy1hEsTeSIC4ePd5KiLQX8Xu6P87w3X6MmhI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sat, 04 Jan 2025 21:16:53 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0D4CA490DE63676406FFB1FADF2C6643; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025413.13c2a682
GET

https://www.bing.com/notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b639
POST

https://www.bing.com/fd/ls/ls.gif?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225531.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736025403726,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/ls.gif?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225531.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736025403726,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b64e
GET

https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a548a57844168dff2e0ca301f1e6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-eMOSikmMneJMh6DjO/95/6XjDuM16943auoZhRqjlHM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D5F7BB4556CE470FAEB7092FFC622012 Ref B: LON601060104011 Ref C: 2025-01-04T21:16:56Z
date: Sat, 04 Jan 2025 21:16:56 GMT
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:56 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656; domain=.bing.com; expires=Thu, 29-Jan-2026 21:16:56 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b668
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b683
POST

https://www.bing.com/fd/ls/ls.gif?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225532.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736025404239,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/ls.gif?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225532.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736025404239,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b6bc
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b744
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b771
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736025403320%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736025403321%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736025403320%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736025403321%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b7bd
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399608%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399608%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b834
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%2202e512c7-96f4-f514-a40b-d65afbcc2bdf%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025406667%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseEnter%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%2202e512c7-96f4-f514-a40b-d65afbcc2bdf%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025406667%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseEnter%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:16:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025416.13c2b83b
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%2202e512c7-96f4-f514-a40b-d65afbcc2bdf%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025407074%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseLeave%22%7D%2C%7B%22MouseEventId%22%3A%2277d61c2d-1864-3702-85db-1b3e27547d27%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025407580%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseEnter%22%7D%2C%7B%22MouseEventId%22%3A%2277d61c2d-1864-3702-85db-1b3e27547d27%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025408845%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseLeave%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%2202e512c7-96f4-f514-a40b-d65afbcc2bdf%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025407074%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseLeave%22%7D%2C%7B%22MouseEventId%22%3A%2277d61c2d-1864-3702-85db-1b3e27547d27%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025407580%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseEnter%22%7D%2C%7B%22MouseEventId%22%3A%2277d61c2d-1864-3702-85db-1b3e27547d27%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025408845%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseLeave%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 236
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6779a5493ce34c93932d4d48bdfe02e0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XB1JsiUAymTAWvRWR/qUPY0oS7f+VL5NcVg+TdjB+aQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 78954C0436F84959855200A535BDFE89 Ref B: LON601060102062 Ref C: 2025-01-04T21:16:57Z
date: Sat, 04 Jan 2025 21:16:57 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647; expires=Thu, 29-Jan-2026 21:16:57 GMT; path=/; HttpOnly
set-cookie: DIDC=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDC=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025417.13c2bb2a
GET

https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736025407818%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%223974.000000016531%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736025407820%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%2220543.000000005122%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736025407820%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736025407818%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%223974.000000016531%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736025407820%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%2220543.000000005122%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736025407820%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sat, 04 Jan 2025 21:17:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.c1777b5c.1736025418.13c2c0f1
GET

https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=d2517e3701c54b8497654814f6ada1f8&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=w&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=d2517e3701c54b8497654814f6ada1f8&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=we&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=65882ec3fe644467866fd051cf810d11&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=we&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=65882ec3fe644467866fd051cf810d11&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wea&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=c32177a0c5ca4501aaa72bc06ec5609f&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wea&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=c32177a0c5ca4501aaa72bc06ec5609f&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wear&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=875209891b1b4a919aaa0592c1da62d9&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wear&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=875209891b1b4a919aaa0592c1da62d9&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=weare&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=ae1a0a2de31b4380a711927c1164401e&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=weare&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=ae1a0a2de31b4380a711927c1164401e&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=weared&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=08abb1fc4099410f8d3187d1934b16f0&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=weared&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=08abb1fc4099410f8d3187d1934b16f0&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearede&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=1b0dc159f9484806b0933c4d238cfc03&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearede&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=1b0dc159f9484806b0933c4d238cfc03&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearedev&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=057b9fb6c18d42b78cd8e87767e81a2e&oit=1&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedev&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=057b9fb6c18d42b78cd8e87767e81a2e&oit=1&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearedevs&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=0c8685394b2a41e386c822a66a2b75b6&oit=1&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedevs&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=0c8685394b2a41e386c822a66a2b75b6&oit=1&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearedevs.&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=c2da448677384cd3bb5a7d91ad864164&oit=1&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedevs.&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=c2da448677384cd3bb5a7d91ad864164&oit=1&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearedevs.n&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=50f9e66f8e98471aab84d4288c571182&oit=1&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedevs.n&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=50f9e66f8e98471aab84d4288c571182&oit=1&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearedevs.ne&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=6f615519599d432dbe63c343e6f795a0&oit=3&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedevs.ne&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=6f615519599d432dbe63c343e6f795a0&oit=3&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/qbox?query=wearedevs.net&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=3bb0cf11768b4179a33ae4b3f34a6a3a&oit=3&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /qbox?query=wearedevs.net&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=3bb0cf11768b4179a33ae4b3f34a6a3a&oit=3&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=22FC2F28EE7B6B5C1B4B3A42EF826A53&clientsid=undefined

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /geolocation/write?isBlocked=true&sid=22FC2F28EE7B6B5C1B4B3A42EF826A53&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416128%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416128%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416128%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416128%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025416145%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025416145%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
GET

https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736025416155%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22921.4999999967404%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736025416156%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%2219691.500000015367%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736025416156%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416208%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736025416155%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22921.4999999967404%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736025416156%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%2219691.500000015367%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736025416156%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416208%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 3g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

92.123.128.170:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DIDC=ct%3D1736025417%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C549_SN1.0.D.CqRfa5HaIAYg9rQuvqR3OGmNV5JjjoaZKSzkzZhcahHpKRR5DSyvI38d8wXl8g6fYRaqIfdm/mOfsBF5kHSkk8SynjDqTDhujQtGAXkppeerBowQEZ3%252BHrWab4KxWX2YuKEwul2kOLcfXjmumhJwyJGQlHAXNSUIMlT00XU4S6MxThRSfglaQLdAo1DLeesly6hI4fdotITqn1OjDSFR1DC1AnrGNvg%252B4GWfqF/dpiZ8PACHuzYD5XJLpQ/fnLonNFoVQxLkRZsc8OwTvPNG/1PfwNdN2nlMR2T2Fxfr9aP9MmGrstc2YMm0n2yNkoBfc9WyX1oX12xXX0XADuJxL5uikEnLUndCKC2ZhtaZtvAld9MsqmpetZtr3hWXjQ6ka0PqxPcRyxhnaMjGGoH0Bho0E1S1S9JdMwIkqrlKKBSjRo7/OLQ089x1EZ2m0HRIvjUabWi0KJyYJ/Q2ep76eU4kqwLRFBLfDhdDFgxkcrPOAnkbJJlarD8kkjJmoMMsmix51z0b8ZRO9cqZcQXc/IYxlpJCSnymDMyd3zWBn077%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3D8nN7te5YZ%252BTJ9WCTZJ%252FK3QViUSMyJoSa%26hash%3DREHE3ISYPeN%252FziEH6RtHg7Ttbdz3uMOVA41kzsiFFFY%253D%26dd%3D1
cookie: DIDCL=ct%3D1736025417%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C549_SN1.0.D.CqRfa5HaIAYg9rQuvqR3OGmNV5JjjoaZKSzkzZhcahHpKRR5DSyvI38d8wXl8g6fYRaqIfdm/mOfsBF5kHSkk8SynjDqTDhujQtGAXkppeerBowQEZ3%252BHrWab4KxWX2YuKEwul2kOLcfXjmumhJwyJGQlHAXNSUIMlT00XU4S6MxThRSfglaQLdAo1DLeesly6hI4fdotITqn1OjDSFR1DC1AnrGNvg%252B4GWfqF/dpiZ8PACHuzYD5XJLpQ/fnLonNFoVQxLkRZsc8OwTvPNG/1PfwNdN2nlMR2T2Fxfr9aP9MmGrstc2YMm0n2yNkoBfc9WyX1oX12xXX0XADuJxL5uikEnLUndCKC2ZhtaZtvAld9MsqmpetZtr3hWXjQ6ka0PqxPcRyxhnaMjGGoH0Bho0E1S1S9JdMwIkqrlKKBSjRo7/OLQ089x1EZ2m0HRIvjUabWi0KJyYJ/Q2ep76eU4kqwLRFBLfDhdDFgxkcrPOAnkbJJlarD8kkjJmoMMsmix51z0b8ZRO9cqZcQXc/IYxlpJCSnymDMyd3zWBn077%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3D8nN7te5YZ%252BTJ9WCTZJ%252FK3QViUSMyJoSa%26hash%3DREHE3ISYPeN%252FziEH6RtHg7Ttbdz3uMOVA41kzsiFFFY%253D%26dd%3D1
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622197
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.170:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 23224
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: MUIDB=28151858BA2767D9100B0D32BBDE6647
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622197
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bfe80271-601e-0028-1e2e-179d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=178923
expires: Mon, 06 Jan 2025 22:58:35 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025392.1ca72f0c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5639f321-d01e-0018-37f5-17c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=44446
expires: Sun, 05 Jan 2025 09:37:18 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025392.1ca72f0d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:34 GMT
etag: 0x8DCDC64A18F365B
content-length: 671
content-type: image/svg+xml
content-md5: 2e0aQjQvN2lVcUGQcPjoGA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 08fd2788-101e-0005-299e-161eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=175971
expires: Mon, 06 Jan 2025 22:09:26 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74489
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:12 GMT
etag: 0x8DCDC63E1AC19C2
content-type: text/css
content-md5: zul1ioyI5qjKzvVMsqd8eQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0f609f2e-201e-0060-312a-17afb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 389
cache-control: public, no-transform, max-age=50522
expires: Sun, 05 Jan 2025 11:18:37 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74719
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:40:29 GMT
etag: 0x8DCEC880F396E3D
content-type: text/css
content-md5: Twb1SQrgn66TMkCHmLv8IQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 83142a0a-b01e-006e-6f86-1e43b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 301
cache-control: public, no-transform, max-age=257991
expires: Tue, 07 Jan 2025 20:56:26 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca7471a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC86967FA2A4
content-type: text/css; charset=utf-8
content-md5: yxQVEL8D2yYKzOkWuxDcBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c7a6c74-e01e-0054-6fe1-20001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 375
vary: Accept-Encoding
cache-control: public, no-transform, max-age=429484
expires: Thu, 09 Jan 2025 20:34:39 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca7471b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:25 GMT
etag: 0x8DCDC5EE1BFCC0A
content-length: 282
content-type: image/svg+xml
content-md5: 44eVtjQVTsH/Qca82lTuUg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cb8a8bc-801e-0066-2597-1558ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=119030
expires: Mon, 06 Jan 2025 06:20:25 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca747c8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:10:08 GMT
etag: 0x8DCDC67EC841DCF
content-type: text/css
content-md5: DnViWNsgH/Vlo3SrH5gEzg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a5df6690-b01e-002a-195b-169fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1339
cache-control: public, no-transform, max-age=63122
expires: Sun, 05 Jan 2025 14:48:37 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca747c6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 1101
content-type: image/svg+xml
content-md5: kc0Rz8ymXPrOlhUyaNcfYw==
last-modified: Fri, 12 Aug 2022 20:45:00 GMT
etag: 0x8DA7CA3867FC831
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: adc41e54-901e-0086-2e09-15d69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.097b1060.1686747743.2aab8902
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.097b1060.1686747764.2aac12e8
akamai-grn: 0.2a7b1060.1687568922.2d70b24a
akamai-grn: 0.3d7b1060.1689052474.2206a8cd
akamai-grn: 0.21aedd58.1689771282.bd10a3b
cache-control: public, no-transform, max-age=4687883
expires: Fri, 28 Feb 2025 03:27:58 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca747c7
timing-allow-origin: *
GET

https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 20:49:31 GMT
etag: 0x8DA7EFFA703EB5F
akamai-grn: 0.59281102.1714799759.224b2228
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 964
content-type: image/svg+xml
content-md5: iOPtPdfu4TP3P/udNrBLbw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a81edf47-401e-0068-185a-0386c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=11494524
expires: Sat, 17 May 2025 22:11:59 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca7483d
timing-allow-origin: *
GET

https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:54:00 GMT
etag: 0x8DCDC65AB4005D8
content-length: 1391
content-type: image/svg+xml
content-md5: YgWAZX6KRbSnuEULjaXNMg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 57ac4d2d-301e-0012-1744-19de8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=217437
expires: Tue, 07 Jan 2025 09:40:32 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74a85
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:39:27 GMT
etag: 0x8DA7EE519EF54EF
akamai-grn: 0.19fd4817.1699775190.19e2dda6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 726
content-type: image/svg+xml
content-md5: ZgHkolq4RyA+EBWzJRSxbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d46b8e76-f01e-0020-517e-0a9bf6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1efd4817.1701123842.3b4e7f5b
cache-control: public, no-transform, max-age=6500726
expires: Fri, 21 Mar 2025 03:02:01 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74a86
timing-allow-origin: *
GET

https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 1111
content-type: image/svg+xml
content-md5: wEyINKyRgCGG5s5neuSonQ==
last-modified: Mon, 15 Aug 2022 17:43:38 GMT
etag: 0x8DA7EE5AFDCD0E6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b64d6f1d-301e-0026-47c0-9e523e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b69f3617.1734277877.1be94e0c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=12266632
expires: Mon, 26 May 2025 20:40:27 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74a87
timing-allow-origin: *
GET

https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:39 GMT
etag: 0x8DCDC650FC3D927
content-length: 3791
content-type: image/jpeg
content-md5: KZpHmi9/HzDQlUXKjMXRYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 10c61bf0-e01e-0039-04d1-15aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=324041
expires: Wed, 08 Jan 2025 15:17:16 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74aec
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:48 GMT
etag: 0x8DCDC5EEFB0049C
content-length: 6817
content-type: image/jpeg
content-md5: DEHuMbBOl4tIgtF2kPA6Og==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 42a58b94-c01e-0048-0d59-17d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=120389
expires: Mon, 06 Jan 2025 06:43:04 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74afa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C424AE8
content-length: 5387
content-type: image/jpeg
content-md5: adFid0+JT/i5IDMON2t6Yg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f55db75-401e-0016-1dc2-172b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=93258
expires: Sun, 05 Jan 2025 23:10:53 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025395.1ca74af9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:51 GMT
etag: 0x8DCDC65ED9B19A0
content-length: 4409
content-type: image/jpeg
content-md5: qYoIvbmbhCLJ3J1v3ZOHww==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0123ab47-601e-0001-11da-15eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=54978
expires: Sun, 05 Jan 2025 12:32:54 GMT
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025396.1ca74bb6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:43:17 GMT
etag: 0x8DCDC642C51AEC8
content-length: 4934
content-type: image/jpeg
content-md5: /aLOrgZ5YRk35ucfcBo2qw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7cf0b878-401e-0016-5884-1d2b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=153788
expires: Mon, 06 Jan 2025 15:59:44 GMT
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025396.1ca74c3c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:55 GMT
etag: 0x8DCDC63FB5BC9CB
content-length: 4547
content-type: image/jpeg
content-md5: eu9Mz25HuboDg2XNPR9Wkw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ffe763-201e-0024-1c98-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=390905
expires: Thu, 09 Jan 2025 09:51:41 GMT
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025396.1ca74cb7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:56 GMT
etag: 0x8DCDC65F09D13C1
content-length: 5944
content-type: image/jpeg
content-md5: 9ucNopg0mtlCFfC0podQNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c1644b07-101e-002c-4b21-1868ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=89206
expires: Sun, 05 Jan 2025 22:03:22 GMT
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025396.1ca74cb8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:31 GMT
etag: 0x8DCDC664D1860E2
content-length: 3814
content-type: image/jpeg
content-md5: KBVwYR+JIZqXDyWJ+YoJ2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 53edbb4d-401e-003f-5f31-165d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=361297
expires: Thu, 09 Jan 2025 01:38:13 GMT
date: Sat, 04 Jan 2025 21:16:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025396.1ca74cb9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Zj5QqsSQi83uQ7b8BpArQo3Jsn4.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Zj5QqsSQi83uQ7b8BpArQo3Jsn4.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:00 GMT
etag: 0x8DCDC63278E8A10
content-length: 161
content-type: text/css
content-encoding: br
content-md5: vSCYu2PJi4zaHEa/HTJqQQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 13c92c5e-601e-0001-658a-18eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=47141
expires: Sun, 05 Jan 2025 10:22:20 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca75fb0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RBARmUXLe8rKWg9gEFXYysn3nEg.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/RBARmUXLe8rKWg9gEFXYysn3nEg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:32 GMT
etag: 0x8DCDC6145EAD1FD
content-length: 304
content-type: text/css
content-encoding: br
content-md5: aYuXeawTQ7TSixrzzSVTgw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 855af227-401e-001d-4145-17337a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=182669
expires: Tue, 07 Jan 2025 00:01:08 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca75fb1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TpPCFCXHYMX-2o17wlqq63GR6OE.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/TpPCFCXHYMX-2o17wlqq63GR6OE.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:52 GMT
etag: 0x8DCDC61E120C9B5
content-length: 774
content-type: text/css
content-encoding: br
content-md5: ikrF42r74L0bN00bXL6QEA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f0acfa0-701e-001e-5c5b-17307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=260432
expires: Tue, 07 Jan 2025 21:37:11 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca7602d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zYRmeqAEd4Z0yDRz8nuL0syHMEI.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/zYRmeqAEd4Z0yDRz8nuL0syHMEI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:44 GMT
etag: 0x8DCDC68D830B39F
akamai-grn: 0.521a1202.1728812707.3c78fc7f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2206
content-type: image/svg+xml
content-md5: +Ke5BiqVyVqqFNkMAwQVAg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 03e0fe79-601e-000a-575b-17f319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=178838
expires: Mon, 06 Jan 2025 22:57:17 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca760af
timing-allow-origin: *
GET

https://r.bing.com/rp/0WKY0ny-iWR3yYCvsD6MQVMjVbw.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/0WKY0ny-iWR3yYCvsD6MQVMjVbw.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:05 GMT
etag: 0x8DCEC86776C6AA6
content-length: 451
content-type: image/svg+xml
content-md5: QNVrLpAhQ7Rj+gXjEnWH0g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f3e85e2-d01e-0057-077e-1e031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=399729
expires: Thu, 09 Jan 2025 12:18:48 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca760b2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9mM--t8iClqcK4e1MHzNovhHkVA.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/9mM--t8iClqcK4e1MHzNovhHkVA.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:27 GMT
etag: 0x8DCDC5D7D68AC66
content-length: 841
content-type: image/svg+xml
content-md5: zu2kCMY1TwF6MCaNepsshg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 20880da7-a01e-0017-37eb-172af3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=383259
expires: Thu, 09 Jan 2025 07:44:18 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca76178
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/kxTm6_yMJSr-Au_oSrzcrpJm2mY.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/kxTm6_yMJSr-Au_oSrzcrpJm2mY.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:54:25 GMT
etag: 0x8DCDC65BA160F22
akamai-grn: 0.bb777b5c.1734210554.4ed4f1c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 711
content-type: image/svg+xml
content-md5: 5szlMDR/egfVSTNt9hv40w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 458fbf21-001e-0011-75f1-17dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=156127
expires: Mon, 06 Jan 2025 16:38:46 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca76179
timing-allow-origin: *
GET

https://r.bing.com/rp/XhuulIbo88eLoQSXNdexXtHhacY.svg

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/XhuulIbo88eLoQSXNdexXtHhacY.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:54 GMT
etag: 0x8DCDC62B8D4DC4D
content-length: 459
content-type: image/svg+xml
content-md5: J/tOrtSZUImYkLnx3dtO2g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d1a8081c-201e-0042-03f2-17c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=233214
expires: Tue, 07 Jan 2025 14:03:33 GMT
date: Sat, 04 Jan 2025 21:16:39 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8e777b5c.1736025399.1ca7617a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rkc4dXUuTwYj-GlQG8osxg1V2gE.br.css

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/rkc4dXUuTwYj-GlQG8osxg1V2gE.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 7580
content-type: text/css
content-encoding: br
content-md5: bvn3bcoADdO+/AIh2nRUjg==
last-modified: Tue, 31 Dec 2024 03:34:44 GMT
etag: 0x8DD294C11620E10
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 636af61d-701e-0073-650b-5e9a53000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.966c645f.1735941631.79749
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.7d6e5668.1735944302.65f0b39
cache-control: public, no-transform, max-age=334899
expires: Wed, 08 Jan 2025 18:18:07 GMT
date: Sat, 04 Jan 2025 21:16:28 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025388.207acfc0
timing-allow-origin: *
GET

https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:49 GMT
etag: 0x8DCDC64632A6EF0
content-length: 323
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +CLmYDPZ4qSTibcD/NDa/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2d466869-101e-000e-0e2a-15069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=389109
expires: Thu, 09 Jan 2025 09:21:40 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae502
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:03 GMT
etag: 0x8DCE8C2678A65ED
content-length: 2425
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: QLqZvnBZLjc5NijnEXP26w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f4507f6-101e-0027-2cde-1a70d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.c3777b5c.1728560741.6cdc3fa
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=40358
expires: Sun, 05 Jan 2025 08:29:09 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae565
timing-allow-origin: *
GET

https://r.bing.com/rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:24 GMT
etag: 0x8DD0492999C1FC5
content-type: text/javascript; charset=utf-8
content-md5: 7P/1lM50lR5NLXB84B2f6A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9e019c6c-701e-005a-4afe-36ec11000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8835
vary: Accept-Encoding
cache-control: public, no-transform, max-age=226178
expires: Tue, 07 Jan 2025 12:06:09 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae566
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:02 GMT
etag: 0x8DCE8C28AC2EAB8
content-length: 2634
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YP0IUbsZfddh5LfrNKc0vw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 38c317d3-701e-0078-40de-1a8227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=310301
expires: Wed, 08 Jan 2025 11:28:12 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae567
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-type: text/javascript; charset=utf-8
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c9e094ce-201e-006b-4d95-16b7c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 936
cache-control: public, no-transform, max-age=142028
expires: Mon, 06 Jan 2025 12:43:39 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae568
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:42 GMT
etag: 0x8DCE8C30DC01669
content-length: 250
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e7f/zlZuzAgnEk3uqGLnHQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1c8cd8bd-201e-0060-58de-1aafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=343280
expires: Wed, 08 Jan 2025 20:37:51 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae569
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 16 Dec 2024 11:02:51 GMT
etag: 0x8DD1DC12F5170F5
content-length: 1184
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: vG1h+ad2ByVr1L4MKJZ7kQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9a7b2d54-b01e-0008-57e1-4ff1e3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=332710
expires: Wed, 08 Jan 2025 17:41:41 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae56a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:51 GMT
etag: 0x8DCE8C3132785D7
content-length: 5065
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zen1RFa4GLG9w/XJIRfohw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4527fc94-701e-001e-76de-1a307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=95432
expires: Sun, 05 Jan 2025 23:47:03 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae56c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:32 GMT
etag: 0x8DCE8C29C4714A6
content-length: 64359
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yBOhuH8WUdZCzcrV/Ken2A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f3ed3c1-401e-0059-09df-1aef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.266d1002.1728543050.2271765d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=354120
expires: Wed, 08 Jan 2025 23:38:31 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae56d
timing-allow-origin: *
GET

https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
content-length: 395
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bJNwzHWywBuWP28bX2mBGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5fa04812-b01e-002a-02f0-159fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=267231
expires: Tue, 07 Jan 2025 23:30:22 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae56b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 16 Dec 2024 04:25:34 GMT
etag: 0x8DD1D89AF04AAB6
content-length: 69606
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ad+ATQX4spqIJ4t9WC3SeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 47eff3ad-c01e-0025-7ee1-4f7223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1734374203.2191d773
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=64179
expires: Sun, 05 Jan 2025 15:06:10 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae56e
timing-allow-origin: *
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
content-type: text/javascript; charset=utf-8
content-md5: l5PXwpOyUFdqY44wmnrCag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b4e3ce2a-b01e-0047-3072-1535fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 467
cache-control: public, no-transform, max-age=316867
expires: Wed, 08 Jan 2025 13:17:38 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae56f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
content-type: text/javascript; charset=utf-8
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 738
cache-control: public, no-transform, max-age=170488
expires: Mon, 06 Jan 2025 20:37:59 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae570
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d52007ef-d01e-0031-380a-16b147000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=223854
expires: Tue, 07 Jan 2025 11:27:25 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae572
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
content-type: text/javascript; charset=utf-8
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2e3e1981-a01e-0058-3dc9-17eeeb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 178
vary: Accept-Encoding
cache-control: public, no-transform, max-age=224018
expires: Tue, 07 Jan 2025 11:30:09 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae573
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
content-type: text/javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca734619-801e-006d-1b17-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
vary: Accept-Encoding
cache-control: public, no-transform, max-age=143091
expires: Mon, 06 Jan 2025 13:01:22 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae574
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
akamai-grn: 0.be777b5c.1733897828.b1f68fb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c09ff7a9-a01e-0053-3de5-18f69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 321
cache-control: public, no-transform, max-age=282738
expires: Wed, 08 Jan 2025 03:48:49 GMT
date: Sat, 04 Jan 2025 21:16:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025391.207ae575
timing-allow-origin: *
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b418c73-801e-0022-3518-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=209964
expires: Tue, 07 Jan 2025 07:35:56 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae817
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:27 GMT
etag: 0x8DCE8C34C6E86D0
akamai-grn: 0.521a1202.1735114007.34ab649f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5WRb79OLEOB99g79FkaKhA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 26334174-401e-0070-6edf-1a9954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=134867
expires: Mon, 06 Jan 2025 10:44:19 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae818
timing-allow-origin: *
GET

https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 399
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Fri, 20 Dec 2024 06:44:39 GMT
x-eventid: 67699eb273614b2d93eb4878e6953733
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP00010627
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-B2FakQPSVuC5inHhZ5I4nAMvk1nM+WS3fGneoFZ6XI0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=312540
expires: Wed, 08 Jan 2025 12:05:32 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae81a
timing-allow-origin: *
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
content-type: text/javascript; charset=utf-8
content-md5: yaTET5I1fmUKhVemn0wu5w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e896eaf0-201e-000d-4a7b-1e059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 786
cache-control: public, no-transform, max-age=182730
expires: Tue, 07 Jan 2025 00:02:02 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae81b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 678b32bb-e01e-005f-480a-17186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=339047
expires: Wed, 08 Jan 2025 19:27:19 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae81d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:36 GMT
etag: 0x8DCE8C30A28A766
content-length: 1707
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MkbY3tM5BoIJgMyWXEttiw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e3c807ce-a01e-0053-0ade-1af69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.85777b5c.1728543050.f5bedc2
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=384261
expires: Thu, 09 Jan 2025 08:00:53 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae81e
timing-allow-origin: *
GET

https://r.bing.com/rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:36 GMT
etag: 0x8DCDC5F9B563C48
content-length: 168
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 10AmaEgXjFITcl8HP2hwyQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7603ac22-901e-0036-1f5b-1547c2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=73952
expires: Sun, 05 Jan 2025 17:49:04 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae820
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:36 GMT
etag: 0x8DCDC633D5EAA6A
content-type: text/javascript; charset=utf-8
content-md5: ZsrYRIS4X28M0gd5bb2Heg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b2debb41-001e-0038-08c0-18abc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 311
cache-control: public, no-transform, max-age=150814
expires: Mon, 06 Jan 2025 15:10:06 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae821
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
content-length: 462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: fr82fvtvcsicFIwsSPlj7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8defdcf7-101e-004a-72ef-15daf7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.c0777b5c.1730705568.1bb28cac
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=83884
expires: Sun, 05 Jan 2025 20:34:36 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae822
timing-allow-origin: *
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
content-type: text/javascript; charset=utf-8
content-md5: +jWBJey2nJqR+pG7G7E28A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7fcf8c82-301e-003b-4d01-17a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 197
cache-control: public, no-transform, max-age=336469
expires: Wed, 08 Jan 2025 18:44:21 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae824
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
akamai-grn: 0.9b777b5c.1734166730.7f09ab3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cbc4fcef-801e-004f-35b8-162e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=85452
expires: Sun, 05 Jan 2025 21:00:44 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae816
timing-allow-origin: *
GET

https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
akamai-grn: 0.8e777b5c.1734432781.132c8310
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f848f133-f01e-0062-47bc-17ad48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=99805
expires: Mon, 06 Jan 2025 00:59:57 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae825
timing-allow-origin: *
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-length: 635
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4c8af66e-001e-0033-6cab-16b3bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=139677
expires: Mon, 06 Jan 2025 12:04:29 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae819
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:37 GMT
etag: 0x8DCE8C30A6A61DD
content-length: 7058
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: /nrOcgcgG+7k8yxsmx1J4Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4805e060-e01e-005f-4dde-1a186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=332865
expires: Wed, 08 Jan 2025 17:44:17 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae81c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 315
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Fri, 20 Dec 2024 06:44:41 GMT
x-eventid: 676829f75a234bb78307a82acfac9569
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E13F
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-izdVEW++280dLBDSnyIELmHTemhLB0+yFxG1mMmku6g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=305613
expires: Wed, 08 Jan 2025 10:10:05 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae823
timing-allow-origin: *
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
content-type: text/javascript; charset=utf-8
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2d1bb067-101e-000e-7818-15069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 641
cache-control: public, no-transform, max-age=212447
expires: Tue, 07 Jan 2025 08:17:19 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae81f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
content-type: text/javascript; charset=utf-8
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c27362a4-801e-0066-350e-1658ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 415
cache-control: public, no-transform, max-age=119963
expires: Mon, 06 Jan 2025 06:35:55 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae87b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-type: text/javascript; charset=utf-8
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: da860909-201e-000d-2e71-15059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 419
cache-control: public, no-transform, max-age=139734
expires: Mon, 06 Jan 2025 12:05:26 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae87d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:15:09 GMT
etag: 0x8DCDC689FBBE351
content-type: text/javascript; charset=utf-8
content-md5: WEjo6St2+BsB3AUDglK12Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e287049f-a01e-0053-1a97-15f69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 226
cache-control: public, no-transform, max-age=48744
expires: Sun, 05 Jan 2025 10:48:56 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae87e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-length: 446
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bb84af5d-e01e-0032-1700-15b240000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=131881
expires: Mon, 06 Jan 2025 09:54:33 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae87f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:47 GMT
etag: 0x8DCE8C2817D87DF
akamai-grn: 0.521a1202.1735724238.93556623
content-type: text/javascript; charset=utf-8
content-md5: 63v18faN7ozJ98XstK/S+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: abb7f9ac-b01e-0065-30fe-1a5bcd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11731
cache-control: public, no-transform, max-age=281819
expires: Wed, 08 Jan 2025 03:33:31 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae880
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:16 GMT
etag: 0x8DCE8C26ED294B5
akamai-grn: 0.af777b5c.1732951657.1f2dc9cf
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 65123
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ImVBVQpRkRw3Uhb3GEk/ZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ecfd2e8-701e-0015-5bde-1a2809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=205957
expires: Tue, 07 Jan 2025 06:29:09 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae881
timing-allow-origin: *
GET

https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:17 GMT
etag: 0x8DCE8C2DB362309
content-length: 3498
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: qFAs4wCMzQBOlKg9KBk6eA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1c8cd8dc-201e-0060-74de-1aafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b4777b5c.1728560750.314d551
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=48619
expires: Sun, 05 Jan 2025 10:46:51 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae883
timing-allow-origin: *
GET

https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:08 GMT
etag: 0x8DCDC5E250561B1
content-length: 476
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dIetyGvEY3rWVcsphG5z6g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 01b6c2e5-f01e-0026-4bad-147124000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=312463
expires: Wed, 08 Jan 2025 12:04:15 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae885
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:30 GMT
etag: 0x8DCDC5D13CD0771
content-type: text/javascript; charset=utf-8
content-md5: L5ADL4PV6f4x84onM+3pfQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9de40b7a-901e-0079-35f3-1583da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 326
cache-control: public, no-transform, max-age=238090
expires: Tue, 07 Jan 2025 15:24:42 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae886
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:01 GMT
etag: 0x8DCDC5F3F15CCC5
akamai-grn: 0.c1777b5c.1734162534.a034d9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 304
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PX2MCYqpUzo58j8uZ/WgUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f4ddfdf-701e-003c-0e78-175e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=126530
expires: Mon, 06 Jan 2025 08:25:22 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae888
timing-allow-origin: *
GET

https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:13 GMT
etag: 0x8DCE8C2D89FAB3C
content-length: 20117
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: G9Suce+Oaa1LX/2Nx9LctQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca56cff9-101e-0005-52de-1a1eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b1777b5c.1728544439.3893beb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=417979
expires: Thu, 09 Jan 2025 17:22:51 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae882
timing-allow-origin: *
GET

https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:16:07 GMT
etag: 0x8DCDC6060BC5610
content-type: text/javascript; charset=utf-8
content-md5: pDodX6p5WFhmpgGbyxGATg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9772e152-f01e-004b-29c5-18db0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 276
cache-control: public, no-transform, max-age=48883
expires: Sun, 05 Jan 2025 10:51:15 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae887
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 06 Dec 2024 21:14:03 GMT
etag: 0x8DD163AE97BF649
content-length: 318
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CPKqpyd3O29Qao9K5FGPzQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bbcea579-c01e-0043-446a-48c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.85777b5c.1733570013.17f19a05
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=251855
expires: Tue, 07 Jan 2025 19:14:07 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae88a
timing-allow-origin: *
GET

https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:23 GMT
etag: 0x8DCDC66D6FEC879
content-length: 1092
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: v56DnyZo0+Ho77B8f6GoyA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d944e846-001e-0011-1209-19dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=260273
expires: Tue, 07 Jan 2025 21:34:25 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae88b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:23 GMT
etag: 0x8DCE8C3263B07E9
content-length: 825
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 80z3xDtWBrHD/WXVZ9HXMQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9b208278-901e-001f-14de-1a3180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=60350
expires: Sun, 05 Jan 2025 14:02:22 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae88d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IzifzVeZAFUPAOVXA0p1w_tvqEA.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/IzifzVeZAFUPAOVXA0p1w_tvqEA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
akamai-grn: 0.9b777b5c.1735156104.7835221
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c759597-301e-0056-56c7-1702e0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 797
cache-control: public, no-transform, max-age=51708
expires: Sun, 05 Jan 2025 11:38:20 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae88e
timing-allow-origin: *
GET

https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:28 GMT
etag: 0x8DCE8C305642E82
content-length: 1453
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: o0P31pAM8ZjqucLAMWUkZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bfb76974-801e-0000-2cde-1aea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.96777b5c.1728544439.2af9d38
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=53347
expires: Sun, 05 Jan 2025 12:05:39 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae88f
timing-allow-origin: *
GET

https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:37:29 GMT
etag: 0x8DCEC87A3ED1870
akamai-grn: 0.b7777b5c.1734814922.f734a4d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: F/FfhRxYlnuZTsg2+6i7VA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 94aed70b-c01e-006a-14d8-35b63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=167686
expires: Mon, 06 Jan 2025 19:51:18 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae890
timing-allow-origin: *
GET

https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
content-type: text/javascript; charset=utf-8
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e18b7d35-c01e-0061-2e2c-17ae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 257
vary: Accept-Encoding
cache-control: public, no-transform, max-age=391423
expires: Thu, 09 Jan 2025 10:00:15 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae891
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
content-length: 585
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c66ecb53-c01e-0048-4d31-16d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=232934
expires: Tue, 07 Jan 2025 13:58:46 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae893
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:13 GMT
etag: 0x8DCDC5D2D7EB1BF
content-type: text/javascript; charset=utf-8
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dcc31df8-c01e-0043-52ce-17c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 339
cache-control: public, no-transform, max-age=93318
expires: Sun, 05 Jan 2025 23:11:50 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae895
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
akamai-grn: 0.8e777b5c.1734366758.f81ce67
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 96271d35-101e-002c-405a-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=58335
expires: Sun, 05 Jan 2025 13:28:47 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae896
timing-allow-origin: *
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 248
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Fri, 20 Dec 2024 06:44:41 GMT
x-eventid: 676b57f3d1874c03b9a45ff680e12acd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E011
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-G/dlc/TWvUjtKXVYMIbJSoi9XCRxiKZsePxjCI9AOzs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=272313
expires: Wed, 08 Jan 2025 00:55:05 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae897
timing-allow-origin: *
GET

https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
content-type: text/javascript; charset=utf-8
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5a3b44f6-001e-0011-7337-16dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 205
cache-control: public, no-transform, max-age=132787
expires: Mon, 06 Jan 2025 10:09:39 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae898
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
akamai-grn: 0.521a1202.1735156104.37c8c3cf
content-type: text/javascript; charset=utf-8
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e6aac681-201e-0042-1314-16c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 632
cache-control: public, no-transform, max-age=75690
expires: Sun, 05 Jan 2025 18:18:02 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae89b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:12 GMT
etag: 0x8DCE8C26CBEA77D
content-type: text/javascript; charset=utf-8
content-md5: NwHEJrwNKfNaWOfUurgsUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e6a6c78f-301e-0012-46fe-1ade8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1913
cache-control: public, no-transform, max-age=87371
expires: Sun, 05 Jan 2025 21:32:43 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8a3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:47 GMT
etag: 0x8DCE8C2C92E361F
content-type: text/javascript; charset=utf-8
content-md5: oCgEakDIKvDIYdA4zfrHhQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0f2a0d42-901e-0072-320a-1b9bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1937
cache-control: public, no-transform, max-age=133111
expires: Mon, 06 Jan 2025 10:15:03 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8a4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 04:13:15 GMT
etag: 0x8DD08507D665276
content-length: 955
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Kk0u9e/SalHwM0LSYxaS+g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a67788bb-101e-0063-1eab-3aacb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=341769
expires: Wed, 08 Jan 2025 20:12:41 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8a7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:04:52 GMT
etag: 0x8DCDC672FE75D26
content-type: text/javascript; charset=utf-8
content-md5: JYNnUW1D/Qe7hGsFi8+mBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 49b287de-b01e-0065-7294-165bcd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 437
cache-control: public, no-transform, max-age=182687
expires: Tue, 07 Jan 2025 00:01:19 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae88c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 533
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: iXmM/0iacAzJj5a4uiRhcw==
last-modified: Fri, 03 Jan 2025 18:42:51 GMT
etag: 0x8DD2C266DC050CA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a7d240d9-d01e-0075-4275-5e6d2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.87221002.1735988836.f790945
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=380158
expires: Thu, 09 Jan 2025 06:52:30 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae894
timing-allow-origin: *
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1228
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGZmFvLovaV+vrOPPwbS7g==
last-modified: Mon, 23 Dec 2024 09:08:42 GMT
etag: 0x8DD23316609C95F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 601ec1cb-b01e-006e-470b-5e43b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=334755
expires: Wed, 08 Jan 2025 18:15:47 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae89a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:33 GMT
etag: 0x8DCEC88590A49A7
content-type: text/javascript; charset=utf-8
content-md5: ADAJbopPIaunlKI/GZphBw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 39db91a5-401e-0034-0ffe-364538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1702
cache-control: public, no-transform, max-age=296066
expires: Wed, 08 Jan 2025 07:30:58 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8a2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
content-type: text/javascript; charset=utf-8
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f850e99-601e-0067-72ef-145937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1427
cache-control: public, no-transform, max-age=85569
expires: Sun, 05 Jan 2025 21:02:41 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8a5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
content-type: text/javascript; charset=utf-8
content-md5: 3vstlq/a5ZcE98e8La1vPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c0f0b997-101e-0063-200a-18acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 511
cache-control: public, no-transform, max-age=127646
expires: Mon, 06 Jan 2025 08:43:58 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae87c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:30:41 GMT
etag: 0x8DCEC86B0CE8A0B
content-length: 328
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 15JqyZBsCgkATXocOIdHMw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 36f09d29-101e-0005-7cb1-1e1eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=130178
expires: Mon, 06 Jan 2025 09:26:10 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae884
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:08:12 GMT
etag: 0x8DCDC67A73161B2
content-type: text/javascript; charset=utf-8
content-md5: rEFXJrf0kyk8MofTblrrHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 15e28938-101e-0063-550e-16acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 517
cache-control: public, no-transform, max-age=63230
expires: Sun, 05 Jan 2025 14:50:22 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae889
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:01 GMT
etag: 0x8DCE8C3193D5444
content-type: text/javascript; charset=utf-8
content-md5: K6mYdssyGKO2Fe2fyESYTg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: beedc41c-e01e-0032-2bfe-1ab240000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8536
cache-control: public, no-transform, max-age=142259
expires: Mon, 06 Jan 2025 12:47:31 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae892
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
content-type: text/javascript; charset=utf-8
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e86ad052-701e-0051-48da-16f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1828
cache-control: public, no-transform, max-age=44670
expires: Sun, 05 Jan 2025 09:41:02 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae899
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2059
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: HxxeWmLbbUeUU8XtzzROdA==
last-modified: Wed, 25 Dec 2024 10:47:01 GMT
etag: 0x8DD24D176A0510A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 442f1300-d01e-0057-0b0b-5e031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.9b777b5c.1735941355.11033ba2
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=334699
expires: Wed, 08 Jan 2025 18:14:51 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae89c
timing-allow-origin: *
GET

https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2931
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: boJho9/dRbdiRsm7aBhA/Q==
last-modified: Wed, 25 Dec 2024 10:47:01 GMT
etag: 0x8DD24D176C8BA41
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 305a5264-a01e-0035-5c0b-5e44c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1735942729.e4d07662
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=334717
expires: Wed, 08 Jan 2025 18:15:09 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8fe
timing-allow-origin: *
GET

https://r.bing.com/rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:24 GMT
etag: 0x8DCE8C34A2EADC0
content-type: text/javascript; charset=utf-8
content-md5: UYaER6ThZGEud/Muajg45w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5d7ec60e-101e-000e-50d0-1e069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2303
akamai-grn: 0.521a1202.1731626667.8e389f6d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=70060
expires: Sun, 05 Jan 2025 16:44:12 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8ff
timing-allow-origin: *
GET

https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 11666
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: b3MnZ0xA07I002VvYczIQQ==
last-modified: Mon, 23 Dec 2024 09:08:43 GMT
etag: 0x8DD2331661F49C1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 50ba17c0-f01e-002d-5d0b-5e6950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1735941355.e49ad2c6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=334684
expires: Wed, 08 Jan 2025 18:14:36 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae900
timing-allow-origin: *
GET

https://r.bing.com/rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:33 GMT
etag: 0x8DD04929EE8EC69
content-length: 1224
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: IYJzFG4gYZ14vnQdqTao+A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d0b457cc-c01e-0007-16bb-361c15000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=46019
expires: Sun, 05 Jan 2025 10:03:31 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae905
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/P3JcGPiznvFTQHPH6lDPETmCcW0.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/P3JcGPiznvFTQHPH6lDPETmCcW0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:42:16 GMT
etag: 0x8DCDC6407C1A310
content-length: 268
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: d0XbHvHNCWhJPrqJh3iUoQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 331cfc95-901e-0014-30a9-1429f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=256302
expires: Tue, 07 Jan 2025 20:28:14 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae906
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:39:05 GMT
etag: 0x8DCEC87DD067940
content-length: 658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hmcBay1BgAVA4sBe4FzXJg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 763d4cfb-101e-0068-5add-1eb4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=302219
expires: Wed, 08 Jan 2025 09:13:31 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae907
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:24:23 GMT
etag: 0x8DCEC85CF372642
akamai-grn: 0.a7901002.1733993731.1d708b25
content-length: 1043
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PkxdhPHrMXZXxfqaK/YI3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 11da2983-c01e-006a-1ad0-1eb63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=196458
expires: Tue, 07 Jan 2025 03:50:50 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae90a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:57 GMT
etag: 0x8DCE8C2CF400D7F
content-length: 2625
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DTDL0ta8Z4w5qdHa9ZUG/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d09369bc-f01e-004b-0827-22db0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=139538
expires: Mon, 06 Jan 2025 12:02:10 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae902
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:03 GMT
etag: 0x8DCDC5CDFF72AD3
content-type: text/javascript; charset=utf-8
content-md5: V1kiVXzIRqmzPm5TrNimoA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a683a4e2-d01e-003a-0e60-16a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 514
cache-control: public, no-transform, max-age=55556
expires: Sun, 05 Jan 2025 12:42:28 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae903
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/d2AC6-r9l7SefnJ0q5_pqEqXQEg.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/d2AC6-r9l7SefnJ0q5_pqEqXQEg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
akamai-grn: 0.c1777b5c.1734698261.104d5989
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1628e565-a01e-0071-4522-1698a9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1143
cache-control: public, no-transform, max-age=101549
expires: Mon, 06 Jan 2025 01:29:01 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae908
timing-allow-origin: *
GET

https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
content-type: text/javascript; charset=utf-8
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b826b2dc-201e-0024-251c-1573de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 109
cache-control: public, no-transform, max-age=131867
expires: Mon, 06 Jan 2025 09:54:19 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae8a6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:56 GMT
etag: 0x8DCDC5E41B5114A
content-length: 259
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a2401f4c-b01e-002a-684f-179fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=129961
expires: Mon, 06 Jan 2025 09:22:33 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae904
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:43 GMT
etag: 0x8DCE8C27F2A50EA
content-length: 4327
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: pjiAwJyioVvONH2doWdScQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 38c3b959-701e-0078-71de-1a8227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=39438
expires: Sun, 05 Jan 2025 08:13:50 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae901
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 13 Dec 2024 07:56:08 GMT
etag: 0x8DD1B4B9A365000
content-length: 474
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: p/3mO7vALd9wD5esEzLGZw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f8018f31-b01e-002a-1085-4d9fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a8777b5c.1734125372.dea67f3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=133715
expires: Mon, 06 Jan 2025 10:25:07 GMT
date: Sat, 04 Jan 2025 21:16:32 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025392.207ae909
timing-allow-origin: *
GET

https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:09 GMT
etag: 0x8DCDC67C959D1C6
content-length: 230
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e8o72fCkQwkU95GMyH4alQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f4103be-701e-003c-5173-175e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=395156
expires: Thu, 09 Jan 2025 11:02:31 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025395.207af720
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 06:47:11 GMT
etag: 0x8DCE82E33DB4289
content-type: text/javascript; charset=utf-8
content-md5: kSd0hTdqYlIKxD09mZrqMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f839b672-e01e-005f-0757-1a186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 284
cache-control: public, no-transform, max-age=336781
expires: Wed, 08 Jan 2025 18:49:36 GMT
date: Sat, 04 Jan 2025 21:16:35 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025395.207af71f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:27 GMT
etag: 0x8DD04929B4990FB
content-type: text/javascript; charset=utf-8
content-md5: PtU28jG6dGjHkVaL3KCYNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0db90d9f-b01e-004c-55dd-362d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3915
cache-control: public, no-transform, max-age=110873
expires: Mon, 06 Jan 2025 04:04:29 GMT
date: Sat, 04 Jan 2025 21:16:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025396.207afe60
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:58:32 GMT
etag: 0x8DCDC5DEBC36F3E
content-type: text/javascript; charset=utf-8
content-md5: ntZPQ0NwSl+Oa0DwbVn/yQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e9768dbb-701e-001e-3789-15307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 196
cache-control: public, no-transform, max-age=354496
expires: Wed, 08 Jan 2025 23:44:53 GMT
date: Sat, 04 Jan 2025 21:16:37 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025397.207b084f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 12:21:13 GMT
etag: 0x8DCDC9361C2A9CB
content-type: text/javascript; charset=utf-8
content-md5: U36iFcyu8u4qPEEyCl6EBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ffde3949-801e-0022-75fe-1584a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 332
cache-control: public, no-transform, max-age=98390
expires: Mon, 06 Jan 2025 00:36:27 GMT
date: Sat, 04 Jan 2025 21:16:37 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025397.207b0850
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 06 Dec 2024 06:22:02 GMT
etag: 0x8DD15BE4C6397FE
content-length: 26625
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: XepiajoIzA8mdkJ+Qn60Zw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3e7e202c-d01e-0018-5612-48c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1733529860.11ef3e67
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=247536
expires: Tue, 07 Jan 2025 18:02:16 GMT
date: Sat, 04 Jan 2025 21:16:40 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025400.207b165f
timing-allow-origin: *
GET

https://r.bing.com/rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 19 Dec 2024 07:35:51 GMT
etag: 0x8DD1FFFC369A694
content-length: 13175
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: P40kHkuCONKLasanvjGRrw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: db369e47-001e-0033-7847-52b3bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=194133
expires: Tue, 07 Jan 2025 03:12:13 GMT
date: Sat, 04 Jan 2025 21:16:40 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025400.207b1660
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js

msedge.exe

Remote address:

92.123.128.132:443

Request

GET /rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:21 GMT
etag: 0x8DCE8C3014FD967
content-length: 4656
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 04jjFZu5YZ+50YtQ9rT+Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fb3b2fd7-201e-000d-27de-1a059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=189891
expires: Tue, 07 Jan 2025 02:01:31 GMT
date: Sat, 04 Jan 2025 21:16:40 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.8f777b5c.1736025400.207b165e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://th.bing.com/th?id=ODLS.0166d99a-6c0a-4f97-82c0-5b2c4af3f24e&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.0166d99a-6c0a-4f97-82c0-5b2c4af3f24e&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1868
cache-control: public, max-age=903007
date: Sat, 04 Jan 2025 21:16:29 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025389.2d775456
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OADD2.9964499574036_1L44E6G8C38QPRTLFI&w=32&h=32&o=6&pid=21.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OADD2.9964499574036_1L44E6G8C38QPRTLFI&w=32&h=32&o=6&pid=21.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 676
cache-control: public, max-age=2281789
date: Sat, 04 Jan 2025 21:16:29 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025389.2d775457
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.159597f2-b9d6-4e36-bce3-033424a24c6d&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.159597f2-b9d6-4e36-bce3-033424a24c6d&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1001105
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a6
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Jjsploit+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Jjsploit+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1149
cache-control: public, max-age=1013295
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d77659f
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Jjsploit+Roblox&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Jjsploit+Roblox&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1001115
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a5
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Jjsploit+Tutorial&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Jjsploit+Tutorial&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1085
x-check-cacheable: YES
cache-control: public, max-age=5111144
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a1
GET

https://th.bing.com/th?q=How+to+Attach+Jjsploit+to+a+Game&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=How+to+Attach+Jjsploit+to+a+Game&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 875
x-check-cacheable: YES
cache-control: public, max-age=5111457
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a3
GET

https://th.bing.com/th?q=Jjsploit+V5&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Jjsploit+V5&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1021
x-check-cacheable: YES
cache-control: public, max-age=5111549
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a2
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1085
x-check-cacheable: YES
cache-control: public, max-age=5111079
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a0
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2221&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 866
x-check-cacheable: YES
cache-control: public, max-age=5111182
date: Sat, 04 Jan 2025 21:16:32 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025392.2d7765a4
GET

https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=2328265
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MEM_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778ae9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.kJ-YpgnNHpN4HZ6Yh9h5BwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.kJ-YpgnNHpN4HZ6Yh9h5BwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 841
x-check-cacheable: YES
cache-control: public, max-age=5111360
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778aeb
GET

https://th.bing.com/th?q=Wearedevs.com+Cheats&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Wearedevs.com+Cheats&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 840
x-check-cacheable: YES
cache-control: public, max-age=5139455
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778af5
GET

https://th.bing.com/th?q=Wearedevs+Exploits&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Wearedevs+Exploits&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 728
x-check-cacheable: YES
cache-control: public, max-age=5126110
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778af6
GET

https://th.bing.com/th?q=Roblox+Wearedevs&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Roblox+Wearedevs&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7669
x-check-cacheable: YES
cache-control: public, max-age=742274
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778aea
GET

https://th.bing.com/th?q=Wearedevs+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Wearedevs+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 892
x-check-cacheable: YES
cache-control: public, max-age=5154980
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778b50
GET

https://th.bing.com/th?q=Wearedevs+Infinite+Jump&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?q=Wearedevs+Infinite+Jump&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 640
x-check-cacheable: YES
cache-control: public, max-age=5154898
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778b6c
GET

https://th.bing.com/th?id=ODLS.7a379d4e-6578-494d-ba36-1d4225b5c673&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.7a379d4e-6578-494d-ba36-1d4225b5c673&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=2328197
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MEM_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778f8e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.QmCJi5oZrWo6OMFj3aXnJQHaD7&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OIP.QmCJi5oZrWo6OMFj3aXnJQHaD7&w=80&h=80&c=7&qlt=80&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=2328283
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MEM_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778f8d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.dd96b4fe-7589-4e0e-9017-7fae5672f1cf&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.dd96b4fe-7589-4e0e-9017-7fae5672f1cf&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2394
cache-control: public, max-age=2571333
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778f8a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2194
x-check-cacheable: YES
cache-control: public, max-age=403860
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778f8b
GET

https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 913
cache-control: public, max-age=1436150
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d778f8c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c9b13779-35d1-4087-b34c-0a1458d70df4&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.c9b13779-35d1-4087-b34c-0a1458d70df4&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 531
cache-control: public, max-age=2328139
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d779014
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3cca92db-1b56-46a6-88e1-b85c9dce00dc&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.3cca92db-1b56-46a6-88e1-b85c9dce00dc&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1492
cache-control: public, max-age=2328438
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d779016
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1228
cache-control: public, max-age=2306737
date: Sat, 04 Jan 2025 21:16:38 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d779015
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3cca92db-1b56-46a6-88e1-b85c9dce00dc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.3cca92db-1b56-46a6-88e1-b85c9dce00dc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 683
cache-control: public, max-age=653171
date: Sat, 04 Jan 2025 21:16:39 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d779013
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.1f96cdd4-e1d6-47c3-bf4e-022246009d57&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.1f96cdd4-e1d6-47c3-bf4e-022246009d57&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1978
x-check-cacheable: YES
cache-control: public, max-age=1720179
date: Sat, 04 Jan 2025 21:16:39 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025398.2d779012
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=495849
date: Sat, 04 Jan 2025 21:16:39 GMT
x-cache: TCP_MEM_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025399.2d77921a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:34.9624756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHS=PC=U531
cookie: bm_sv=7EECB4C823D81B2F3C736AB1846ABA81~YAAQwXd7XBictSaUAQAAmlgtMxqVxLp8jYuEZIWaiELtaefBzk0Tj+jgEx6PJY3nYrmEjy2BzHVLvJcrrKg6RojNTZgdHG7LEhMpjpO4fuYvDeo/Zgcjitj0TYzKvWKrl5Zgb9OrcZ4s8NQGU9MgjPY5aRrPQz/8K9NZ/rl1uJciYGRxiVw3v4CWNSSAHGjboJgReVcGFVf4I7mu/4rYSWmNAmXVbxSfLK83CYfauiQD4IG9INI58yJdsqIttg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=402785
date: Sat, 04 Jan 2025 21:16:39 GMT
x-cache: TCP_MEM_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025399.2d77921b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.FMRLybFAqdbVcdaXUJpGkAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.FMRLybFAqdbVcdaXUJpGkAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9515
x-check-cacheable: YES
cache-control: public, max-age=432284
date: Sat, 04 Jan 2025 21:16:44 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025404.2d77aeaa
GET

https://th.bing.com/th?id=OVP.i1rmS6IUPONImmc37VUPwAFRJY&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.i1rmS6IUPONImmc37VUPwAFRJY&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6699
x-check-cacheable: YES
cache-control: public, max-age=829505
date: Sat, 04 Jan 2025 21:16:44 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025404.2d77b0aa
GET

https://th.bing.com/th?id=OVP.LxEIiJVOjVUJUtWP_FJGOQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.LxEIiJVOjVUJUtWP_FJGOQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8873
cache-control: public, max-age=581673
date: Sat, 04 Jan 2025 21:16:44 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025404.2d77b107
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.LGihu_8U1PAfiGG9TfUz3gDdFo&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.LGihu_8U1PAfiGG9TfUz3gDdFo&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7393
cache-control: public, max-age=581670
date: Sat, 04 Jan 2025 21:16:45 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025405.2d77b3a0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.adcNTdRKkZYcMfJIR6f-RQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.adcNTdRKkZYcMfJIR6f-RQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7242
cache-control: public, max-age=479736
date: Sat, 04 Jan 2025 21:16:45 GMT
x-cache: TCP_HIT from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025405.2d77b41b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.lo1v1N0f-Ayd5UGz15SP2AEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.lo1v1N0f-Ayd5UGz15SP2AEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6478
x-check-cacheable: YES
cache-control: public, max-age=716537
date: Sat, 04 Jan 2025 21:16:45 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025405.2d77b44f
GET

https://th.bing.com/th?id=OVP.q92iIH1l02s3cm3xxMANvgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.q92iIH1l02s3cm3xxMANvgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7515
x-check-cacheable: YES
cache-control: public, max-age=500257
date: Sat, 04 Jan 2025 21:16:56 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025416.2d77ec7b
GET

https://th.bing.com/th?id=OVP.2XP_dBfJShok_3IfUX_dYAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.2XP_dBfJShok_3IfUX_dYAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2576
x-check-cacheable: YES
cache-control: public, max-age=1082078
date: Sat, 04 Jan 2025 21:16:56 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025416.2d77ec95
GET

https://th.bing.com/th?id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.137:443

Request

GET /th?id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: BCP=AD=1&AL=1&SM=1
cookie: ipv6=hit=1736029001758&t=4
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025416&WTS=63871622187
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211656

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9307
x-check-cacheable: YES
cache-control: public, max-age=437503
date: Sat, 04 Jan 2025 21:16:56 GMT
x-cache: TCP_MISS from a92-123-119-158.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.9e777b5c.1736025416.2d77ec68
DNS

132.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

132.128.123.92.in-addr.arpa

IN PTR

Response

132.128.123.92.in-addr.arpa

IN PTR

a92-123-128-132deploystaticakamaitechnologiescom
DNS

132.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

132.128.123.92.in-addr.arpa

IN PTR
GET

https://bing.com/th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2

msedge.exe

Remote address:

13.107.21.200:443

Request

GET /th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2 HTTP/2.0
host: bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: SRCHUSR=DOB=20250104
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 7931
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1D687B75FC6847D396B9919AB4A448B4 Ref B: LON04EDGE1208 Ref C: 2025-01-04T21:16:30Z
date: Sat, 04 Jan 2025 21:16:29 GMT
GET

https://bing.com/th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2&qlt=100

msedge.exe

Remote address:

13.107.21.200:443

Request

GET /th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2&qlt=100 HTTP/2.0
host: bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=28151858BA2767D9100B0D32BBDE6647
cookie: _EDGE_S=F=1&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=D61F01E347454AC39A5B03B0CD65D166&dmnchg=1
cookie: ak_bmsc=59601CCA6067A8659C2AAA028CB9EC60~000000000000000000000000000000~YAAQwXd7XH+btSaUAQAARzMtMxonqUyfbs2Uy8Ewu/Ik7ffYYbN2dzzlB7JbxP3IyuPstcdlrSpkQ7UbiGrGhdyne1Jl/93NZI9Nrc6CICPZ8pyrcLfdHzkgSx/+hnCXq+HOkNfxW4GWuqmrofzf8InyzRgPaRvLypyDcETmfnXOIkVQxyiUiDBeBNYe1BYv2WBLGHToANCoekwF+jH0dPw9vrceiN7Fthop6ym7ud7TXWvz4S9/3Wq9hI6lklIHT0aPlU4C/Ztkn3cAtKX2qVy2m1/Lac3H8+x1Yt0tSYIvAEekdMqHNxqslaiX//Y/nEwG2Rg3EqLKXu51XmR3ySRYJkPR9W7ti1wgVkUVjMkLYkT8wnroXukUQddREsS4CrK8S2kBu7YU
cookie: SRCHUSR=DOB=20250104&T=1736025387000
cookie: _Rwho=u=d&ts=2025-01-04
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-04T21:16:40.0331994+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=22FC2F28EE7B6B5C1B4B3A42EF826A53&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250104211640
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3398&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1736025399&WTS=63871622187
cookie: ipv6=hit=1736029001758
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-length: 7931
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3D8F2313CD664ABF81DCC16D67846D08 Ref B: LON04EDGE1208 Ref C: 2025-01-04T21:16:45Z
date: Sat, 04 Jan 2025 21:16:44 GMT
DNS

200.21.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.21.107.13.in-addr.arpa

IN PTR

Response
DNS

nav.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-1.ukwest.cloudapp.azure.com

prod-agic-uw-1.ukwest.cloudapp.azure.com

IN A

51.140.242.104
DNS

104.242.140.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

104.242.140.51.in-addr.arpa

IN PTR

Response
DNS

login.microsoftonline.com

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.trafficmanager.net

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.71

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.31.73

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.4

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.68

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.0

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.23

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.31.71

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.75
DNS

71.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

71.159.190.20.in-addr.arpa

IN PTR

Response
DNS

71.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

71.159.190.20.in-addr.arpa

IN PTR
DNS

71.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

71.159.190.20.in-addr.arpa

IN PTR
DNS

71.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

71.159.190.20.in-addr.arpa

IN PTR
DNS

71.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

71.159.190.20.in-addr.arpa

IN PTR
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.242.104:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoibEp1RDdMaUxFZWc9Iiwia2V5Ijoia05YZE5rQ2o1QjBQWStKRHliQU5hdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1362
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:16:33 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 924
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.242.104:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiYnRCQTdNTEJCcHc9Iiwia2V5IjoiNXBYQ3UreUV5ZXZzeUJWNnNqVGhPZz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1310
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:16:54 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 799
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.242.104:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiemk0MjhmQXp4RFE9Iiwia2V5IjoiREJhOW5MQVpzQnVFek1BUHhWcklNdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3343
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:00 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3560
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.242.104:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiU0tNSnY3dkFJbXc9Iiwia2V5IjoiWXVlMnVGMkY3L0xQMnFVeXJXdGZFQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3018
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:01 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3088
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.242.104:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiUVh0QlZ1V1ZrVk09Iiwia2V5IjoibjMyTlNUeEZta2tlR1JET1QrVU90UT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1430
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 965
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.242.104:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSGRudWh3YWxJSUU9Iiwia2V5IjoiNGtWTlkzWWRaN09aNjNxOWtlc1dTQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1409
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:09 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 923
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=54be6630-e023-49d0-a264-afb2daae8133&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22B8E2C05EC3CB49C58D85191E3D81D809%22%7d

msedge.exe

Remote address:

20.190.159.71:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=54be6630-e023-49d0-a264-afb2daae8133&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22B8E2C05EC3CB49C58D85191E3D81D809%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: e9e0931e-7d40-49a4-a971-eb04905ac000
x-ms-ests-server: 2.1.19683.3 - SEC ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+dub2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-zpJbulg9EZCPV-vXoeE1Kw' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; img-src 'self' data: https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.AREAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAARAA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFeMKD9UKHegcXaiaE_N2uhw8FnQiUkNB8sv_Kw-Zcn4OTJCSH0XyKEmsCPZoFLRcKE92F6mUCMp3p8nWzA-B8ylOy593lRrJ2K_X7F1CVAvlEgAA; expires=Mon, 03-Feb-2025 21:16:38 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=AqQsXqPN4ntHhwaCLqWbek2CeMQLAQAAADacC98OAAAA; expires=Mon, 03-Feb-2025 21:16:38 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: esctx=PAQABBwEAAADW6jl31mB3T7ugrWTT8pFe0SZwFSEomN5YF3t00Y95ESwIH1sb98ok654O7HFfkvFU3FDs7hznG6PDF4xdJRveLLQIkAfdqSpxk7jdDnSuvMTq7RQ0DqJby2a221n86PcIYXGWABZ9v9GUFFrHBkCb_1GgQLXj1WDnz0Sq7_cSCSw1zALxuLCbya5qKs8J0r4gAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
set-cookie: stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
date: Sat, 04 Jan 2025 21:16:38 GMT
content-length: 700
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=510012e6-e31c-486d-af8c-ccc35059ca1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227A17024427584A86AB1CA612FF66F67E%22%7d

msedge.exe

Remote address:

20.190.159.71:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=510012e6-e31c-486d-af8c-ccc35059ca1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227A17024427584A86AB1CA612FF66F67E%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: buid=1.AREAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAARAA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFeMKD9UKHegcXaiaE_N2uhw8FnQiUkNB8sv_Kw-Zcn4OTJCSH0XyKEmsCPZoFLRcKE92F6mUCMp3p8nWzA-B8ylOy593lRrJ2K_X7F1CVAvlEgAA
cookie: fpc=AqQsXqPN4ntHhwaCLqWbek2CeMQLAQAAADacC98OAAAA
cookie: esctx=PAQABBwEAAADW6jl31mB3T7ugrWTT8pFe0SZwFSEomN5YF3t00Y95ESwIH1sb98ok654O7HFfkvFU3FDs7hznG6PDF4xdJRveLLQIkAfdqSpxk7jdDnSuvMTq7RQ0DqJby2a221n86PcIYXGWABZ9v9GUFFrHBkCb_1GgQLXj1WDnz0Sq7_cSCSw1zALxuLCbya5qKs8J0r4gAA
cookie: x-ms-gateway-slice=estsfd
cookie: stsservicecookie=estsfd

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: a6ef2b72-ed83-4bb0-81ec-c8fcdd2f1500
x-ms-ests-server: 2.1.19683.3 - WEULR1 ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+dub2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-s7WWgTcWWUNLfrAFeioxaw' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; img-src 'self' data: https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.AREAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAARAA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFezAZFZQ5BsTkdqcwwomDXZtSsfCWdpimW-ZNH_T8Ij3-DFyW-374wFy_OWbg97sclqU1_DZJyX7pv8v7zPxFyjnX47QXsSp6CsnvcJq7h1EcgAA; expires=Mon, 03-Feb-2025 21:16:39 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=AqQsXqPN4ntHhwaCLqWbek2CeMQLAgAAADacC98OAAAA; expires=Mon, 03-Feb-2025 21:16:39 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
date: Sat, 04 Jan 2025 21:16:39 GMT
content-length: 699
DNS

tse1.mm.bing.net

msedge.exe

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.27.10

ax-0001.ax-msedge.net

IN A

150.171.28.10
DNS

tse1.mm.bing.net

msedge.exe

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A
GET

https://tse1.mm.bing.net/th?&id=OVP.2XP_dBfJShok_3IfUX_dYAHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.27.10:443

Request

GET /th?&id=OVP.2XP_dBfJShok_3IfUX_dYAHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 1904
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E793E64377A54814B503791AA169827E Ref B: LON601060102025 Ref C: 2025-01-04T21:16:47Z
date: Sat, 04 Jan 2025 21:16:47 GMT
GET

https://tse1.mm.bing.net/th?&id=OVP.q92iIH1l02s3cm3xxMANvgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.27.10:443

Request

GET /th?&id=OVP.q92iIH1l02s3cm3xxMANvgHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 6394
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 23AE7DED53DE4DFFA918B5B5E924B91F Ref B: LON601060102025 Ref C: 2025-01-04T21:16:47Z
date: Sat, 04 Jan 2025 21:16:47 GMT
GET

https://tse1.mm.bing.net/th?&id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.27.10:443

Request

GET /th?&id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 6029
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4EC37BCA16204A6997D1FA33FE4FC6D7 Ref B: LON601060102025 Ref C: 2025-01-04T21:16:47Z
date: Sat, 04 Jan 2025 21:16:47 GMT
DNS

10.27.171.150.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.27.171.150.in-addr.arpa

IN PTR

Response
DNS

10.27.171.150.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.27.171.150.in-addr.arpa

IN PTR
DNS

10.27.171.150.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.27.171.150.in-addr.arpa

IN PTR
DNS

237.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.197.79.204.in-addr.arpa

IN PTR

Response
DNS

237.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.197.79.204.in-addr.arpa

IN PTR

Response
DNS

31.73.42.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

31.73.42.20.in-addr.arpa

IN PTR

Response
DNS

31.73.42.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

31.73.42.20.in-addr.arpa

IN PTR
GET

http://wearedevs.net/

msedge.exe

Remote address:

172.67.71.2:80

Request

GET / HTTP/1.1
Host: wearedevs.net
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Sat, 04 Jan 2025 21:16:54 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 04 Jan 2025 22:16:54 GMT
Location: https://wearedevs.net/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=08Vo6HPs5xdV3zzmL7AC8oy%2FVhy4pRSKCd8eA4vtg%2F5%2F6a8d1dQgZ62Rimu7oV%2BVioQzD5a7dO34HFXE677SI0b0qIKK%2FL0%2F4%2Fo4NkDNnNlO8mKhCcRED8tvfjVra3I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8fce40977a79e900-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33096&min_rtt=33096&rtt_var=16548&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=445&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET

https://wearedevs.net/

msedge.exe

Remote address:

172.67.71.2:443

Request

GET / HTTP/2.0
host: wearedevs.net
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 301

date: Sat, 04 Jan 2025 21:16:54 GMT
content-type: text/html
location: https://wearedevs.net/exploits
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j%2FextsrBWSs7pfMO%2F033hJPcYv%2BSj75kyCQrpMoONGvU0478rx1cZOCWaZMpaYZ2zrD96njHGFsfFw0NgPhsMc9862ABUUS2n%2BXdypGftdtfQCGTGV6OfYeC%2BoHjO7A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce4099cc36cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=225701&min_rtt=26294&rtt_var=149437&sent=6&recv=7&lost=0&retrans=0&sent_bytes=2826&recv_bytes=1160&delivery_rate=103217&cwnd=232&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=345&x=0"
GET

https://wearedevs.net/exploits

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /exploits HTTP/2.0
host: wearedevs.net
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-download-options: noopen
x-content-type-options: nosniff
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C%2Brr4jHaaXUwz7rSzNRAmRMopZ9SF5wqoUzLUcNBSfZs00VEfINb75cKeW8HR4r0lC3AlTm8uCHYg5NERd17EGmWLLhmIm%2BrMZAD7ZB2OvEEmaREavEO0Vh6V5Y%2FbE8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fce409bdeebcd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=179458&min_rtt=26294&rtt_var=151609&sent=10&recv=9&lost=0&retrans=0&sent_bytes=3784&recv_bytes=1220&delivery_rate=134525&cwnd=235&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=682&x=0"
GET

https://wearedevs.net/css/main.css?v=26

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /css/main.css?v=26 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: text/css
last-modified: Thu, 05 Sep 2024 05:25:21 GMT
etag: W/"66d940c1-3e5"
expires: Sat, 04 Jan 2025 21:20:58 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 63
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dkwlH6M5Y0MKToX7hIMosTi2vHqfldulhxxA7m%2Bg%2BZRdLHRatqOc3DqKs0aipxcnUCeUsMWL3JAgwJe2H6jWxrwhROujaLDaHdJ%2FMKVznRm%2BTK7XtwCdFnenzoe1JAU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409e3a8ccd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=119190&min_rtt=26294&rtt_var=126573&sent=24&recv=19&lost=0&retrans=0&sent_bytes=9900&recv_bytes=1709&delivery_rate=317854&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=773&x=0"
GET

https://wearedevs.net/css/themes/night.css?v=26&v2=2

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /css/themes/night.css?v=26&v2=2 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: application/javascript
last-modified: Thu, 07 Apr 2022 17:37:47 GMT
etag: W/"624f216b-d4d"
expires: Sat, 04 Jan 2025 21:27:07 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 63
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PxsyBMzaA4oXdnbRAMup5jQrRy1mISTUD8rSMajLKWQW3XgMOPEiem6pn06%2BGhuS9G20RBDPLVEfPYpLP0Ub4w9Oa2vWIZxBKVeKfB6QvFcDwkO0on8c2Z8EaRInLJ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409e4ab3cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=119190&min_rtt=26294&rtt_var=126573&sent=27&recv=19&lost=0&retrans=0&sent_bytes=10846&recv_bytes=1709&delivery_rate=317854&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=780&x=0"
GET

https://wearedevs.net/css/themes/christmas.css?v2=3

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /css/themes/christmas.css?v2=3 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: text/css
last-modified: Sun, 08 Dec 2024 13:20:52 GMT
etag: W/"67559d34-f91"
expires: Sat, 04 Jan 2025 20:48:29 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 3396
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uMFFbjXOZzF1CtXlNt%2FsUpUmsQdW4UvCDX47VVRKE8mioGJOE6zM8o5I9dAzlV6TaNe7w7HVpZO6A9hN8%2Bh3cWyAn7e1oGIwYXkumP%2Fz4HcQBz%2BoTnLky7HVovJSy3g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409e4ab0cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=119190&min_rtt=26294&rtt_var=126573&sent=30&recv=19&lost=0&retrans=0&sent_bytes=12434&recv_bytes=1709&delivery_rate=317854&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=781&x=0"
GET

https://wearedevs.net/css/navheader.css?v=26

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /css/navheader.css?v=26 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: text/css
last-modified: Mon, 19 Aug 2024 01:36:50 GMT
etag: W/"66c2a1b2-d65"
expires: Sat, 04 Jan 2025 21:21:13 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 63
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bHR6T3QeWHowQqWNRtYHL7Lyv1luRB9mkvzr6pxSqVYGCmOiKsiaMZ2sJf0OsZBZuX6It6RLhUiH7riEdLnQWsL90gg50wzJsA23SuWFxjjZMf1cLbuvDTRwVPlrXnM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409e4aaccd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=119190&min_rtt=26294&rtt_var=126573&sent=33&recv=19&lost=0&retrans=0&sent_bytes=14032&recv_bytes=1709&delivery_rate=317854&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=782&x=0"
GET

https://wearedevs.net/css/exploits.css?v=26&v2=7

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /css/exploits.css?v=26&v2=7 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: text/css
last-modified: Sun, 18 Aug 2024 22:09:36 GMT
etag: W/"66c27120-a0f"
expires: Sat, 04 Jan 2025 21:27:07 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 63
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L6Pws76fs5fogAE8457t%2B9b%2BJppdrBPXEjP61iG5dIbn0DV0z9H0wAY9yiNU0k0oL1%2Fe3u9GSjlF%2B8sE05EXcwELn%2FY9AcftEKC51mSBFk18cLXqCFe4vW8zeAMUbFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409e3a84cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=119190&min_rtt=26294&rtt_var=126573&sent=36&recv=19&lost=0&retrans=0&sent_bytes=15690&recv_bytes=1709&delivery_rate=317854&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=788&x=0"
GET

https://wearedevs.net/js/timestamp.js

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /js/timestamp.js HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2024 15:58:21 GMT
etag: W/"67619f9d-2c6"
expires: Sat, 04 Jan 2025 21:21:13 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 63
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5HuPVYe3IPR7q2eFFd1Pxr8zwZ6CAHZcHKB%2B2v0q%2B8RG5HHdo7ebUPbIC9v3Zw%2BG%2Bk5CaP5Xi4UaUIFw2LRxwxDIz53kQQx7oiKKX%2BIEss%2BQnW%2F8F7pjx3%2BNrOQPeXU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409e4aa5cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=119190&min_rtt=26294&rtt_var=126573&sent=39&recv=19&lost=0&retrans=0&sent_bytes=17235&recv_bytes=1709&delivery_rate=317854&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=793&x=0"
GET

https://wearedevs.net/images/bloxshade/logo-s.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/bloxshade/logo-s.jpeg HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/jpeg
content-length: 29916
cache-control: max-age=604800
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=35041
etag: "66da56a0-88e1"
expires: Fri, 10 Jan 2025 18:15:09 GMT
last-modified: Fri, 06 Sep 2024 01:10:56 GMT
cf-cache-status: HIT
age: 96903
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=530KSoBudOBZCy88kT5Svz94puFN0QSZ6gWDXkYJUxzmlJxpkolETsnnyoyxVimSuGyaA6TkboGec79FI88yL9rwhEvQB3y2lKkGlPlPblywCId%2FWpEPJp8sluzQR1s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce409fdc6bcd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=56165&min_rtt=25954&rtt_var=50680&sent=42&recv=29&lost=0&retrans=0&sent_bytes=18148&recv_bytes=1830&delivery_rate=518444&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1028&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/multiplerbx.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/multiplerbx.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 3266
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6667
content-disposition: inline; filename="multiplerbx.webp"
etag: "61c62c55-1a0b"
expires: Sun, 02 Feb 2025 18:15:41 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GMEgIRVqGNWQsoJTJYmthw%2B4eNJW3%2F3SdupwtUMjmq2BGC%2BkuVNTL9389983RmDHb6zRi8mAOxuzt3Yw9r9bNIyY4%2FyXzf7fOoQi9S1arlgAZXJNUXvz8KznAqB4XjhLuANN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a02cbfcd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=73&recv=57&lost=0&retrans=0&sent_bytes=49084&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1079&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/autoclicker.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/autoclicker.jpeg HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 8290
last-modified: Mon, 09 Dec 2024 23:44:04 GMT
etag: "675780c4-2062"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 96903
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzJH0XF8P%2B3zTltnOfy0v2wjngVMMIEBIXwmIIYIQBcbLNtIom1EJcPvS1cPQbV%2FYujlA8yIUQY8IhnYkRgLEv1bLi9GS9Jm1jTMMDuvvYVsnXVMBoUvoqfa2Nm8EDUFXTYv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fce40a03cc8cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=77&recv=57&lost=0&retrans=0&sent_bytes=53110&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1079&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/lagswitch-small.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/lagswitch-small.jpeg HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/jpeg
content-length: 41857
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=43449
etag: "61c62c55-a9b9"
expires: Sun, 02 Feb 2025 18:15:41 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
cf-cache-status: HIT
age: 97111
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xliSkgQv0hx3Ypi5hah3fdBAYujPkiVA%2FRpq8tayb%2Bdn7%2B4pdOVayY1aBBAMjXWdpMG%2F1hskU%2FJ%2F2XFuwOeYKhrzRCGZrlHCxg7MtX2gHGX8kLbeZfcg49oxz7IWtGQCpSPj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a03ccacd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=81&recv=57&lost=0&retrans=0&sent_bytes=57863&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=4132&cid=967ec1aa68ab9ff8&ts=1079&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/swift-12060024.webp

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/swift-12060024.webp HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/jpeg
content-length: 17342
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=20130
etag: "66b60f5f-4ea2"
expires: Sun, 26 Jan 2025 18:15:05 GMT
last-modified: Fri, 09 Aug 2024 12:45:19 GMT
cf-cache-status: HIT
age: 313007
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2nGmKAviI3hLDjYqnh%2Bwcjm2UVmr4m9LwaPF2ed4%2BJK%2F3ckXiwtAMGVLuvkY%2BHfZw5OXs57wWo3blani0XnwkgNnYFJpN3Fmq8Arl%2FDrtFGofESCi8rB9iDdO0JKhhkm5pNc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a02cc3cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=85&recv=57&lost=0&retrans=0&sent_bytes=63291&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=41454&cid=967ec1aa68ab9ff8&ts=1081&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/solara-1209242.webp

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/solara-1209242.webp HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 930
last-modified: Fri, 06 Dec 2024 08:07:10 GMT
etag: "6752b0ae-3a2"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 96903
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2kr8rFGG0Gpfh24E8OZ90nov4%2F3lk7jg%2BAj%2BPxERW152kojigG%2BAjZulCrZzlsXaXByABD9lvQN%2Bkx6BgWaU4ighUyI3auo3CBT2FJDvqPYaPhuo5NIZniSaz0bDyjVWpjR5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fce40a03cc7cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=87&recv=57&lost=0&retrans=0&sent_bytes=66005&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=56863&cid=967ec1aa68ab9ff8&ts=1081&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/JJSploit-v5.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/JJSploit-v5.jpeg HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/jpeg
content-length: 87180
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=115105
etag: "66b5a275-1c1a1"
expires: Sun, 02 Feb 2025 18:15:42 GMT
last-modified: Fri, 09 Aug 2024 05:00:37 GMT
cf-cache-status: HIT
age: 96881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tN6FARuQSog1TCCl6skO4EjEq28LVdfUh5RUH99XEwA4n7sWS%2BuK1KbqxbYSHWJPp4fav59euMsNp0D%2BWzKo1R8uLmkLyo2435SQKaubyOvxxFYjH7I5NfsJnfvU69F2Jpuf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a02cc6cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=91&recv=57&lost=0&retrans=0&sent_bytes=71433&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=52913&cid=967ec1aa68ab9ff8&ts=1083&x=0"
GET

https://wearedevs.net/images/christmas-strip.png?V=1.0.0

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/christmas-strip.png?V=1.0.0 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/css/themes/christmas.css?v2=3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/png
content-length: 2094
cache-control: max-age=604800
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2998, status=webp_bigger
etag: "624f216b-bb6"
expires: Fri, 10 Jan 2025 18:15:07 GMT
last-modified: Thu, 07 Apr 2022 17:37:47 GMT
cf-cache-status: HIT
age: 97283
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IYqO7O%2FGlYtAGY79K2vplcZR%2BwwtNckESfvKOSqBMPIfXg5rqT%2FcGtMkHipedvYvnkUjnW32w4y0YwVjZnM8GAkBF5XlZu9yKncKYvJvii3kf1MMrF0HoEOiysdyBD0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a03ccccd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=95&recv=57&lost=0&retrans=0&sent_bytes=76861&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=62422&cid=967ec1aa68ab9ff8&ts=1085&x=0"
GET

https://wearedevs.net/icons/windows.svg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /icons/windows.svg HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/css/exploits.css?v=26&v2=7
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/svg+xml
last-modified: Thu, 07 Apr 2022 17:37:47 GMT
etag: W/"624f216b-60f"
expires: Fri, 10 Jan 2025 18:15:07 GMT
cache-control: max-age=604800
cache-control: public
cf-cache-status: HIT
age: 97282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e9nADfeLDhUL%2BND9veHWfeH3ee0ZUEudkCKnCl6YO7YcD2a0pSecy8ofFHkwBq7RNLTKrTaNZ1YgYqDal7ViKnE3EO%2FXc6Cw9Ptzc%2BKPHPSF6Ip7E1FxqESubWoNf2Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a03cdacd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=105&recv=57&lost=0&retrans=0&sent_bytes=90431&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=48852&cid=967ec1aa68ab9ff8&ts=1090&x=0"
GET

https://wearedevs.net/icons/download-gray.svg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /icons/download-gray.svg HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/css/exploits.css?v=26&v2=7
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Jan 2023 13:46:33 GMT
etag: W/"63d7ca39-803"
expires: Fri, 10 Jan 2025 18:15:07 GMT
cache-control: max-age=604800
cache-control: public
cf-cache-status: HIT
age: 97282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jKptR4hDT3DW15A92Tb8l5phOcLNnINDZNH3nWxu6EkxmV8kkTJ%2BLH1f%2F4pLda3%2Bf%2BVJRjzYsC0OeAWLhWmL8wArIClwfwJ0GZpQaOlHyN46sx22P1CG3V6KBVDD0cA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a03cd5cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=125&recv=57&lost=0&retrans=0&sent_bytes=117571&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=21712&cid=967ec1aa68ab9ff8&ts=1098&x=0"
GET

https://wearedevs.net/icons/christmastree.svg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /icons/christmastree.svg HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/css/themes/christmas.css?v2=3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/svg+xml
last-modified: Thu, 07 Apr 2022 17:37:47 GMT
etag: W/"624f216b-293"
expires: Fri, 10 Jan 2025 18:15:43 GMT
cache-control: max-age=604800
cache-control: public
cf-cache-status: HIT
age: 96903
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vkEgtM9gCTGZiZDRn%2FMs4rHHWCpaswWOCfuFJnLwteTHLabauFP2pCJwQDNhwvobbz2XKsOMspJB%2FFny%2BtgJ9DZQewhSDCv%2B8lIL9exw3CMkgHkwJfz6tZ1Xsj7bLgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a03cd7cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=32306&min_rtt=25931&rtt_var=9866&sent=127&recv=57&lost=0&retrans=0&sent_bytes=120285&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=18998&cid=967ec1aa68ab9ff8&ts=1099&x=0"
GET

https://wearedevs.net/icons/info.svg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /icons/info.svg HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/css/exploits.css?v=26&v2=7
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/svg+xml
last-modified: Sun, 08 Dec 2024 13:20:52 GMT
etag: W/"67559d34-275"
expires: Fri, 10 Jan 2025 18:15:11 GMT
cache-control: max-age=604800
cache-control: public
cf-cache-status: HIT
age: 96903
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MN33BL2l4hSZiGIHoaNlF5WyIlHOAwI%2FBQCKYHQK%2BZK1IkwK6aLMI2%2BrZSlb5o9SPwcMPd5xh8NqgTjSfIGnq7WamhOwa%2FOFjjlLmXAUrXS2%2FB3B28Mf3qwNdMzqdhw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a03cdbcd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=30083&min_rtt=25931&rtt_var=4567&sent=165&recv=63&lost=0&retrans=0&sent_bytes=171851&recv_bytes=2935&delivery_rate=922292&cwnd=237&unsent_bytes=27140&cid=967ec1aa68ab9ff8&ts=1116&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/krnl.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/krnl.jpeg HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/jpeg
content-length: 4519
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5839
etag: "61c62c55-16cf"
expires: Sun, 26 Jan 2025 18:15:06 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
cf-cache-status: HIT
age: 579572
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1k0zy0btrRm17MpfwOGMk9pIB90wj5xYdfXhviJurFwGTiVcXBLkakogMxZdYO7u3ZQjrVIMDGSfe13Z11pDPcr6fUtEzRq1DmmLa9nznoGOkATuqFt5iV9x7Jm2J35BHr%2BA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a12df7cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=27480&min_rtt=25931&rtt_var=1167&sent=229&recv=167&lost=0&retrans=28&sent_bytes=257498&recv_bytes=3008&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1240&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/DLL%20Injector.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/DLL%20Injector.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 15578
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=32504
content-disposition: inline; filename="DLL%20Injector.webp"
etag: "61c62c55-7ef8"
expires: Sun, 02 Feb 2025 18:15:43 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jTY%2B2%2FITJf8Z5OsgqU176XWPaRvcnFOy8Sv%2BC5onPBXoDpV1HHHBvyZ%2FHhMRb5RpQggLfHzU8ZrgcHNuCeB7%2Bgak3Ln1uYPnYTynuAQopdZAWnzYkfwOLzwiaI%2FoA5TACxOj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a1eeafcd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33958&min_rtt=25931&rtt_var=12665&sent=241&recv=175&lost=0&retrans=28&sent_bytes=262792&recv_bytes=3465&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1351&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/winrar.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/winrar.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/jpeg
content-length: 3008
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6229
etag: "6202a2c9-1855"
expires: Sun, 26 Jan 2025 18:15:06 GMT
last-modified: Tue, 08 Feb 2022 17:05:13 GMT
cf-cache-status: HIT
age: 480399
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YV2qQ76WS0HsK9eIh7oHG0SK5dQWndRQfp0SMjTk8%2Ba4BFJXFqW7kvAmMQqa1nyxjjq6chLwhGUUXa7PY2jRXbPmRZ%2FyOBoWuHi7C9Hj%2BTH4FPyyZrtCKSRkuhFrkXwTjueU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a1eeb2cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33958&min_rtt=25931&rtt_var=12665&sent=254&recv=175&lost=0&retrans=28&sent_bytes=278996&recv_bytes=3465&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1353&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/general-tool.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/general-tool.jpeg HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 10490
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=17472
content-disposition: inline; filename="winrar.webp"
etag: "61c62c55-4440"
expires: Sun, 02 Feb 2025 18:15:43 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fcYKr91VjgVQANaELHW3LHdJwiMGjYrWRvUzs70DCwAqhE%2FmHLP%2BRfkSfHPutSfCSf4l7TGY3I%2BIqAlGTJ7lJVbc%2FEcTKV%2FLh1o1goC2G9CWV%2F24eIho%2BM151JHcAaljV7FY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a1eeb1cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33958&min_rtt=25931&rtt_var=12665&sent=258&recv=175&lost=0&retrans=28&sent_bytes=282625&recv_bytes=3465&delivery_rate=1367132&cwnd=237&unsent_bytes=31&cid=967ec1aa68ab9ff8&ts=1353&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/dllinjector.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/dllinjector.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 8344
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=13353
content-disposition: inline; filename="autoshutdown.webp"
etag: "61c62c55-3429"
expires: Sun, 02 Feb 2025 18:15:43 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xvtAcddtpcjw1xxWdVpTyypAuUsNEBJ0Mtn6NUp9F2W4xqTlHrD1dgQ3wDIXdOuHGJfFyAunj1CYOYIYemGMHee5%2B7OuDfY0SvS0HBMlFYerjFbSG5Xx19zqk%2BZahkjSYqAe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a1eeb4cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33958&min_rtt=25931&rtt_var=12665&sent=266&recv=175&lost=0&retrans=28&sent_bytes=293481&recv_bytes=3465&delivery_rate=1367132&cwnd=237&unsent_bytes=361&cid=967ec1aa68ab9ff8&ts=1354&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/autoshutdown.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/autoshutdown.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 4552
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=8884
content-disposition: inline; filename="dllinjector.webp"
etag: "61c62c55-22b4"
expires: Sun, 02 Feb 2025 18:15:43 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T1ociXHdSO2TulCxx9MsBYpGvIB31soWdp5n9gcFbSZxN5Q4fU6z5brf0RaMsLmDD7eexC8cBM0IuGAPFz7HfjSaGgLfo2zprwRkPsTyyCGv5oXgYU14kmtVeAA8e%2BCpyRco"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a1eeb3cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33958&min_rtt=25931&rtt_var=12665&sent=274&recv=175&lost=0&retrans=28&sent_bytes=302864&recv_bytes=3465&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1356&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/cheatengine.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/cheatengine.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:56 GMT
content-type: image/jpeg
content-length: 2713
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3569
etag: "61c62c55-df1"
expires: Wed, 29 Jan 2025 12:29:24 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
cf-cache-status: HIT
age: 96882
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C99VgpjJKcdfOXhExJ5eNbgi5M7lj%2ByV9vmcigHxj5WHanAQZ%2Fl15YFrBVCD1YxKC2pMU%2BKxHFILfUKnxwF2RjWWQmoO%2FBa0eJLsDWlgnVt1OYORMWhe9Oos3XEEvd%2FgVVt8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a24f2dcd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33445&min_rtt=25931&rtt_var=972&sent=280&recv=198&lost=0&retrans=28&sent_bytes=308020&recv_bytes=3761&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1409&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/notepad++.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/notepad++.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:56 GMT
content-type: image/webp
content-length: 23564
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=37268
content-disposition: inline; filename="notepad++.webp"
etag: "61c62c55-9194"
expires: Sun, 02 Feb 2025 18:15:43 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96882
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GBTZIUv9Gy74wdoS3hNCHqIxA4Mvy%2BKmXOGWSr0%2FuxfXXmqwKYHq8AjFkiiG90Dxe%2F2cHrReZORwRf8rDM3FRDAVTkfJ%2BINj%2FFpHAmv4uhQPT86NUhKExNmVugwvU60O0lJ9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a24f2acd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33445&min_rtt=25931&rtt_var=972&sent=285&recv=198&lost=0&retrans=28&sent_bytes=311426&recv_bytes=3761&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1411&x=0"
GET

https://cdn.wearedevs.net/images/thumbnails/cs.jpeg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/thumbnails/cs.jpeg HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:56 GMT
content-type: image/webp
content-length: 8872
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=12343
content-disposition: inline; filename="cheatengine.webp"
etag: "61c62c55-3037"
expires: Sun, 02 Feb 2025 18:15:43 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 96882
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wa5z5vMvuT1RcP%2FEEIl%2BOPjvQgNC7TDQ7XEkWPS2ZL4cwi5J3IxDKG9fnfkNeCHfqEwtItkLd9Sdcs8rHLczP1FT616cZd8znLMXvZbdr6jhHx0YYFgp4im%2Bf%2F3WC4uxzsxV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a23f29cd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33445&min_rtt=25931&rtt_var=972&sent=298&recv=198&lost=0&retrans=28&sent_bytes=328336&recv_bytes=3761&delivery_rate=1367132&cwnd=237&unsent_bytes=7382&cid=967ec1aa68ab9ff8&ts=1411&x=0"
GET

https://wearedevs.net/icons/android.svg

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /icons/android.svg HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/css/exploits.css?v=26&v2=7
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.1.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:56 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Jan 2023 13:46:33 GMT
etag: W/"63d7ca39-e11"
expires: Tue, 07 Jan 2025 05:08:25 GMT
cache-control: max-age=604800
cache-control: public
cf-cache-status: HIT
age: 399390
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wUtR%2BHtAqsjTZ1TviPULLaKWiPh2CMESFxwv%2FrYofXH83v7Vjsae7jzm578DHW8izox5TmKcsff6GiDnbbT5hahQkQ7Tld4Lj4aLWxXi1REqHXETTdO2IN3gJb8gD0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40a24f34cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=33445&min_rtt=25931&rtt_var=972&sent=311&recv=198&lost=0&retrans=28&sent_bytes=345246&recv_bytes=3761&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=1419&x=0"
GET

https://wearedevs.net/favicon.ico

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /favicon.ico HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:57 GMT
content-type: image/x-icon
last-modified: Thu, 07 Apr 2022 17:37:47 GMT
etag: W/"624f216b-86be"
expires: Mon, 06 Jan 2025 08:14:31 GMT
cache-control: max-age=604800
cache-control: public
cf-cache-status: HIT
age: 97283
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fGRRgsyWO4NIz15nNTe6k5nAqqxC1yE%2BAioWAOV0w9hdvY5OZGhAEeGNt3NEUUlycVl7GSW1MUvsY0F3Wn5muYCzYxJcOalccMuOkLJpMDCVDigU%2BVOUhHkiqFXWwrE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40acdc1acd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=37325&min_rtt=25931&rtt_var=13009&sent=315&recv=210&lost=0&retrans=28&sent_bytes=347165&recv_bytes=3893&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=3107&x=0"
GET

https://wearedevs.net/d/JJSploit

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /d/JJSploit HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://wearedevs.net/exploits
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025415.60.0.0
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:01 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-download-options: noopen
x-content-type-options: nosniff
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-xss-protection: 1; mode=block
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rfYz8mSuW4e5b8DciVDB3bGg2Kq%2Bo%2FrAk%2F4k5JlZQjYgHj%2Bkk7qQsXGjZDzDfNfAirjKOgmO01Q%2BBtKZ17yfk1PrShiL5dfNPP0Su2Mmexc2HmsqspSSk1m7xhY0IFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fce40c41a07cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=39467&min_rtt=25931&rtt_var=16447&sent=327&recv=217&lost=0&retrans=28&sent_bytes=358825&recv_bytes=4754&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=6972&x=0"
GET

https://wearedevs.net/css/download.css?v=26&v2=5

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /css/download.css?v=26&v2=5 HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://wearedevs.net/d/JJSploit
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME
cookie: FCNEC=%5B%5B%22AKsRol9VzXriAJHRsn9Nl9VrvLlcPVbO1_aejBc_NcExC3Cy9AO4zvbDothVfbF1iNQ82XNK2cZc9JncXLMjS23y9mfNtyH6J4QAn2jSG9DbRoa3PMHNnIOIlUvwWrzeT4ehaKlK1homtUzDeOBM0OPXXnGLS1wMrw%3D%3D%22%5D%5D
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025421.54.0.0

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:02 GMT
content-type: image/webp
content-length: 274
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=521
content-disposition: inline; filename="youtube.webp"
etag: "61c62c55-209"
expires: Sun, 02 Feb 2025 18:15:11 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 97289
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YEOLsNqB%2FQAVkviWdgvCGu1WKgFACzM%2B%2FuHeJ82sSHGV6bE5GUi3GUF7vyyTuKcEmJ5IOVrxGywvtBVvKup2w7SSrqMeGAnizrbj42Zd5OdIuGTHfFJNAbuBj85G124R0NrW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40c76f8ccd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=48512&min_rtt=25931&rtt_var=21113&sent=335&recv=222&lost=0&retrans=28&sent_bytes=365076&recv_bytes=5358&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=7359&x=0"
GET

https://cdn.wearedevs.net/js/timestamp.js

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /js/timestamp.js HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME
cookie: FCNEC=%5B%5B%22AKsRol9VzXriAJHRsn9Nl9VrvLlcPVbO1_aejBc_NcExC3Cy9AO4zvbDothVfbF1iNQ82XNK2cZc9JncXLMjS23y9mfNtyH6J4QAn2jSG9DbRoa3PMHNnIOIlUvwWrzeT4ehaKlK1homtUzDeOBM0OPXXnGLS1wMrw%3D%3D%22%5D%5D
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025421.54.0.0

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:02 GMT
content-type: image/webp
content-length: 316
cache-control: max-age=2592000
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=670
content-disposition: inline; filename="twitter.webp"
etag: "61c62c55-29e"
expires: Sun, 26 Jan 2025 18:15:00 GMT
last-modified: Fri, 24 Dec 2021 20:23:49 GMT
vary: Accept
cf-cache-status: HIT
age: 487140
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2OmcLfDTZ%2BMty%2F3siO9uSeQKf85P19xei7w4POnBQ2vfRs%2FDg6zk6EAXKuMx272wwoiWNhMl8OoAtcvvRtkVzHQ4apSWKZ0q9074w6U9snfAhyS%2Fe9n%2FK%2Fkoxj2m9OxPhUXu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40c76f8ecd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=48512&min_rtt=25931&rtt_var=21113&sent=338&recv=222&lost=0&retrans=28&sent_bytes=366087&recv_bytes=5358&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=7360&x=0"
GET

https://cdn.wearedevs.net/images/icons/youtube.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/icons/youtube.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME
cookie: FCNEC=%5B%5B%22AKsRol9VzXriAJHRsn9Nl9VrvLlcPVbO1_aejBc_NcExC3Cy9AO4zvbDothVfbF1iNQ82XNK2cZc9JncXLMjS23y9mfNtyH6J4QAn2jSG9DbRoa3PMHNnIOIlUvwWrzeT4ehaKlK1homtUzDeOBM0OPXXnGLS1wMrw%3D%3D%22%5D%5D
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025421.54.0.0

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:02 GMT
content-type: application/javascript
last-modified: Fri, 24 Dec 2021 20:23:48 GMT
etag: W/"61c62c54-a18"
expires: Sun, 02 Feb 2025 18:15:11 GMT
cache-control: max-age=2592000
cache-control: public
cf-cache-status: HIT
age: 97289
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NjUf8joHaouML0Gz9a%2FtFAMaRuvRR9yXx8khtF38Fz2hb1XpedZEikw6pUTuuotn%2FaHD8aCE%2B%2FkF1i0zi5gDvQMRQhf9oaQlIoFc6ohc9d3lQPhOlwEp5Q3i%2BCoEhVycUuy%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40c76f8acd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=48512&min_rtt=25931&rtt_var=21113&sent=341&recv=222&lost=0&retrans=28&sent_bytes=366996&recv_bytes=5358&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=7363&x=0"
GET

https://cdn.wearedevs.net/images/icons/twitter.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/icons/twitter.png HTTP/2.0
host: cdn.wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME
cookie: FCNEC=%5B%5B%22AKsRol9VzXriAJHRsn9Nl9VrvLlcPVbO1_aejBc_NcExC3Cy9AO4zvbDothVfbF1iNQ82XNK2cZc9JncXLMjS23y9mfNtyH6J4QAn2jSG9DbRoa3PMHNnIOIlUvwWrzeT4ehaKlK1homtUzDeOBM0OPXXnGLS1wMrw%3D%3D%22%5D%5D
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025421.54.0.0

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:02 GMT
content-type: image/webp
content-length: 1540
cache-control: max-age=604800
cache-control: public
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2932
content-disposition: inline; filename="unc.webp"
etag: "626802bd-b74"
expires: Fri, 10 Jan 2025 18:15:12 GMT
last-modified: Tue, 26 Apr 2022 14:33:33 GMT
vary: Accept
cf-cache-status: HIT
age: 97239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bEUw9%2BOH4nLMa4bZCqCwlIrspPylw3WpiM%2BUzRkjIAZ7cONjhG5YuSaolAVNljm6ln8iXPyqEs8RbXRMMxb4lC7Uo1TRRGtU9hFhGAeDgWo0XdR8QD4dLedhJoKUu3A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40c76f8fcd67-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=48512&min_rtt=25931&rtt_var=21113&sent=344&recv=222&lost=0&retrans=28&sent_bytes=368470&recv_bytes=5358&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=7368&x=0"
GET

https://wearedevs.net/images/unc.png

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /images/unc.png HTTP/2.0
host: wearedevs.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/d/JJSploit
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.2.1095209109.1736025415
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME
cookie: FCNEC=%5B%5B%22AKsRol9VzXriAJHRsn9Nl9VrvLlcPVbO1_aejBc_NcExC3Cy9AO4zvbDothVfbF1iNQ82XNK2cZc9JncXLMjS23y9mfNtyH6J4QAn2jSG9DbRoa3PMHNnIOIlUvwWrzeT4ehaKlK1homtUzDeOBM0OPXXnGLS1wMrw%3D%3D%22%5D%5D
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.0.1736025421.54.0.0

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:02 GMT
content-type: text/css
last-modified: Tue, 01 Oct 2024 22:23:10 GMT
etag: W/"66fc764e-e49"
expires: Sat, 04 Jan 2025 20:33:23 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 3235
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U8fakiJot6FcAG50Q%2B%2FYctvR4%2BPPRGCzg4yzsZutARughAvaGIQuGJ4WVwFplUsZrC1bU0fYF%2B%2By66N5MVjOrmQmZmEXI2kYND454mA1KKrO32VOHlEKP0nqV2MfkQU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40c76f86cd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=48512&min_rtt=25931&rtt_var=21113&sent=348&recv=222&lost=0&retrans=28&sent_bytes=370713&recv_bytes=5358&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=7376&x=0"
GET

https://wearedevs.net/js/service-worker.js

msedge.exe

Remote address:

172.67.71.2:443

Request

GET /js/service-worker.js HTTP/2.0
host: wearedevs.net
cache-control: max-age=0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
service-worker: script
sec-fetch-site: same-origin
sec-fetch-mode: same-origin
sec-fetch-dest: serviceworker
referer: https://wearedevs.net/d/JJSploit
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gid=GA1.2.1973444052.1736025416
cookie: _gat_gtag_UA_120895803_1=1
cookie: FCCDCF=%5Bnull%2Cnull%2Cnull%2C%5B%22CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%22%2C%222~70.89.93.108.122.149.196.236.259.311.313.323.358.415.442.449.486.494.495.540.574.609.864.981.1029.1048.1051.1095.1097.1126.1205.1276.1301.1365.1415.1449.1514.1570.1577.1598.1651.1716.1735.1753.1765.1870.1878.1889.1958.1960.2072.2253.2299.2373.2415.2506.2526.2531.2568.2571.2575.2624.2677.2778~dv.%22%2C%2205526E38-801A-4106-9497-70B1DE2E0017%22%5D%5D
cookie: __gads=ID=086c21a68d86c401:T=1736025420:RT=1736025420:S=ALNI_Mb63uam8vk8iUA-hfKujWuBEiyg4w
cookie: __gpi=UID=00000fc4f5af872b:T=1736025420:RT=1736025420:S=ALNI_MYJq5xQcaV0drn8il_Phf5cDZ5TaA
cookie: __eoi=ID=6198ccad026aaa82:T=1736025420:RT=1736025420:S=AA-AfjbwOHXnFB_-9mlJIpm5GTME
cookie: FCNEC=%5B%5B%22AKsRol9VzXriAJHRsn9Nl9VrvLlcPVbO1_aejBc_NcExC3Cy9AO4zvbDothVfbF1iNQ82XNK2cZc9JncXLMjS23y9mfNtyH6J4QAn2jSG9DbRoa3PMHNnIOIlUvwWrzeT4ehaKlK1homtUzDeOBM0OPXXnGLS1wMrw%3D%3D%22%5D%5D
cookie: _ga_46VWDGRLXJ=GS1.1.1736025415.1.1.1736025421.54.0.0
cookie: _ga=GA1.2.1095209109.1736025415

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:17:02 GMT
content-type: application/javascript
last-modified: Thu, 07 Apr 2022 17:37:47 GMT
etag: W/"624f216b-5a1"
expires: Sat, 04 Jan 2025 21:31:13 GMT
cache-control: max-age=3600
cache-control: public
cf-cache-status: HIT
age: 852
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=daM8hDwH9yuT70i%2FFyC0o3t6GkxjKtgAwlBxng5uZHNRx%2Fnn2XWrQlSHiiIASRtYrn8UxoX3OwTr8xfrOiBZIhgwaFbDYmhGMhWT%2FqNi0c9Fb9zElaZ9jnezdem6H2I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8fce40ccff8fcd67-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=50466&min_rtt=25931&rtt_var=8944&sent=353&recv=229&lost=0&retrans=30&sent_bytes=372949&recv_bytes=5522&delivery_rate=1367132&cwnd=237&unsent_bytes=0&cid=967ec1aa68ab9ff8&ts=8250&x=0"
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-3.ukwest.cloudapp.azure.com

prod-agic-uw-3.ukwest.cloudapp.azure.com

IN A

51.11.108.188
DNS

2.71.67.172.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

2.71.67.172.in-addr.arpa

IN PTR

Response
DNS

2.71.67.172.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

2.71.67.172.in-addr.arpa

IN PTR

Response
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiV24xVTdPWnV6UFU9Iiwia2V5IjoiWkpEZytxYTF0SFpzZTN4N213M3BTQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1361
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:16:55 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 807
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiMnZmRzUwMUVERTg9Iiwia2V5IjoiNlJmenhLcjBMOEREZzZ5UUU1NWRIUT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 2978
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:00 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3030
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiMXZVRCtmYUEzbFU9Iiwia2V5IjoiaVJKSlJIaFpyZmQ0alZMYlB5YWkxZz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3048
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:01 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3128
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSWYrNko5SW1iVUE9Iiwia2V5IjoiZzdiV3NXVVFSYmc2N2NpZHRRZVdvdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3654
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:16 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3630
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoicVhxSHdQeVVKQWM9Iiwia2V5Ijoib05keHUvK2ZabFIyTldoNENjNTF6UT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1402
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:16:55 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 820
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiRStTQTd0RmR6WFU9Iiwia2V5IjoiYWtyL1Q3UlQ0SFZIK0NtUHFtY0Jpdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1430
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:02 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 965
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiMmRUTEs0Zk1Md1k9Iiwia2V5IjoiWlQxVFJsZFgrRVExbFIrZ2MvZDZRZz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3310
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:20 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3474
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
DNS

cdn.wearedevs.net

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.wearedevs.net

IN A

Response

cdn.wearedevs.net

IN A

172.67.71.2

cdn.wearedevs.net

IN A

104.26.7.147

cdn.wearedevs.net

IN A

104.26.6.147
DNS

cdn.wearedevs.net

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.wearedevs.net

IN A

Response

cdn.wearedevs.net

IN A

104.26.6.147

cdn.wearedevs.net

IN A

104.26.7.147

cdn.wearedevs.net

IN A

172.67.71.2
GET

https://cdn.discordapp.com/icons/1258796097153929237/56eaef53fdb39fb957846be91aca4523.webp

msedge.exe

Remote address:

162.159.134.233:443

Request

GET /icons/1258796097153929237/56eaef53fdb39fb957846be91aca4523.webp HTTP/2.0
host: cdn.discordapp.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 4552
cf-ray: 8fce40a1397876c0-LHR
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 236682
cache-control: public, max-age=31536000
expires: Sun, 04 Jan 2026 21:16:55 GMT
last-modified: Tue, 03 Dec 2024 02:46:10 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=86400
x-discord-transform-duration: 9
set-cookie: __cf_bm=yBeJJ.cHU5E4xo6uL4MMX3HuZbeRH899JOKP2N7RVQQ-1736025415-1.0.1.1-HqO4vSODsMQcC0amMD4bqqeqB19stA0xb.KGLM5Vh9GFIVYbSDbPxxD9GM_qCOIcVhTZCynJqx5JE9RHfEFDrQ; path=/; expires=Sat, 04-Jan-25 21:46:55 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=84o9eeH1xwS6D%2BFc1mQPQglTMiybEzHq0%2FRo8pC3TjUMQmiFHP0OhkZ03jM4p6Fyr4xnrwpARWeiRPKxMHFVIO6P9l0GWxqzLuAxabtbRCajOPP6%2Bzj0Q6t9WHMMs9my3ur1TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
set-cookie: _cfuvid=_BYVzCcx1TqpS2V3A2yADVZQIrK5BpHSFLdrqabBOMM-1736025415903-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
GET

https://cdn.discordapp.com/icons/1226285947646378097/361860a035b4f15906f12252dbad7e56.webp

msedge.exe

Remote address:

162.159.134.233:443

Request

GET /icons/1226285947646378097/361860a035b4f15906f12252dbad7e56.webp HTTP/2.0
host: cdn.discordapp.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 04 Jan 2025 21:16:55 GMT
content-type: image/webp
content-length: 3970
cf-ray: 8fce40a1397c76c0-LHR
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 2213457
cache-control: public, max-age=31536000
expires: Sun, 04 Jan 2026 21:16:55 GMT
last-modified: Mon, 25 Nov 2024 03:35:43 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=86400
x-discord-transform-duration: 6
set-cookie: __cf_bm=JxQO0WXAS7tBEr2w8F_fGbQ8aOgVfHM_hw.cGLh4QUQ-1736025415-1.0.1.1-8Yz5rWskinT6Lohd9R30A62Iywiqi_dwAP3Un7uYbW28BNy72FbGwHaUtkpMwYClgsXXveXQKWvETHrnWat2Ug; path=/; expires=Sat, 04-Jan-25 21:46:55 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HjOZTMnoXOVtVg3KvJf0ykqyjWpQD2v3CQmVTIjMRRC0t6womiTVn2g67LQMl2ik%2By7bh20Dx2dCVgDsbBsWZ6WmxnNxytvNTAcoKmSZ4CRhyVniCMWQWBn2bMWOs%2BeZQrOhXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
set-cookie: _cfuvid=qBW9i2JfAGME7g4e9FkvoV4yUywIPpI.0iLalBI9cB8-1736025415916-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

142.250.187.194
DNS

stats.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

stats.g.doubleclick.net

IN A

Response

stats.g.doubleclick.net

IN A

74.125.133.156

stats.g.doubleclick.net

IN A

74.125.133.157

stats.g.doubleclick.net

IN A

74.125.133.155

stats.g.doubleclick.net

IN A

74.125.133.154
DNS

stats.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

stats.g.doubleclick.net

IN A

Response

stats.g.doubleclick.net

IN A

74.125.133.154

stats.g.doubleclick.net

IN A

74.125.133.155

stats.g.doubleclick.net

IN A

74.125.133.156

stats.g.doubleclick.net

IN A

74.125.133.157
POST

https://region1.analytics.google.com/g/collect?v=2&tid=G-46VWDGRLXJ&gtm=45je4cc1v875665888za200&_p=1736025415138&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1095209109.1736025415&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1736025415&sct=1&seg=0&dl=https%3A%2F%2Fwearedevs.net%2Fexploits&dt=Roblox%20Exploits%20%26%20Hacks%20%26%20Cheats%20-%20WeAreDevs&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1650

msedge.exe

Remote address:

216.239.34.36:443

Request

POST /g/collect?v=2&tid=G-46VWDGRLXJ&gtm=45je4cc1v875665888za200&_p=1736025415138&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1095209109.1736025415&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1736025415&sct=1&seg=0&dl=https%3A%2F%2Fwearedevs.net%2Fexploits&dt=Roblox%20Exploits%20%26%20Hacks%20%26%20Cheats%20-%20WeAreDevs&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1650 HTTP/2.0
host: region1.analytics.google.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://wearedevs.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://googleads.g.doubleclick.net/pagead/html/r20241212/r20190131/zrt_lookup_fy2021.html

msedge.exe

Remote address:

142.250.187.194:443

Request

GET /pagead/html/r20241212/r20190131/zrt_lookup_fy2021.html HTTP/2.0
host: googleads.g.doubleclick.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;ecn1=1;etm1=0;eid1=11;

msedge.exe

Remote address:

142.250.187.194:443

Request

GET /ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;ecn1=1;etm1=0;eid1=11; HTTP/2.0
host: ade.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D0%26sdk%3Do%26p%3D1,1,169,299%26tm%3D0%26tu%3D0%26tos%3D0,0,0,0,0%26mtos%3D0,0,0,0,0%26mcvt%3D0%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D0%26is%3D33554707%26i0%3D33554707%26ic%3D33556754%26cs%3D33556754%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D0%26dfvs%3D0%26dvpt%3D0%26qmt%3D0,0,0,0,0%26qas%3D0%26qnv%3D0%26qmv%3D0;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D0%26sdk%3Do%26p%3D1,1,169,299%26tm%3D0%26tu%3D0%26tos%3D0,0,0,0,0%26mtos%3D0,0,0,0,0%26mcvt%3D0%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D0%26is%3D33554707%26i0%3D33554707%26ic%3D33556754%26cs%3D33556754%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D0%26dfvs%3D0%26dvpt%3D0%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;dc_rfl=%5BURL_SIGNALS%5D;ecn1=1;etm1=0;eid1=210001;

msedge.exe

Remote address:

142.250.187.194:443

Request

GET /ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D0%26sdk%3Do%26p%3D1,1,169,299%26tm%3D0%26tu%3D0%26tos%3D0,0,0,0,0%26mtos%3D0,0,0,0,0%26mcvt%3D0%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D0%26is%3D33554707%26i0%3D33554707%26ic%3D33556754%26cs%3D33556754%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D0%26dfvs%3D0%26dvpt%3D0%26qmt%3D0,0,0,0,0%26qas%3D0%26qnv%3D0%26qmv%3D0;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D0%26sdk%3Do%26p%3D1,1,169,299%26tm%3D0%26tu%3D0%26tos%3D0,0,0,0,0%26mtos%3D0,0,0,0,0%26mcvt%3D0%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D0%26is%3D33554707%26i0%3D33554707%26ic%3D33556754%26cs%3D33556754%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D0%26dfvs%3D0%26dvpt%3D0%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;dc_rfl=%5BURL_SIGNALS%5D;ecn1=1;etm1=0;eid1=210001; HTTP/2.0
host: ade.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;ecn1=1;etm1=0;eid1=210008;

msedge.exe

Remote address:

142.250.187.194:443

Request

GET /ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;ecn1=1;etm1=0;eid1=210008; HTTP/2.0
host: ade.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

72.204.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

72.204.58.216.in-addr.arpa

IN PTR

Response

72.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f81e100net

72.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f72�G

72.204.58.216.in-addr.arpa

IN PTR

lhr48s49-in-f8�G
DNS

login.live.com

Remote address:

8.8.8.8:53

Request

login.live.com

IN A

Response

login.live.com

IN CNAME

login.msa.msidentity.com

login.msa.msidentity.com

IN CNAME

www.tm.lg.prod.aadmsa.akadns.net

www.tm.lg.prod.aadmsa.akadns.net

IN CNAME

prdv4a.aadg.msidentity.com

prdv4a.aadg.msidentity.com

IN CNAME

www.tm.v4.a.prd.aadg.akadns.net

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.4

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.71

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.23

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.73

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.31.73

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.75

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.31.71

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.64
DNS

login.live.com

Remote address:

8.8.8.8:53

Request

login.live.com

IN A

Response

login.live.com

IN CNAME

login.msa.msidentity.com

login.msa.msidentity.com

IN CNAME

www.tm.lg.prod.aadmsa.akadns.net

www.tm.lg.prod.aadmsa.akadns.net

IN CNAME

prdv4a.aadg.msidentity.com

prdv4a.aadg.msidentity.com

IN CNAME

www.tm.v4.a.prd.aadg.akadns.net

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.71

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.31.71

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.75

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.4

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.23

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.73

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.31.73

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.159.64
DNS

74.204.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

74.204.58.216.in-addr.arpa

IN PTR

Response

74.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f741e100net

74.204.58.216.in-addr.arpa

IN PTR

lhr25s13-in-f10�H

74.204.58.216.in-addr.arpa

IN PTR

lhr48s49-in-f10�H
DNS

3.169.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

3.169.217.172.in-addr.arpa

IN PTR

Response

3.169.217.172.in-addr.arpa

IN PTR

lhr25s26-in-f31e100net
DNS

nav.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-3.ukwest.cloudapp.azure.com

prod-agic-uw-3.ukwest.cloudapp.azure.com

IN A

51.11.108.188
DNS

github.com

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

196.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.187.250.142.in-addr.arpa

IN PTR

Response

196.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f41e100net
DNS

196.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.187.250.142.in-addr.arpa

IN PTR
DNS

195.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

195.187.250.142.in-addr.arpa

IN PTR

Response

195.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f31e100net
DNS

14.178.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.178.250.142.in-addr.arpa

IN PTR

Response

14.178.250.142.in-addr.arpa

IN PTR

lhr48s27-in-f141e100net
DNS

ep1.adtrafficquality.google

Remote address:

8.8.8.8:53

Request

ep1.adtrafficquality.google

IN A

Response

ep1.adtrafficquality.google

IN A

142.250.187.226
DNS

ep1.adtrafficquality.google

Remote address:

8.8.8.8:53

Request

ep1.adtrafficquality.google

IN A
DNS

2.178.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.178.250.142.in-addr.arpa

IN PTR

Response

2.178.250.142.in-addr.arpa

IN PTR

lhr48s27-in-f21e100net
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.138

e86303.dscx.akamaiedge.net

IN A

92.123.128.137

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.143

e86303.dscx.akamaiedge.net

IN A

92.123.128.134

e86303.dscx.akamaiedge.net

IN A

92.123.128.136

e86303.dscx.akamaiedge.net

IN A

92.123.128.139

e86303.dscx.akamaiedge.net

IN A

92.123.128.132

e86303.dscx.akamaiedge.net

IN A

92.123.128.142
DNS

www.google.com

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.187.196
DNS

raw.githubusercontent.com

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A

Response

raw.githubusercontent.com

IN A

185.199.110.133

raw.githubusercontent.com

IN A

185.199.108.133

raw.githubusercontent.com

IN A

185.199.109.133

raw.githubusercontent.com

IN A

185.199.111.133
DNS

raw.githubusercontent.com

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A
DNS

233.134.159.162.in-addr.arpa

Remote address:

8.8.8.8:53

Request

233.134.159.162.in-addr.arpa

IN PTR

Response
DNS

156.133.125.74.in-addr.arpa

Remote address:

8.8.8.8:53

Request

156.133.125.74.in-addr.arpa

IN PTR

Response

156.133.125.74.in-addr.arpa

IN PTR

wo-in-f1561e100net
DNS

tpc.googlesyndication.com

Remote address:

8.8.8.8:53

Request

tpc.googlesyndication.com

IN A

Response

tpc.googlesyndication.com

IN A

142.250.180.1
DNS

tpc.googlesyndication.com

Remote address:

8.8.8.8:53

Request

tpc.googlesyndication.com

IN A
DNS

14.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.200.250.142.in-addr.arpa

IN PTR

Response

14.200.250.142.in-addr.arpa

IN PTR

lhr48s29-in-f141e100net
DNS

33.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

33.200.250.142.in-addr.arpa

IN PTR

Response

33.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f11e100net
DNS

226.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

226.187.250.142.in-addr.arpa

IN PTR

Response

226.187.250.142.in-addr.arpa

IN PTR

lhr25s34-in-f21e100net
DNS

226.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

226.187.250.142.in-addr.arpa

IN PTR
DNS

36.34.239.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

36.34.239.216.in-addr.arpa

IN PTR

Response
DNS

googleads.g.doubleclick.net

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

216.58.204.66
DNS

googleads.g.doubleclick.net

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

216.58.204.66
DNS

194.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.187.250.142.in-addr.arpa

IN PTR

Response

194.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f21e100net
DNS

lh3.googleusercontent.com

Remote address:

8.8.8.8:53

Request

lh3.googleusercontent.com

IN A

Response

lh3.googleusercontent.com

IN CNAME

googlehosted.l.googleusercontent.com

googlehosted.l.googleusercontent.com

IN A

142.250.200.33
DNS

1.180.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.180.250.142.in-addr.arpa

IN PTR

Response

1.180.250.142.in-addr.arpa

IN PTR

lhr25s32-in-f11e100net
DNS

1.180.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.180.250.142.in-addr.arpa

IN PTR
GET

https://fundingchoicesmessages.google.com/i/ca-pub-9142841210062390?href=https%3A%2F%2Fwearedevs.net%2Fexploits&ers=2

msedge.exe

Remote address:

142.250.178.14:443

Request

GET /i/ca-pub-9142841210062390?href=https%3A%2F%2Fwearedevs.net%2Fexploits&ers=2 HTTP/2.0
host: fundingchoicesmessages.google.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178&tag_exp=101925629~102067555~102067808~102081485~102198178&z=1815071803

msedge.exe

Remote address:

172.217.169.3:443

Request

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178&tag_exp=101925629~102067555~102067808~102081485~102198178&z=1815071803 HTTP/2.0
host: www.google.co.uk
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178

msedge.exe

Remote address:

74.125.133.156:443

Request

POST /g/collect?v=2&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178 HTTP/2.0
host: stats.g.doubleclick.net
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://wearedevs.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-D2pDpZQ2uiyM_onr9OVOT3lWOe_iNWroFGHhynwfLCKBTSAXDKKmLAm-6odrl7RjyXhXrNwg5wbNfZe-14opignZW2xw&cry=1&dbm_d=AKAmf-C7izTduFG_8MhrrBEHoe80YugmjUn4XxsAODI6rW9bhYGI7d8dJ4szvHDHOwY0k2J6i6zFQ_rWsRcJLa1Sp69ciKpnAuNiB2iwuu_pSzpSDn7phNXDXgg6Hr-VVhHBUIJatLmJqsaOxeBJTg5sPa_roGhM5-ECaM-7IDZilDFpMGaXerwFWjwE4_hGfgb-4UIrCSvzDqtEpRPg_zm0Pds3j_8KH_pMpYtzSoIJj-U87JXUUS_M99anvaFznI_Jq8Ivij2OevgD-wYyytjnXkehmyHI2plq_G-AukwuvKdzhs5VsLZUC-BtC8Re7Qgw_VVqtWvBy7avNHYs8cYryTubCb4EnKsI1Z8EfA99AC1lCktwFDj6OEGtNvZAdkB2gvr6KEdc1e-dQlBI0J-FsjZrhIfs87rB-7l3BcQJNG6fS79oa-Iy6m-MkbQQQM9eAif7XSQXT_5n5U1BwX3sD4RsAuoJQ40Hq_fGutA2fI8o7Xe-5l9oqG0YbDCahg_rQVQcrB4nhOU3e524gx46O1Ko7IDhY5ZyGWi0AVtGoF3Wk1Ql6PSjsUGmnWBweN64BNQDiY_2iplpvDBM-bBoRcX76nQeNPDbf79bBp-RvWqCRqouFrZYCBTF2r8ccVD5rUDD1riG9M5Hgwe_3COedzGD1OUJdxMREl47KTVA6gJG-nnG41kmRJGZIAVSnmy5cl0TpGYpw_MfIkqeBK-IxwXe7SOeafNh7CYGakZhN7BAXkSUtZlGGhL5X8-2iIhfUccWc8TChFB9JKIWMPGpFArx5lSm1xm1VOnC3eJZ0UH8u3i0mxoOFqveVaAWhGVUl-AOCS5vQEno2VCi5yzo96-B1tzbqtUqiL7ANlXW_rHViwtQhiQN_t-FfKw3jUMbx2EuMbKqjvwfmsYH2x_UtqgiiUv7sYJSi3x0zHGnXcLxud3xh5Vpi20YrOFfJwq2GgCSYTWoysaaDwUS-sjuuJuUVomjYiPgSxx6C7O3vHElUm1tzQyKY_QtwIjI_dZ0b0cbJOEb7ffppgaA2RtiPddWi_n3lkd7TFdFZeonblhdsCq6m2y6jFUnwWrG_kfynIPQxGu3klsj-i8Bbse-L_3O5uJtpyAwAONsGK2Ek--T1My1QYfrDthKXv14E5E4FzeXHN7cU3XmcVuc__mOzDplwkgw2-ZVPG6oQlDifKdiRhoNBVs5ClaruzshNMn1TolSe3eRYwtM0JZC_VerAfXRNA-h-H73AA-dUm57TMiGgod8e2m4ROpaFwL8ClJG4WflUH9C-0GnQqfJrK7SsHEkWQQpbmAiT9dOOPtNJgIB1rRwVBP5Qq0L2HUSK5ZPOMwHwlyRRU6NruFcrEbvZHKbuDyWvuB6Nk4D1STb81IKxqO7z2iJX4J91cyas-MyaZdf9hwZvgdG9EiGexwxj9mQ1_4pox_A9CJhvChHWG0Mv-XODoNXEfvW57uGfuLQulwgU-OryFTpY7T9LKwBNLOsaHaRqmhUQnGJhy57eUT2WmoiHLq5mjGXQjC9ggmYIHf_68UY5_UPYyUb5DUPprBPdk9txxj988QdJkKNYFeTvoDsKESxBucf7RwHA6UbANkltFADv76m4AyVP8pEvbvgb8rvOfBywteb8v4aG5n1iftBM4LMB1M4xbg0b13-29VV1FO2-obG3Z4nrugm1NY6IiT_O85Ha3viUQRTsYten5GBxlz7cm488p9Qg9979cVFiYlVsvcMGCf7WqjtV1w6wAIGypJI17qm2o25215hSU2EEH2UDZPxsJWza1NDsvrxfUj-eEkxBlV1DRUT8l6cJfTzBVkv_dipqGn7ZAzwB9EE83Zx3cEJdGCKyr869NPy4PNju6y5qoUaSIgAstVOwBCXuZN41LceHA7YY426C3utvlLBryOXOpuC-oSU5WRetM8ZFvGAuPNH0uc4W8RV6JQBAry2MdedhXd1o33HEt3LRTBlAc1PQ2UYLU_QvbaoQTb7KW8P27y0mk7dj-YQEcQkjjOZEunaQiB1KFaCLAukF93o-C3mvJgjraRMtF9kjIFlL0xdZFqnlN6Yg62ODjKq_6I1lfxnYxN8bLuqkVFuVCXHPKl1ig8NyPSg_0MKTd1baAQD22E_6OfSFZc478ZrrQ78CIO4XcgDzbglE4rUUuC_JhGc_jNhI4Zfy2Gr9aK9XrPPYPguO7-ka1jneY3ONjX_8DDhTXLLblHtt3G2xbxk_71T6nL_A_Epf0VA6TnwyQjbktCW__vrSAEevAI0czRYpynh-orChKX0CamLjN4pfr0rEpQEbvBv3UJjbJz3KVPU3GjopqESUIDUNWSWUq_SGk0CI5x3k5VCJVDffDPE8JvSD2BnWbmxg2IWVWgC82t8nPAyHFslfg2WaCUstFKiX8PqYkQnuOFhhrat39Zfs3YQY5TTKcIhqXj3z-vtRaGxsXMb4fFRUvwsazbi-Y_t3nRfmL1EIl2k1dxoo1ttmyimdF2uBnl9JVt-dUkv38nPdEGBg1HTdeV-mKZ-MjEPfpXMr3M-eIhhz-lLiGLlvB9LoImVe30BQizHbJh_QyIgS6VyFUrZ_AxknU-dn1EDyhk_TWh_o7XUHPysou-M8KD6t6pr9dXm4Ki9X3_bpjmulvoFCpDp6Zd-0L-LXPjOrtfBUTutRDgZfTtSmSMnZt_pj-cIMJSkkczgiUN56HCiknQtKK2_0p3cdgtglri7OLUsX0TLzSqmeWKkuUXUAhAEjv6Nbmxeo2RLyKSBagIzt81N4ZBa2RmUmo9Iaqh4Bm-RMtM7wH1f3doMJqv9JnGQjqcQ4JcliGQXIFJb9iG70JdpEAEySx4Uj5qeFk0jmMCG18duICJmS_zVDSSUreYsbSXZ_SXpaKds1lJHHWsVC-joYtKU3zeXEuH0ezWN4Tmo5J7_mrfKKir_AdrtNHApnbik6D2vXxMFhoFTKLx5kO4LE06lZ_kyuuIlFTY4Sqj28zEULDJl0XpDq9XSEcVnWD9hq0Lq68gOhE5d3eWUUEQz2N0KQy2-GA6jJ_H_u0Up2-Uln4m_4Q1rm54Ros0QI4MVus61_oNWNxdqGBbM-tQ_oRWcs6suZpiYgUWwFcJ6BqXv8Jl54Ml46gUdMLMd3xlj9B79ifR8xsW4xsxNzyhua-nViQx7xZf1g8lZY2KzXBa0BDAYtL8mdNgcmU-Yv0csi3JK4TbaBfMckcSYI89jMxlMZK0mpas2_9mwA2fAqGDnalSOnLEaPCtBL7F-WJt6iQsxPBlEH2OzfFX4mOCjn_R0mJXXuf_dxtIj8bAIbd5HuDWyYX-dM_6TjtN5M1px-3FbW8aYaMOqQ8WnHNEjvgYsmka3WzLAAQMq9D9bLTFGJn0dJgTeR2BkPpl0IcM21H9gwgLaL5oTqA_0z1IiEpb8S7hC6RDgkuFHoQTQ4jQngloAa1o1pg6AKc5audDWJC-uazL_SRt3pAIB0yjWYtBEkI3U6G5NUwwJYRhunRP_gbWMbwFyMhFLSEFObtLk9I2MkXPAWfPJYSkdWkzz05BmAcKUqFvHTKOG3c-3vYSEby-y5Rpv2wsoZ17lIBMe1-8GBZPexlGmy7SC4ioDPd1SHcx57s9CawUGIpOeZpOCrBmhttIJaVl33boWoWvGHFBviKA4b7F30HugJeZbPQUvOcTIXy5MbiQ8Obz2fuSFWZzirGQiHVV7Fr8XdCKOHchdkbddNoiqt-128a286HNWVr6Sva9Xh5JhUQxVhfg-p02mzquVn7WChgpse6NZ5L-M-sb9SGqHEINL2diZyk6hrSZnXFX9iB9adOQFYRtKsiUjONeko-cSACd1U1jsqnzAnkyt0d4oqsfmdPEdl5kaaC7OiQoEcTxtQuFFcjr6fFiZ2oi006vCqBIqpFO7Z5THSQ_NeZtTsEd6NE6CDIVmhFEb__eR7AyRSa7MsFxDBH4j2JZyEtHvLGT8Nd9uOWDb7o3Y5Eaq8TX8i1X-eK6C1R8fueE6tiLs_-4XSjd6V6xLK2tiCwzTv_eaOKL33-hFO2INcxnDo1FCBuSswTPHt0dosU1FVLBs_1FjNhWhfHPVXG81WPcTOpD9A-2joeC2AI7N3HCgzyDnmuYbHWlVEf68yeLByTa6HjOWWIzh32qAtBf-xJDkQraRQFqxS_IItzfxfrbc5v1_J5rZlQ0krrKESHMZmbGmUMYFrbaanYaCNi3an9j-8_UDNjsdJIdfeKHomlnAfoEyT9JPIKSKk6kbl8PcBwQni9GFrnGTbXPv8ssOcgEUgCUdR12uuaOU7bX_bPP7sYxTz5fxD-eNtFzFrAAzP3FWiqT5Ffgsc5kPB0HjQXYkVaOoiy9IP9aiq-H6sICh6GZ-ubt-RpBaLHF3eHBRnn-fVWZJOlNN9fKB1sxT7s21PKJsd8qkZA6w4G9p6c0rLAmUqGQ4k0y16vAgR7EnLmTkyVLTju_d_37BljsxGhDrqtci5HLVKh8rekR8RLwwLa75Kf8BBE1-tR-I1RbCghMmBdCinhB4eIO3bSOJ7pi3WHRTLCr1OtEB4npO2nfdrum_gBagn_F2BwT-xXKiKA&cid=CAQSTgCa7L7d8VQ_PHRtCfHORLU28BzV1TRy_u2TPWayM9th0ebUn9xvP-sCnaKrgRjQ_Sb5_IFGbg_aiQxgHeKdR7yUw0sdVb6eVouFkYoZEhgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0

msedge.exe

Remote address:

74.125.133.156:443

Request

GET /dbm/vast?dbm_c=AKAmf-D2pDpZQ2uiyM_onr9OVOT3lWOe_iNWroFGHhynwfLCKBTSAXDKKmLAm-6odrl7RjyXhXrNwg5wbNfZe-14opignZW2xw&cry=1&dbm_d=AKAmf-C7izTduFG_8MhrrBEHoe80YugmjUn4XxsAODI6rW9bhYGI7d8dJ4szvHDHOwY0k2J6i6zFQ_rWsRcJLa1Sp69ciKpnAuNiB2iwuu_pSzpSDn7phNXDXgg6Hr-VVhHBUIJatLmJqsaOxeBJTg5sPa_roGhM5-ECaM-7IDZilDFpMGaXerwFWjwE4_hGfgb-4UIrCSvzDqtEpRPg_zm0Pds3j_8KH_pMpYtzSoIJj-U87JXUUS_M99anvaFznI_Jq8Ivij2OevgD-wYyytjnXkehmyHI2plq_G-AukwuvKdzhs5VsLZUC-BtC8Re7Qgw_VVqtWvBy7avNHYs8cYryTubCb4EnKsI1Z8EfA99AC1lCktwFDj6OEGtNvZAdkB2gvr6KEdc1e-dQlBI0J-FsjZrhIfs87rB-7l3BcQJNG6fS79oa-Iy6m-MkbQQQM9eAif7XSQXT_5n5U1BwX3sD4RsAuoJQ40Hq_fGutA2fI8o7Xe-5l9oqG0YbDCahg_rQVQcrB4nhOU3e524gx46O1Ko7IDhY5ZyGWi0AVtGoF3Wk1Ql6PSjsUGmnWBweN64BNQDiY_2iplpvDBM-bBoRcX76nQeNPDbf79bBp-RvWqCRqouFrZYCBTF2r8ccVD5rUDD1riG9M5Hgwe_3COedzGD1OUJdxMREl47KTVA6gJG-nnG41kmRJGZIAVSnmy5cl0TpGYpw_MfIkqeBK-IxwXe7SOeafNh7CYGakZhN7BAXkSUtZlGGhL5X8-2iIhfUccWc8TChFB9JKIWMPGpFArx5lSm1xm1VOnC3eJZ0UH8u3i0mxoOFqveVaAWhGVUl-AOCS5vQEno2VCi5yzo96-B1tzbqtUqiL7ANlXW_rHViwtQhiQN_t-FfKw3jUMbx2EuMbKqjvwfmsYH2x_UtqgiiUv7sYJSi3x0zHGnXcLxud3xh5Vpi20YrOFfJwq2GgCSYTWoysaaDwUS-sjuuJuUVomjYiPgSxx6C7O3vHElUm1tzQyKY_QtwIjI_dZ0b0cbJOEb7ffppgaA2RtiPddWi_n3lkd7TFdFZeonblhdsCq6m2y6jFUnwWrG_kfynIPQxGu3klsj-i8Bbse-L_3O5uJtpyAwAONsGK2Ek--T1My1QYfrDthKXv14E5E4FzeXHN7cU3XmcVuc__mOzDplwkgw2-ZVPG6oQlDifKdiRhoNBVs5ClaruzshNMn1TolSe3eRYwtM0JZC_VerAfXRNA-h-H73AA-dUm57TMiGgod8e2m4ROpaFwL8ClJG4WflUH9C-0GnQqfJrK7SsHEkWQQpbmAiT9dOOPtNJgIB1rRwVBP5Qq0L2HUSK5ZPOMwHwlyRRU6NruFcrEbvZHKbuDyWvuB6Nk4D1STb81IKxqO7z2iJX4J91cyas-MyaZdf9hwZvgdG9EiGexwxj9mQ1_4pox_A9CJhvChHWG0Mv-XODoNXEfvW57uGfuLQulwgU-OryFTpY7T9LKwBNLOsaHaRqmhUQnGJhy57eUT2WmoiHLq5mjGXQjC9ggmYIHf_68UY5_UPYyUb5DUPprBPdk9txxj988QdJkKNYFeTvoDsKESxBucf7RwHA6UbANkltFADv76m4AyVP8pEvbvgb8rvOfBywteb8v4aG5n1iftBM4LMB1M4xbg0b13-29VV1FO2-obG3Z4nrugm1NY6IiT_O85Ha3viUQRTsYten5GBxlz7cm488p9Qg9979cVFiYlVsvcMGCf7WqjtV1w6wAIGypJI17qm2o25215hSU2EEH2UDZPxsJWza1NDsvrxfUj-eEkxBlV1DRUT8l6cJfTzBVkv_dipqGn7ZAzwB9EE83Zx3cEJdGCKyr869NPy4PNju6y5qoUaSIgAstVOwBCXuZN41LceHA7YY426C3utvlLBryOXOpuC-oSU5WRetM8ZFvGAuPNH0uc4W8RV6JQBAry2MdedhXd1o33HEt3LRTBlAc1PQ2UYLU_QvbaoQTb7KW8P27y0mk7dj-YQEcQkjjOZEunaQiB1KFaCLAukF93o-C3mvJgjraRMtF9kjIFlL0xdZFqnlN6Yg62ODjKq_6I1lfxnYxN8bLuqkVFuVCXHPKl1ig8NyPSg_0MKTd1baAQD22E_6OfSFZc478ZrrQ78CIO4XcgDzbglE4rUUuC_JhGc_jNhI4Zfy2Gr9aK9XrPPYPguO7-ka1jneY3ONjX_8DDhTXLLblHtt3G2xbxk_71T6nL_A_Epf0VA6TnwyQjbktCW__vrSAEevAI0czRYpynh-orChKX0CamLjN4pfr0rEpQEbvBv3UJjbJz3KVPU3GjopqESUIDUNWSWUq_SGk0CI5x3k5VCJVDffDPE8JvSD2BnWbmxg2IWVWgC82t8nPAyHFslfg2WaCUstFKiX8PqYkQnuOFhhrat39Zfs3YQY5TTKcIhqXj3z-vtRaGxsXMb4fFRUvwsazbi-Y_t3nRfmL1EIl2k1dxoo1ttmyimdF2uBnl9JVt-dUkv38nPdEGBg1HTdeV-mKZ-MjEPfpXMr3M-eIhhz-lLiGLlvB9LoImVe30BQizHbJh_QyIgS6VyFUrZ_AxknU-dn1EDyhk_TWh_o7XUHPysou-M8KD6t6pr9dXm4Ki9X3_bpjmulvoFCpDp6Zd-0L-LXPjOrtfBUTutRDgZfTtSmSMnZt_pj-cIMJSkkczgiUN56HCiknQtKK2_0p3cdgtglri7OLUsX0TLzSqmeWKkuUXUAhAEjv6Nbmxeo2RLyKSBagIzt81N4ZBa2RmUmo9Iaqh4Bm-RMtM7wH1f3doMJqv9JnGQjqcQ4JcliGQXIFJb9iG70JdpEAEySx4Uj5qeFk0jmMCG18duICJmS_zVDSSUreYsbSXZ_SXpaKds1lJHHWsVC-joYtKU3zeXEuH0ezWN4Tmo5J7_mrfKKir_AdrtNHApnbik6D2vXxMFhoFTKLx5kO4LE06lZ_kyuuIlFTY4Sqj28zEULDJl0XpDq9XSEcVnWD9hq0Lq68gOhE5d3eWUUEQz2N0KQy2-GA6jJ_H_u0Up2-Uln4m_4Q1rm54Ros0QI4MVus61_oNWNxdqGBbM-tQ_oRWcs6suZpiYgUWwFcJ6BqXv8Jl54Ml46gUdMLMd3xlj9B79ifR8xsW4xsxNzyhua-nViQx7xZf1g8lZY2KzXBa0BDAYtL8mdNgcmU-Yv0csi3JK4TbaBfMckcSYI89jMxlMZK0mpas2_9mwA2fAqGDnalSOnLEaPCtBL7F-WJt6iQsxPBlEH2OzfFX4mOCjn_R0mJXXuf_dxtIj8bAIbd5HuDWyYX-dM_6TjtN5M1px-3FbW8aYaMOqQ8WnHNEjvgYsmka3WzLAAQMq9D9bLTFGJn0dJgTeR2BkPpl0IcM21H9gwgLaL5oTqA_0z1IiEpb8S7hC6RDgkuFHoQTQ4jQngloAa1o1pg6AKc5audDWJC-uazL_SRt3pAIB0yjWYtBEkI3U6G5NUwwJYRhunRP_gbWMbwFyMhFLSEFObtLk9I2MkXPAWfPJYSkdWkzz05BmAcKUqFvHTKOG3c-3vYSEby-y5Rpv2wsoZ17lIBMe1-8GBZPexlGmy7SC4ioDPd1SHcx57s9CawUGIpOeZpOCrBmhttIJaVl33boWoWvGHFBviKA4b7F30HugJeZbPQUvOcTIXy5MbiQ8Obz2fuSFWZzirGQiHVV7Fr8XdCKOHchdkbddNoiqt-128a286HNWVr6Sva9Xh5JhUQxVhfg-p02mzquVn7WChgpse6NZ5L-M-sb9SGqHEINL2diZyk6hrSZnXFX9iB9adOQFYRtKsiUjONeko-cSACd1U1jsqnzAnkyt0d4oqsfmdPEdl5kaaC7OiQoEcTxtQuFFcjr6fFiZ2oi006vCqBIqpFO7Z5THSQ_NeZtTsEd6NE6CDIVmhFEb__eR7AyRSa7MsFxDBH4j2JZyEtHvLGT8Nd9uOWDb7o3Y5Eaq8TX8i1X-eK6C1R8fueE6tiLs_-4XSjd6V6xLK2tiCwzTv_eaOKL33-hFO2INcxnDo1FCBuSswTPHt0dosU1FVLBs_1FjNhWhfHPVXG81WPcTOpD9A-2joeC2AI7N3HCgzyDnmuYbHWlVEf68yeLByTa6HjOWWIzh32qAtBf-xJDkQraRQFqxS_IItzfxfrbc5v1_J5rZlQ0krrKESHMZmbGmUMYFrbaanYaCNi3an9j-8_UDNjsdJIdfeKHomlnAfoEyT9JPIKSKk6kbl8PcBwQni9GFrnGTbXPv8ssOcgEUgCUdR12uuaOU7bX_bPP7sYxTz5fxD-eNtFzFrAAzP3FWiqT5Ffgsc5kPB0HjQXYkVaOoiy9IP9aiq-H6sICh6GZ-ubt-RpBaLHF3eHBRnn-fVWZJOlNN9fKB1sxT7s21PKJsd8qkZA6w4G9p6c0rLAmUqGQ4k0y16vAgR7EnLmTkyVLTju_d_37BljsxGhDrqtci5HLVKh8rekR8RLwwLa75Kf8BBE1-tR-I1RbCghMmBdCinhB4eIO3bSOJ7pi3WHRTLCr1OtEB4npO2nfdrum_gBagn_F2BwT-xXKiKA&cid=CAQSTgCa7L7d8VQ_PHRtCfHORLU28BzV1TRy_u2TPWayM9th0ebUn9xvP-sCnaKrgRjQ_Sb5_IFGbg_aiQxgHeKdR7yUw0sdVb6eVouFkYoZEhgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0 HTTP/2.0
host: bid.g.doubleclick.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-BpwW6UreGvb29vJ23L6UrmnTpos-dr-68WWDNSYR85SMFk8magM1YmrLDh7Lro8wTUBGFq_08zSnyj4zDcKX4vysVQZw&cry=1&dbm_d=AKAmf-AWAwdxlAqhr5iKrUB0xv3c8gZwnsHWRh4G6igHFF5W-Mc4JFLBvRm6-dKutU7Pr23suSBDcQIh_e-wkNDuqG6sUTj0USqy2RC-ek6l50D1mQDIDCLlxqIOvtUixcTWZ4sAzCTSlVY4B78NKHykx_j-Trx358k4pkOlZhNIlT3c2RuIob-YfqwzlvuyBCXCCnmVim3x55HGi7XRDzSzQkQ8ZSb3oKG02U6rTXjfUArgbAaJ34YDCZAcwdJjXmHRD5XCSio8L2V8ciaxih2KuNQSLNDcsIhCiapLqmwc7zU3nzMgWC8dCj-GexESkbZ0-zhdaVmI4EzI7N-I45UCMuh2jmpLuFknsup9vPhhru6wkKjgNPH4ZmudC766EGWmkmlsibwh7JpqJAMwbPg9hb8HSag9_TgfBCzR746DZpInUm3F_qTIl-2E9JYzEttGa1Z_Y0fYBpyUn0CS5JiTQZlGge2HZS8BoVurlCmY5bzDvjMcZzmzUPVvASvuH4Gv_kLHWzNQXuYCp2--NfHaw4OCM9sMthPkwyHgqopBQ2Q1w462LWtv1XpHwhDghgv3hjd-ze3kv9UUVrRTGUtRz9iHt-fTv4BlxRb862siVn8js4nlCoFr2XjrR3NRSGIi7iLgDxsqfLoRpP7rNu75a7KRZZR7SH7RQsHSYXbnMjMV5XNwz7hbJHv46csZXUnKOWYvo-iJJnhS0nSWavGMy-3uAChr9RBUBkniElXF83RzDXowrvb-NWhFHrxy3kKocNfjI70g2CozdzxCNcp5T9nety6D1HfcPvpgFB_-3WCVhPavuNhytc5v83fwwCJN1NPkbTZryRmnKp9ZmDl4ahRJPNrXj1SLlvBNmRJLcx3WGGpw79qR2APiS_Pro7gxkfWpqAVxA76VsnM5Gjx7kbqc6_iMBSCTT_4cnVOGMyRnnRden3VMTH_0_kDi8vuHra_lanBcrN6wb8bangy967ejQ6tIT6g14WdugANeihxISXobLyE7c21N9SzEA0t8BxKt19qOJrjOutQpFkHziUKvQ3-lCPmQwb95iFCaGn9kl_IIICVuIkkaQZqE-JQOwXAGl3O-GSlRuZj_5paVvDga7Hv8Z0rO45BExs7L91KFga4f9po0wiXTYLRo_6Ca3hmb2gm6hurDWTwZlHM84-p2cgDjfLqaN_o6poojc2JUS6VfKlLxZVCE89ShAwvI9dkrW97lZja2wmbnzyOjkM6wPoWqML9EBnzPi4_84nUBG-XF5EAD-LAChI2oqCtPs3gYCQJrfr1qpb9-rO6ZTEaUtKRGS_k5CNJ6RLYDxiYyWwgS9EN-eL7Xyl7pBeQTvINpx7o3RHv5J6yc2TjyVa2-QPcQH3s5KqMnchUjlYHg1uQoY48F1QCLwkUK6o8fk2-UxLsvh74o1aHuoqms3y1PpKFg_6ENfHlQ_hTODheM4qlk2UaqZiWeQHEHfOhnMV3vlb2DpYXFhBrLuPVOOzc4e84BgKQx0mvhBWvzXWnt_VeTN9IzSLKCuf9-Rw1qKyIC-bW1d4iwSNJ3ovxSXPaU_1QB-sauL25tDjbR1dA8CNWwp1k6oKAKXggU2PHd4QBhuybluqelyoe_USvab-Ev1KiXn5U8LuVIXhtG7vhTSEYmjb66_Qj5fVVKCUZFHTgewSBC-PBJ_5DYP_5hQg5qD2Y7G0zo8rgJe40TuBtU_JusXgvZO7qwvk1_bj6lkauSvrZT2udzhRZjVJTf0O1Ya_NxQeuO6VCYMZIA0d-tXmAv1ZAl00LUjBpQLYrX-qnOlXg6hKw7Au4JqKt7k4Jq09lcVa_t8nIFlYJfvvaCfM-QRkrTkGxtzZmQaVetEHKPwZx9CAzA1k3spz1fQBWqv3A-JYVICQ0h1QsFCsHXFZJmOLtI7Rxs_QtwJxeKbV1AaxABC2NfwatsBTARqOt7vlbYrwvA56kMNPL8m1-iX752PnVzcqFsXmZb8LccP1FJaDhv5tT5i1axy-0fAxptn-1KjFknT2PFAti6Tt9FESQm_G0YvhXDrlND2Sl-78rA3xbUmYOf4Eb0Nj0ODi9-vLEpn8XoVGBaGyxDXpfU1MFZ78XzGlH71B5ZKbV-_7AT8Xfv29IYZhcguV3wpx0XNYWTCwHnAL2Byx1pyuO5rfBFXk3q7All0ZDR0MavIADJk9BhdKt4gJ6qq7owZybQzB-pFoUGP6BUzrTutRv4Vp3gVT3MTopgIYEEnOvKy8CK6911QTGgF8Eswo0WxjCnP1fsnJL0Tm2mUWmNY7GI4I15reC1xIyvgZz6s9h9_e2hFLoPNAfcBHyYV5UPvuQFXJ6ydXhbIjuY3vgvbJTKITBX_fuBrHM29b6TEMtfxMjizSJZ0CpuNvwgwB1YADIU1i8cj8JmSgN2XWyOu8oFVN1t2Bm8v1MQBYVO8UBxl9GpvVYPCNAp_C-D2LBrcyaukTWQNTy_ODq-le66DIl2xDxtR985KCUy5IdKGLKpO7hXV0kgrZUpc9yv7402H7H6seRrYt1iHHbXB5wlvEXx4PZ4D87Wpc1c--6uxUjJxPKQojyu_IwYOisWHdDRbYIOYlnhHgqM9CMl0hzla5EyjL27Pp-iH5zIjO1QwbjzZDhwOp_i1fr_JMkkg5xtkYGmwwl7FJRCrn0jfeUI3q4XwB8waqzd8kgGBWtOTGL90EaaLLSg1zedxFbS1YijnPK_1daYZNxV2ykX0l30-ebqXFwtPbGVjhQjAOOZRnOyF74JLl5fx3_4Rrkf-j2JePVK0p7r_mhMoo-GBAsBqRhJdvyQy36rbp6V_TFuFKhWFP1_VCZyGHVGsZj6pcw5h1M9GFmKNUap8z8FTzwIX1D0uXMIb3_VCi011hXsCF-YEMC6siRR7ssIT5XwAU8QFuvdOgI_hsM0klEJ6N8ejZqSwMgNXgPWj33APJ0IKS5kX0UdW5RSRy0ny-vK6aFMhOjKIL0Ful5VKoGQQY0d5--48s0QxMiuzJjFzcQ-nPNdhFpXlx4bmBVoJKtEPHUOsoaPLrjA5yDXDG4rQVuq7ocP4pAiBTE5AkzZbcgupSqY2un4SHP9SSOHCxxFhSs438P09IvnomBHtU0SAO4USjmwnuRx04JTsJ-IMdkektPqsaoNg2zfz_IcSLoVxd757NTTzfCoGKJWOikaA9ZyeAlPYJlz_KBJoucrMnJdOpLEQVo6tx1-BXL7ruekJKgNYKouFe3vZibcirDpH8_Kvt-ugPH0pulF1o07X1cNccfKf98zJ8dr6kO519pw7K1lUbNm2qWW_FkztjAPXykPPl7Mr4Coscy7jke-KtrxaiDZuNVN9gSwltTLQvPdWx9rdzyZKYnhQPshkVxjTBPre5A86ZXFKVD_2Id3S4lTmLaJOSFJnp0j-HEP3q_gAkO7vVIjQHZgY49yMoEaHiJYPDXAuXWizW6bp-gR5uO7huC3kdUGzk-mDDD6viMizxtsSW72rAx0XXrhYoIlo1OLMgqBFJNKJQu8eNqlv8BAglSd-TaFCdIXWJjdYUoaYzXaveNrbJvVYmHSm6eXvpr-TUjNwWdtweKNAtuCnJry2nVAbDqxSkpywgxn-4reR_ZMVEjUBljW9myk_BPNRflAW6IVQKj5LCa6xMZjZJZaWivxdT9GrUkbzafmzm9hgd-LMi9l_xBXKRZW98mbZg7s1Tn0bMd3s3e8DTxxMcQHHbqnCbvkaWGHjnGao-f2HqtAzJuL-J9DLHl9ZpIJOBdfHSz5PDwZAcO6qDqABDdb6RLOww6GJmBGZ_FM1HCM0j1Q4ABStU4a1_aE60VL-upthdpf2R1ue6vn5ditLgYDtKTmWsRhjZdLyOxd1hiqqKpQ0kZO9Qr4LFItIp3yKBNiEfe9X6CBrEvtkdAVuK5cyTSglEODO5Uvo1te6n2YWSC5kuG7vtPhxOAO0Rr6tSmT_nmqOhQX32PmO9xxz3C-jNK8Obvx39Ro2jRSSQGfrdpRUADWvxQXB4txWmwtFOmDFaw_rOTnaKNThy2oSUyuF3h20dyUZM-EaRok8fJXvOckdVUQSKihrgoKY0aDy4EYElY5j3uvhpVsSmH-HQH4WoRtwtRtnB4pxTruTJGyEz5mI3BvzCmfJQrQkq1qJhFctQCgw-o0sGHvWpgteRoYiulJANAWhzMNrDrW2tz1xX0q7VhoXvbkmfcVzsrKSN4PUYo3oS-W73HEB8e1hhNES5-BCISDG71vDMuLYsz_VfjoE4cmlXXvfM2ubI82ow9SIp82Np7r9zaqavo2OCY4PTUuuP7iRs6INyhr4U4W9LNYsDpdR_jGAUb1ZNpnKIb010wZOSD6rl31Xx7LZCSMAUnEI4VmfXT51RBVwIpOgbmYkBU2xpEaEKab3sCnnv4Fb6AnlUVPRHJkiH-VWIz94jflZzkIlICNGZ0YB2aIDn97ZAZVZmThzot4HxefkVORe2Zqe7ipaXpDkwpVFS-4MNF7AkBowqR4y_CeOtgElhUA2094QUuRJfWqVpLitEC1cWJLThgE-UfX-PGNzvtBnA6EqGNNlRVLyRAwTHCm831GGuJN86AF65FWS1-e7WkoMZEjHJR5VTI&cid=CAQSTgCa7L7duDfuU6ObicuEJHCPXecu0REooj4axhisoF8KOQA6tF9j7OglFb3yzhVireifW9xVxgTgLuUQ9xHR3luJNkuimggkbnGfV6FrcxgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0

msedge.exe

Remote address:

74.125.133.156:443

Request

GET /dbm/vast?dbm_c=AKAmf-BpwW6UreGvb29vJ23L6UrmnTpos-dr-68WWDNSYR85SMFk8magM1YmrLDh7Lro8wTUBGFq_08zSnyj4zDcKX4vysVQZw&cry=1&dbm_d=AKAmf-AWAwdxlAqhr5iKrUB0xv3c8gZwnsHWRh4G6igHFF5W-Mc4JFLBvRm6-dKutU7Pr23suSBDcQIh_e-wkNDuqG6sUTj0USqy2RC-ek6l50D1mQDIDCLlxqIOvtUixcTWZ4sAzCTSlVY4B78NKHykx_j-Trx358k4pkOlZhNIlT3c2RuIob-YfqwzlvuyBCXCCnmVim3x55HGi7XRDzSzQkQ8ZSb3oKG02U6rTXjfUArgbAaJ34YDCZAcwdJjXmHRD5XCSio8L2V8ciaxih2KuNQSLNDcsIhCiapLqmwc7zU3nzMgWC8dCj-GexESkbZ0-zhdaVmI4EzI7N-I45UCMuh2jmpLuFknsup9vPhhru6wkKjgNPH4ZmudC766EGWmkmlsibwh7JpqJAMwbPg9hb8HSag9_TgfBCzR746DZpInUm3F_qTIl-2E9JYzEttGa1Z_Y0fYBpyUn0CS5JiTQZlGge2HZS8BoVurlCmY5bzDvjMcZzmzUPVvASvuH4Gv_kLHWzNQXuYCp2--NfHaw4OCM9sMthPkwyHgqopBQ2Q1w462LWtv1XpHwhDghgv3hjd-ze3kv9UUVrRTGUtRz9iHt-fTv4BlxRb862siVn8js4nlCoFr2XjrR3NRSGIi7iLgDxsqfLoRpP7rNu75a7KRZZR7SH7RQsHSYXbnMjMV5XNwz7hbJHv46csZXUnKOWYvo-iJJnhS0nSWavGMy-3uAChr9RBUBkniElXF83RzDXowrvb-NWhFHrxy3kKocNfjI70g2CozdzxCNcp5T9nety6D1HfcPvpgFB_-3WCVhPavuNhytc5v83fwwCJN1NPkbTZryRmnKp9ZmDl4ahRJPNrXj1SLlvBNmRJLcx3WGGpw79qR2APiS_Pro7gxkfWpqAVxA76VsnM5Gjx7kbqc6_iMBSCTT_4cnVOGMyRnnRden3VMTH_0_kDi8vuHra_lanBcrN6wb8bangy967ejQ6tIT6g14WdugANeihxISXobLyE7c21N9SzEA0t8BxKt19qOJrjOutQpFkHziUKvQ3-lCPmQwb95iFCaGn9kl_IIICVuIkkaQZqE-JQOwXAGl3O-GSlRuZj_5paVvDga7Hv8Z0rO45BExs7L91KFga4f9po0wiXTYLRo_6Ca3hmb2gm6hurDWTwZlHM84-p2cgDjfLqaN_o6poojc2JUS6VfKlLxZVCE89ShAwvI9dkrW97lZja2wmbnzyOjkM6wPoWqML9EBnzPi4_84nUBG-XF5EAD-LAChI2oqCtPs3gYCQJrfr1qpb9-rO6ZTEaUtKRGS_k5CNJ6RLYDxiYyWwgS9EN-eL7Xyl7pBeQTvINpx7o3RHv5J6yc2TjyVa2-QPcQH3s5KqMnchUjlYHg1uQoY48F1QCLwkUK6o8fk2-UxLsvh74o1aHuoqms3y1PpKFg_6ENfHlQ_hTODheM4qlk2UaqZiWeQHEHfOhnMV3vlb2DpYXFhBrLuPVOOzc4e84BgKQx0mvhBWvzXWnt_VeTN9IzSLKCuf9-Rw1qKyIC-bW1d4iwSNJ3ovxSXPaU_1QB-sauL25tDjbR1dA8CNWwp1k6oKAKXggU2PHd4QBhuybluqelyoe_USvab-Ev1KiXn5U8LuVIXhtG7vhTSEYmjb66_Qj5fVVKCUZFHTgewSBC-PBJ_5DYP_5hQg5qD2Y7G0zo8rgJe40TuBtU_JusXgvZO7qwvk1_bj6lkauSvrZT2udzhRZjVJTf0O1Ya_NxQeuO6VCYMZIA0d-tXmAv1ZAl00LUjBpQLYrX-qnOlXg6hKw7Au4JqKt7k4Jq09lcVa_t8nIFlYJfvvaCfM-QRkrTkGxtzZmQaVetEHKPwZx9CAzA1k3spz1fQBWqv3A-JYVICQ0h1QsFCsHXFZJmOLtI7Rxs_QtwJxeKbV1AaxABC2NfwatsBTARqOt7vlbYrwvA56kMNPL8m1-iX752PnVzcqFsXmZb8LccP1FJaDhv5tT5i1axy-0fAxptn-1KjFknT2PFAti6Tt9FESQm_G0YvhXDrlND2Sl-78rA3xbUmYOf4Eb0Nj0ODi9-vLEpn8XoVGBaGyxDXpfU1MFZ78XzGlH71B5ZKbV-_7AT8Xfv29IYZhcguV3wpx0XNYWTCwHnAL2Byx1pyuO5rfBFXk3q7All0ZDR0MavIADJk9BhdKt4gJ6qq7owZybQzB-pFoUGP6BUzrTutRv4Vp3gVT3MTopgIYEEnOvKy8CK6911QTGgF8Eswo0WxjCnP1fsnJL0Tm2mUWmNY7GI4I15reC1xIyvgZz6s9h9_e2hFLoPNAfcBHyYV5UPvuQFXJ6ydXhbIjuY3vgvbJTKITBX_fuBrHM29b6TEMtfxMjizSJZ0CpuNvwgwB1YADIU1i8cj8JmSgN2XWyOu8oFVN1t2Bm8v1MQBYVO8UBxl9GpvVYPCNAp_C-D2LBrcyaukTWQNTy_ODq-le66DIl2xDxtR985KCUy5IdKGLKpO7hXV0kgrZUpc9yv7402H7H6seRrYt1iHHbXB5wlvEXx4PZ4D87Wpc1c--6uxUjJxPKQojyu_IwYOisWHdDRbYIOYlnhHgqM9CMl0hzla5EyjL27Pp-iH5zIjO1QwbjzZDhwOp_i1fr_JMkkg5xtkYGmwwl7FJRCrn0jfeUI3q4XwB8waqzd8kgGBWtOTGL90EaaLLSg1zedxFbS1YijnPK_1daYZNxV2ykX0l30-ebqXFwtPbGVjhQjAOOZRnOyF74JLl5fx3_4Rrkf-j2JePVK0p7r_mhMoo-GBAsBqRhJdvyQy36rbp6V_TFuFKhWFP1_VCZyGHVGsZj6pcw5h1M9GFmKNUap8z8FTzwIX1D0uXMIb3_VCi011hXsCF-YEMC6siRR7ssIT5XwAU8QFuvdOgI_hsM0klEJ6N8ejZqSwMgNXgPWj33APJ0IKS5kX0UdW5RSRy0ny-vK6aFMhOjKIL0Ful5VKoGQQY0d5--48s0QxMiuzJjFzcQ-nPNdhFpXlx4bmBVoJKtEPHUOsoaPLrjA5yDXDG4rQVuq7ocP4pAiBTE5AkzZbcgupSqY2un4SHP9SSOHCxxFhSs438P09IvnomBHtU0SAO4USjmwnuRx04JTsJ-IMdkektPqsaoNg2zfz_IcSLoVxd757NTTzfCoGKJWOikaA9ZyeAlPYJlz_KBJoucrMnJdOpLEQVo6tx1-BXL7ruekJKgNYKouFe3vZibcirDpH8_Kvt-ugPH0pulF1o07X1cNccfKf98zJ8dr6kO519pw7K1lUbNm2qWW_FkztjAPXykPPl7Mr4Coscy7jke-KtrxaiDZuNVN9gSwltTLQvPdWx9rdzyZKYnhQPshkVxjTBPre5A86ZXFKVD_2Id3S4lTmLaJOSFJnp0j-HEP3q_gAkO7vVIjQHZgY49yMoEaHiJYPDXAuXWizW6bp-gR5uO7huC3kdUGzk-mDDD6viMizxtsSW72rAx0XXrhYoIlo1OLMgqBFJNKJQu8eNqlv8BAglSd-TaFCdIXWJjdYUoaYzXaveNrbJvVYmHSm6eXvpr-TUjNwWdtweKNAtuCnJry2nVAbDqxSkpywgxn-4reR_ZMVEjUBljW9myk_BPNRflAW6IVQKj5LCa6xMZjZJZaWivxdT9GrUkbzafmzm9hgd-LMi9l_xBXKRZW98mbZg7s1Tn0bMd3s3e8DTxxMcQHHbqnCbvkaWGHjnGao-f2HqtAzJuL-J9DLHl9ZpIJOBdfHSz5PDwZAcO6qDqABDdb6RLOww6GJmBGZ_FM1HCM0j1Q4ABStU4a1_aE60VL-upthdpf2R1ue6vn5ditLgYDtKTmWsRhjZdLyOxd1hiqqKpQ0kZO9Qr4LFItIp3yKBNiEfe9X6CBrEvtkdAVuK5cyTSglEODO5Uvo1te6n2YWSC5kuG7vtPhxOAO0Rr6tSmT_nmqOhQX32PmO9xxz3C-jNK8Obvx39Ro2jRSSQGfrdpRUADWvxQXB4txWmwtFOmDFaw_rOTnaKNThy2oSUyuF3h20dyUZM-EaRok8fJXvOckdVUQSKihrgoKY0aDy4EYElY5j3uvhpVsSmH-HQH4WoRtwtRtnB4pxTruTJGyEz5mI3BvzCmfJQrQkq1qJhFctQCgw-o0sGHvWpgteRoYiulJANAWhzMNrDrW2tz1xX0q7VhoXvbkmfcVzsrKSN4PUYo3oS-W73HEB8e1hhNES5-BCISDG71vDMuLYsz_VfjoE4cmlXXvfM2ubI82ow9SIp82Np7r9zaqavo2OCY4PTUuuP7iRs6INyhr4U4W9LNYsDpdR_jGAUb1ZNpnKIb010wZOSD6rl31Xx7LZCSMAUnEI4VmfXT51RBVwIpOgbmYkBU2xpEaEKab3sCnnv4Fb6AnlUVPRHJkiH-VWIz94jflZzkIlICNGZ0YB2aIDn97ZAZVZmThzot4HxefkVORe2Zqe7ipaXpDkwpVFS-4MNF7AkBowqR4y_CeOtgElhUA2094QUuRJfWqVpLitEC1cWJLThgE-UfX-PGNzvtBnA6EqGNNlRVLyRAwTHCm831GGuJN86AF65FWS1-e7WkoMZEjHJR5VTI&cid=CAQSTgCa7L7duDfuU6ObicuEJHCPXecu0REooj4axhisoF8KOQA6tF9j7OglFb3yzhVireifW9xVxgTgLuUQ9xHR3luJNkuimggkbnGfV6FrcxgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0 HTTP/2.0
host: bid.g.doubleclick.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://lh3.googleusercontent.com/npCkuoHmnEkYwA_f4iuxGSXXCqvrJd85R6pQEGqL_-bYkitifzZ8_a79jan1M6JA5kumg3-OEKJcnJ0NEw1BW7Ve1KadSjoRFQ3WSfsZk8fl6kys_UkGRQ=h60

msedge.exe

Remote address:

142.250.200.33:443

Request

GET /npCkuoHmnEkYwA_f4iuxGSXXCqvrJd85R6pQEGqL_-bYkitifzZ8_a79jan1M6JA5kumg3-OEKJcnJ0NEw1BW7Ve1KadSjoRFQ3WSfsZk8fl6kys_UkGRQ=h60 HTTP/2.0
host: lh3.googleusercontent.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiYmNlcW55MXJ4STQ9Iiwia2V5IjoiakxQVzA5RzI3NDJjS1lDT0xSSzlrdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 2989
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:01 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3048
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/download/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoicHJiQ1c4b0hlS3M9Iiwia2V5IjoiK21nZGk3Q1k4RTNNZnBrUExCRi9OZz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1467
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:05 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1062
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoicUZXaHp0cVNYUU09Iiwia2V5IjoibTdmaTNTY200YXArTFNxdFhHY3RaUT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1501
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:10 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1063
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoielhrSmNQeXNtZkU9Iiwia2V5IjoiWXY2elN5RjJHV1R5ZGJVeUlidWc1Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3008
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:00 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3070
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSU11cjdTMGdZcTA9Iiwia2V5IjoiTjV4VnNMeWtKSDZYVmVqZTVMUTR6QT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1438
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:04 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 951
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoidUpRNE1FTERZVFU9Iiwia2V5IjoiZEVDeEc3NTdXRVUybmdVYmFyNUJndz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3340
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3514
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiaDdRb244K04vQ2s9Iiwia2V5IjoiNXdUdXBtOXl3Nzk0ZE9NanhUakJ6Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1409
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:09 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 923
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSUFUREI3bXJtNnM9Iiwia2V5IjoiUnBsVGFqSFp3V2g1SDErbC81M1VOdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3019
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:09 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3088
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiVk1WaksvZHkxajA9Iiwia2V5IjoibEdWTVp0Q3V4NEcwYW9zbHB3RExwdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3028
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:00 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3098
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiaFF3WWhZUE1QcU09Iiwia2V5IjoiMGdyWmJGc2VJdjJFazdrL3B3ZVFiQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1376
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:01 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 865
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiS0xYRnNPeThPY0U9Iiwia2V5IjoiN0tsYllhZ3Q0RmZwd2FhTXlWTEJOQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1580
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:04 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1057
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSXZlOGRHTkRHRkU9Iiwia2V5IjoieU55am1vSUtZSVgxSnRCYlFQSEFKQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 3331
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 3504
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoicXpqS08rMEZianc9Iiwia2V5IjoidDFIbk84SzNlYm41NnMvTHFhM3UvQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1404
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Sat, 04 Jan 2025 21:17:13 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 925
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
GET

https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20241212&st=env

msedge.exe

Remote address:

142.250.187.226:443

Request

GET /getconfig/sodar?sv=200&tid=gda&tv=r20241212&st=env HTTP/2.0
host: ep1.adtrafficquality.google
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://wearedevs.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/daca_images/simgad/9428238143277926780

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /daca_images/simgad/9428238143277926780 HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/qs_click_protection_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/client/qs_click_protection_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/one_click_handler_one_afma_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/client/one_click_handler_one_afma_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/abg_lite_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/abg_lite_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/window_focus_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/client/window_focus_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/elements/html/fullscreen_api_adapter_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/elements/html/fullscreen_api_adapter_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/elements/html/interstitial_ad_frame_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/elements/html/interstitial_ad_frame_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/load_preloaded_resource_fy2021.js

msedge.exe

Remote address:

142.250.180.1:443

Request

GET /pagead/js/r20241212/r20110914/client/load_preloaded_resource_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://github.com/wcrddn/wcrddn.github.io/raw/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /wcrddn/wcrddn.github.io/raw/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi HTTP/2.0
host: github.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=PBCay%2BnQ8o8B0oybazdhkLSyp8A7EjeAzsDjqbkQO5y8cePU0q9onn6ppC%2BbF8C8F%2BaaMupnw5OmG9rx7l9ME5aVY8lELAoWPBMUQOY8ft4CqkUrwMJW%2Be0thuDGByuGwBiZN660RU5uY6ZJpY%2B3xPuNBgNilCgZQ45jWYjKbgap9LiIftl8UICPXq%2BuA1Vg%2Fc2%2BJXeEcsNmbOOEkN2TvofWMlVq5VHxRrXcc70stADC7jcRvUqLOCiuvbOp3uZhAQLYaiImejC%2FXqenShGv%2BA%3D%3D--4T15B0hXi3DUlO8P--qBbW6KrCRUMaW%2BmwN1rOZg%3D%3D
cookie: _octo=GH1.1.1531087685.1736025259
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sat, 04 Jan 2025 21:17:04 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/wcrddn/wcrddn.github.io/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C5ED:31468:59C93A1:6F6EBEA:6779A550
DNS

imasdk.googleapis.com

msedge.exe

Remote address:

8.8.8.8:53

Request

imasdk.googleapis.com

IN A

Response

imasdk.googleapis.com

IN A

216.58.201.106
DNS

www.gstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.gstatic.com

IN A

Response

www.gstatic.com

IN A

142.250.187.227
DNS

www.gstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.gstatic.com

IN A
GET

https://imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.css

msedge.exe

Remote address:

216.58.201.106:443

Request

GET /formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.css HTTP/2.0
host: imasdk.googleapis.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.js

msedge.exe

Remote address:

216.58.201.106:443

Request

GET /formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.js HTTP/2.0
host: imasdk.googleapis.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

106.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

106.201.58.216.in-addr.arpa

IN PTR

Response

106.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f101e100net

106.201.58.216.in-addr.arpa

IN PTR

lhr48s48-in-f10�I

106.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f106�I
DNS

106.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

106.201.58.216.in-addr.arpa

IN PTR
DNS

227.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.187.250.142.in-addr.arpa

IN PTR

Response

227.187.250.142.in-addr.arpa

IN PTR

lhr25s34-in-f31e100net
DNS

227.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.187.250.142.in-addr.arpa

IN PTR
DNS

csi.gstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

csi.gstatic.com

IN A

Response

csi.gstatic.com

IN A

216.58.202.99
DNS

bid.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

bid.g.doubleclick.net

IN A

Response

bid.g.doubleclick.net

IN A

74.125.133.156

bid.g.doubleclick.net

IN A

108.177.15.154

bid.g.doubleclick.net

IN A

64.233.166.154

bid.g.doubleclick.net

IN A

108.177.15.155

bid.g.doubleclick.net

IN A

108.177.15.156

bid.g.doubleclick.net

IN A

74.125.71.155

bid.g.doubleclick.net

IN A

74.125.133.155

bid.g.doubleclick.net

IN A

74.125.133.154

bid.g.doubleclick.net

IN A

74.125.71.156

bid.g.doubleclick.net

IN A

64.233.166.155

bid.g.doubleclick.net

IN A

64.233.166.157

bid.g.doubleclick.net

IN A

74.125.133.157

bid.g.doubleclick.net

IN A

64.233.166.156

bid.g.doubleclick.net

IN A

74.125.71.157

bid.g.doubleclick.net

IN A

74.125.71.154

bid.g.doubleclick.net

IN A

108.177.15.157
DNS

servedby.flashtalking.com

msedge.exe

Remote address:

8.8.8.8:53

Request

servedby.flashtalking.com

IN A

Response

servedby.flashtalking.com

IN CNAME

servedby.flashtalking.com-v1.edgekey.net

servedby.flashtalking.com-v1.edgekey.net

IN CNAME

e4751.b.akamaiedge.net

e4751.b.akamaiedge.net

IN A

2.23.204.231
DNS

servedby.flashtalking.com

msedge.exe

Remote address:

8.8.8.8:53

Request

servedby.flashtalking.com

IN A
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=1~m5iopsm3&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&sei=44752538%2C420706098&nsei=44714510%2C44729911%2C44730425%2C44730426%2C72811302%2C75259405%2C75259407%2C75259408%2C75259414%2C95329494%2C318491509%2C447279544&bi=outstream

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=1~m5iopsm3&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&sei=44752538%2C420706098&nsei=44714510%2C44729911%2C44730425%2C44730426%2C72811302%2C75259405%2C75259407%2C75259408%2C75259414%2C95329494%2C318491509%2C447279544&bi=outstream HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=2~m5iopsmb&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&ulv=1&cll=0&met.4=arp_a_s.21o&vast_v=4.0&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&lima_p_ich=0&lima_p_icu=0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=2~m5iopsmb&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&ulv=1&cll=0&met.4=arp_a_s.21o&vast_v=4.0&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&lima_p_ich=0&lima_p_icu=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=1~m5iopsnm&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&sei=44752538%2C420706098&nsei=44714510%2C44729911%2C44730425%2C44730426%2C72811302%2C75259405%2C75259407%2C75259408%2C75259414%2C95329494%2C318491509%2C447279544&bi=outstream

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=1~m5iopsnm&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&sei=44752538%2C420706098&nsei=44714510%2C44729911%2C44730425%2C44730426%2C72811302%2C75259405%2C75259407%2C75259408%2C75259414%2C95329494%2C318491509%2C447279544&bi=outstream HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=3~m5iopsmz&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&vast_v=2.0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=3~m5iopsmz&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&vast_v=2.0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=2~m5iopsnu&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&ulv=1&cll=0&met.4=arp_a_s.235&vast_v=4.0&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&lima_p_ich=0&lima_p_icu=0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=2~m5iopsnu&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&ulv=1&cll=0&met.4=arp_a_s.235&vast_v=4.0&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&lima_p_ich=0&lima_p_icu=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=3~m5iopso2&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&vast_v=2.0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=3~m5iopso2&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&vast_v=2.0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=4~m5iopswo&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&vmfc=6&vhc=0&icc=2&icrs=2&icp=AdChoices&icdi=15x19&ccc=0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=4~m5iopswo&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&vmfc=6&vhc=0&icc=2&icrs=2&icp=AdChoices&icdi=15x19&ccc=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=5~m5iopu13&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&msm=1&aits=0&webm=0&vp9=0&vamt=video%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false&vms=1&bit=0&hcn=0&met.4=arp_a_e.3gb~atrd.3gk~videopreviewvisible.3gm&ua_e=1&umsem=0&ape=1

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=5~m5iopu13&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&msm=1&aits=0&webm=0&vp9=0&vamt=video%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false&vms=1&bit=0&hcn=0&met.4=arp_a_e.3gb~atrd.3gk~videopreviewvisible.3gm&ua_e=1&umsem=0&ape=1 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=4~m5iopswt&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&vmfc=6&vhc=0&icc=2&icrs=2&icp=AdChoices&icdi=15x19&ccc=0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=4~m5iopswt&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&vmfc=6&vhc=0&icc=2&icrs=2&icp=AdChoices&icdi=15x19&ccc=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=5~m5iopu1j&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&msm=1&aits=0&webm=0&vp9=0&vamt=video%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false&vms=1&bit=0&hcn=0&met.4=arp_a_e.3gc~atrd.3gn~videopreviewvisible.3go&ua_e=1&umsem=0&ape=1

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=5~m5iopu1j&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&msm=1&aits=0&webm=0&vp9=0&vamt=video%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false&vms=1&bit=0&hcn=0&met.4=arp_a_e.3gc~atrd.3gn~videopreviewvisible.3go&ua_e=1&umsem=0&ape=1 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=6~m5iopu1g&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0gmP1kjEvjX6UiW0Y1AfMgi%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=6~m5iopu1g&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0gmP1kjEvjX6UiW0Y1AfMgi%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=6~m5iopu1v&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0hw_r7Lf_uHHzcLWZPR9RFZ%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0

msedge.exe

Remote address:

216.58.202.99:443

Request

POST /csi?v=2&s=osv&dmc=8&puid=6~m5iopu1v&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0hw_r7Lf_uHHzcLWZPR9RFZ%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0 HTTP/2.0
host: csi.gstatic.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://googleads.g.doubleclick.net
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://googleads.g.doubleclick.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://servedby.flashtalking.com/imp/1/259407;9085895;208;xml;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&us_privacy=${US_PRIVACY}&ft_partnerimpid=ABAjH0gmP1kjEvjX6UiW0Y1AfMgi&bundle_id=&site_url=https://wearedevs.net/d/JJSploit&pub_id=1&sup_platform=1&pbMethods=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=[CACHEBUSTER]

msedge.exe

Remote address:

2.23.204.231:443

Request

GET /imp/1/259407;9085895;208;xml;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&us_privacy=${US_PRIVACY}&ft_partnerimpid=ABAjH0gmP1kjEvjX6UiW0Y1AfMgi&bundle_id=&site_url=https://wearedevs.net/d/JJSploit&pub_id=1&sup_platform=1&pbMethods=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=[CACHEBUSTER] HTTP/1.1
Host: servedby.flashtalking.com
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Origin: https://googleads.g.doubleclick.net
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://googleads.g.doubleclick.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: application/xml
Last-Modified: Mon, 23 Dec 2024 12:52:33 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
ETag: "233ddb5d805d44c1e89b7f4371f44f32"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://googleads.g.doubleclick.net
Server: prod-xre-app3.lhr11
Vary: Accept-Encoding
Content-Encoding: gzip
Expires: Sat, 04 Jan 2025 21:17:09 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Jan 2025 21:17:09 GMT
Content-Length: 2084
Connection: keep-alive
Set-Cookie: flashtalkingad1="GUID=6213E2A87C3F30";Comment="Flashtalking Cookie";Path=/;Domain=.flashtalking.com;Expires=Wed, 04-Feb-2026 07:17:09 GMT;SameSite=None;Secure
Strict-Transport-Security: max-age=86400
GET

https://servedby.flashtalking.com/imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=FD720FCF-70EF-8733-454A-3D2AB05859C3&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0gmP1kjEvjX6UiW0Y1AfMgi&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1830144605

msedge.exe

Remote address:

2.23.204.231:443

Request

GET /imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=FD720FCF-70EF-8733-454A-3D2AB05859C3&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0gmP1kjEvjX6UiW0Y1AfMgi&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1830144605 HTTP/1.1
Host: servedby.flashtalking.com
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://googleads.g.doubleclick.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Moved Temporarily

Content-Length: 0
Server: prod-xre-app2.lhr11
Access-Control-Allow-Origin: *
Location: https://cdn.flashtalking.com/xre/908/9085895/5075075/image/5075075.gif
Expires: Sat, 04 Jan 2025 21:17:10 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Jan 2025 21:17:10 GMT
Connection: keep-alive
Set-Cookie: flashtalkingad1="GUID=6213B3D4AA6AC3";Comment="Flashtalking Cookie";Path=/;Domain=.flashtalking.com;Expires=Wed, 04-Feb-2026 07:17:10 GMT;SameSite=None;Secure
Strict-Transport-Security: max-age=86400
GET

https://servedby.flashtalking.com/state/9085895;5075075;0;271;1D0186F2-F325-A971-E0DA-76202EAFDB3E/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1192816502

msedge.exe

Remote address:

2.23.204.231:443

Request

GET /state/9085895;5075075;0;271;1D0186F2-F325-A971-E0DA-76202EAFDB3E/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1192816502 HTTP/1.1
Host: servedby.flashtalking.com
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://googleads.g.doubleclick.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: image/gif
Content-Length: 42
Server: prod-xre-app30.lhr11
Allow-Fenced-Frame-Automatic-Beacons: true
Expires: Sat, 04 Jan 2025 21:17:11 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Jan 2025 21:17:11 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400
GET

https://servedby.flashtalking.com/imp/1/259407;9085895;208;xml;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&us_privacy=${US_PRIVACY}&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&bundle_id=&site_url=https://wearedevs.net/d/JJSploit&pub_id=1&sup_platform=1&pbMethods=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=[CACHEBUSTER]

msedge.exe

Remote address:

2.23.204.231:443

Request

GET /imp/1/259407;9085895;208;xml;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&us_privacy=${US_PRIVACY}&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&bundle_id=&site_url=https://wearedevs.net/d/JJSploit&pub_id=1&sup_platform=1&pbMethods=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=[CACHEBUSTER] HTTP/1.1
Host: servedby.flashtalking.com
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Origin: https://googleads.g.doubleclick.net
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://googleads.g.doubleclick.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: application/xml
Last-Modified: Mon, 23 Dec 2024 12:52:33 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
ETag: "233ddb5d805d44c1e89b7f4371f44f32"
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://googleads.g.doubleclick.net
Server: prod-xre-app15.lhr11
Vary: Accept-Encoding
Content-Encoding: gzip
Expires: Sat, 04 Jan 2025 21:17:09 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Jan 2025 21:17:09 GMT
Content-Length: 2086
Connection: keep-alive
Set-Cookie: flashtalkingad1="GUID=621387218C9BD1";Comment="Flashtalking Cookie";Path=/;Domain=.flashtalking.com;Expires=Wed, 04-Feb-2026 07:17:09 GMT;SameSite=None;Secure
Strict-Transport-Security: max-age=86400
GET

https://servedby.flashtalking.com/state/9085895;5075075;0;271;FD720FCF-70EF-8733-454A-3D2AB05859C3/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1830144605

msedge.exe

Remote address:

2.23.204.231:443

Request

GET /state/9085895;5075075;0;271;FD720FCF-70EF-8733-454A-3D2AB05859C3/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1830144605 HTTP/1.1
Host: servedby.flashtalking.com
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://googleads.g.doubleclick.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: image/gif
Content-Length: 42
Server: prod-xre-app22.lhr11
Allow-Fenced-Frame-Automatic-Beacons: true
Expires: Sat, 04 Jan 2025 21:17:10 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Jan 2025 21:17:10 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400
GET

https://servedby.flashtalking.com/imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=1D0186F2-F325-A971-E0DA-76202EAFDB3E&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1192816502

msedge.exe

Remote address:

2.23.204.231:443

Request

GET /imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=1D0186F2-F325-A971-E0DA-76202EAFDB3E&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1192816502 HTTP/1.1
Host: servedby.flashtalking.com
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://googleads.g.doubleclick.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Moved Temporarily

Content-Length: 0
Server: prod-xre-app15.lhr11
Access-Control-Allow-Origin: *
Location: https://cdn.flashtalking.com/xre/908/9085895/5075075/image/5075075.gif
Expires: Sat, 04 Jan 2025 21:17:11 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 04 Jan 2025 21:17:11 GMT
Connection: keep-alive
Set-Cookie: flashtalkingad1="GUID=6213B27AD7257B";Comment="Flashtalking Cookie";Path=/;Domain=.flashtalking.com;Expires=Wed, 04-Feb-2026 07:17:11 GMT;SameSite=None;Secure
Strict-Transport-Security: max-age=86400
DNS

99.202.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

99.202.58.216.in-addr.arpa

IN PTR

Response

99.202.58.216.in-addr.arpa

IN PTR

eze06s10-in-f31e100net

99.202.58.216.in-addr.arpa

IN PTR

gru06s10-in-f99�G

99.202.58.216.in-addr.arpa

IN PTR

gru10s13-in-f3�G
DNS

231.204.23.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

231.204.23.2.in-addr.arpa

IN PTR

Response

231.204.23.2.in-addr.arpa

IN PTR

a2-23-204-231deploystaticakamaitechnologiescom
DNS

secure.flashtalking.com

Remote address:

8.8.8.8:53

Request

secure.flashtalking.com

IN A

Response

secure.flashtalking.com

IN CNAME

secure.flashtalking.com.edgekey.net

secure.flashtalking.com.edgekey.net

IN CNAME

e1486.b.akamaiedge.net

e1486.b.akamaiedge.net

IN A

2.23.204.49
DNS

secure.flashtalking.com

Remote address:

8.8.8.8:53

Request

secure.flashtalking.com

IN A
DNS

cdn.flashtalking.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.flashtalking.com

IN A

Response

cdn.flashtalking.com

IN CNAME

cdn.flashtalking.com.edgekey.net

cdn.flashtalking.com.edgekey.net

IN CNAME

e1486.b.akamaiedge.net

e1486.b.akamaiedge.net

IN A

2.23.204.49
DNS

cdn.flashtalking.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.flashtalking.com

IN A
DNS

tpc.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tpc.googlesyndication.com

IN A

Response

tpc.googlesyndication.com

IN A

142.250.180.1
DNS

tpc.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tpc.googlesyndication.com

IN A
DNS

www.googletagservices.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.googletagservices.com

IN A

Response

www.googletagservices.com

IN A

142.250.200.34
DNS

www.googletagservices.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.googletagservices.com

IN A

Response

www.googletagservices.com

IN A

142.250.180.2
GET

https://www.googletagservices.com/activeview/js/current/rx_omid_video.js

msedge.exe

Remote address:

142.250.200.34:443

Request

GET /activeview/js/current/rx_omid_video.js HTTP/2.0
host: www.googletagservices.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

49.204.23.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

49.204.23.2.in-addr.arpa

IN PTR

Response

49.204.23.2.in-addr.arpa

IN PTR

a2-23-204-49deploystaticakamaitechnologiescom
DNS

ade.googlesyndication.com

Remote address:

8.8.8.8:53

Request

ade.googlesyndication.com

IN A

Response

ade.googlesyndication.com

IN A

142.250.187.194
DNS

ade.googlesyndication.com

Remote address:

8.8.8.8:53

Request

ade.googlesyndication.com

IN A
DNS

34.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

34.200.250.142.in-addr.arpa

IN PTR

Response

34.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f21e100net
DNS

d9.flashtalking.com

Remote address:

8.8.8.8:53

Request

d9.flashtalking.com

IN A

Response

d9.flashtalking.com

IN CNAME

ft.device9.com

ft.device9.com

IN CNAME

tag.device9.com

tag.device9.com

IN A

52.213.193.125

tag.device9.com

IN A

34.249.82.190
DNS

d9.flashtalking.com

Remote address:

8.8.8.8:53

Request

d9.flashtalking.com

IN A

Response

d9.flashtalking.com

IN CNAME

ft.device9.com

ft.device9.com

IN CNAME

tag.device9.com

tag.device9.com

IN A

34.249.82.190

tag.device9.com

IN A

52.213.193.125
DNS

ad-events.flashtalking.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ad-events.flashtalking.com

IN A

Response

ad-events.flashtalking.com

IN CNAME

ad-events-lhr11.g.flashtalking.com

ad-events-lhr11.g.flashtalking.com

IN CNAME

ad-interactions-prod-lb-1426714899.eu-west-2.elb.amazonaws.com

ad-interactions-prod-lb-1426714899.eu-west-2.elb.amazonaws.com

IN A

18.169.86.84

ad-interactions-prod-lb-1426714899.eu-west-2.elb.amazonaws.com

IN A

18.135.8.239
DNS

data.ad-score.com

msedge.exe

Remote address:

8.8.8.8:53

Request

data.ad-score.com

IN A

Response

data.ad-score.com

IN A

130.211.115.4
DNS

data.ad-score.com

msedge.exe

Remote address:

8.8.8.8:53

Request

data.ad-score.com

IN A

Response

data.ad-score.com

IN A

130.211.115.4
DNS

googleads4.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads4.g.doubleclick.net

IN A

Response

googleads4.g.doubleclick.net

IN A

142.250.178.2
DNS

googleads4.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads4.g.doubleclick.net

IN A
DNS

googleads4.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads4.g.doubleclick.net

IN A
DNS

googleads4.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads4.g.doubleclick.net

IN A
DNS

googleads4.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads4.g.doubleclick.net

IN A
DNS

84.86.169.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.86.169.18.in-addr.arpa

IN PTR

Response

84.86.169.18.in-addr.arpa

IN PTR

ec2-18-169-86-84 eu-west-2compute amazonawscom
DNS

84.86.169.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.86.169.18.in-addr.arpa

IN PTR
DNS

4.115.211.130.in-addr.arpa

Remote address:

8.8.8.8:53

Request

4.115.211.130.in-addr.arpa

IN PTR

Response

4.115.211.130.in-addr.arpa

IN PTR

4115211130bcgoogleusercontentcom
DNS

4.115.211.130.in-addr.arpa

Remote address:

8.8.8.8:53

Request

4.115.211.130.in-addr.arpa

IN PTR
DNS

125.193.213.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

125.193.213.52.in-addr.arpa

IN PTR

Response

125.193.213.52.in-addr.arpa

IN PTR

ec2-52-213-193-125 eu-west-1compute amazonawscom
DNS

125.193.213.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

125.193.213.52.in-addr.arpa

IN PTR
DNS

ep2.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep2.adtrafficquality.google

IN A

Response

ep2.adtrafficquality.google

IN A

216.58.201.97
DNS

ep2.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep2.adtrafficquality.google

IN A
GET

https://ep2.adtrafficquality.google/sodar/sodar2.js

msedge.exe

Remote address:

216.58.201.97:443

Request

GET /sodar/sodar2.js HTTP/2.0
host: ep2.adtrafficquality.google
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

ep2.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep2.adtrafficquality.google

IN A

Response

ep2.adtrafficquality.google

IN A

216.58.201.97
DNS

ep2.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep2.adtrafficquality.google

IN A

Response

ep2.adtrafficquality.google

IN A

216.58.201.97
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.187.196
DNS

15.39.65.18.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

15.39.65.18.in-addr.arpa

IN PTR

Response

15.39.65.18.in-addr.arpa

IN PTR

server-18-65-39-15ams1r cloudfrontnet
DNS

15.39.65.18.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

15.39.65.18.in-addr.arpa

IN PTR
GET

https://www.google.com/recaptcha/api2/aframe

msedge.exe

Remote address:

142.250.187.196:443

Request

GET /recaptcha/api2/aframe HTTP/2.0
host: www.google.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

97.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.201.58.216.in-addr.arpa

IN PTR

Response

97.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f971e100net

97.201.58.216.in-addr.arpa

IN PTR

lhr48s48-in-f1�H

97.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f1�H
DNS

97.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.201.58.216.in-addr.arpa

IN PTR
GET

https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241212&jk=4312251384164516&bg=!PT6lPnHNAAbtGp3CzRo7ADQBe5WfOK19Drao4fauKXkoVpWpjbvSGn6uwqD-GJh9_049ZTH6aOQSuBjpzSW_VV7oB6SiAgAAApBSAAAABGgBB34ANXx6SJROy3ldW4ERaJEdhVFwFTG8-3cjynO6vRQIX7qLMI2xlkZOThLvUEPY8Nom30tj2rsoCgC2rWuxkgg2DxTxtQTZIuzRjO_APLvOdPUtcWQc5MsxfLCYWnJhzCB-sLAMDomVYyFIOFXc1SIU2CN3xKLDho1jLMzDmCQ-BB8Y5lXMFlJrL-3tcsM9zbbYUVfyj7wQ_q-l5dY-OShpJhRtWvvIznp5FMBXxl43w3z0SdIbO6DzjkYrM5WH10vLcpksbpUpLycqap3xyNMPG7P2EYSzFKgcNK1h58CZ9psRF8y8a6aQKTqxFXyOoT6ZAoX3CKo84qsmPv2_epCrRAzLT0O7ThlVXVy9VKLsBtsJfl12aofL8ZtUVnc7DTtXElORM1kCEOGzA2XgAwHHcO8ENacS3_8bhp5ewNp-HONoY2YvwuZsVBCURPC_bwFqJbIDgwmU3GXs55RCUesgtBex_qeOt9hD3WJXbezGON16oZ9MW62LIopTD3lViCeWwSdH1uERWniOlcVSWVfToojrPY_p_vESeJY5KjuPo4kvkyziOkbnd2P2ksEJMHHVdO9MCgzuejqtD8GasCvwJJHhhYmlsKEtGVIdaChoLJGUwjDtfkfBpJ2Bx_N66XLxiss6dSAWUe8x2fY5Eycse2_SMtMQNZF_Kh3emJsz_IoFW406wGzhErfk0yaLC6ZYivjNujxAKsHVtJ_4QQQSPmGGyTBK9UXePOBdagMcpnLwo-vN7PEZH_8U_eSaVQW-WccWLWtoQqDHzeaX1FlY6hX_lhcECcLUP2EqIsnumIg8YXFzyGJQKtEdJyTjUEYFHBUVHyWXvr_9tcDiEP1sOT8raLiWO-ki9-CFKydLRXIpniPGrvut-9zyfJ_75fB5mtO_TmCEHnIh-a9xpGrNX2qLDWAduNnipM28vunQQ9Faj8TECWNDmzj7XVG9nsniyBRwwJMLWmNkDa1SvWIXpdj9SvVKg9zlRDpXFuSjFJYP4C-wX-4L__oaxvy9KDgQYmJEOX5NlfOqzg6OZxKmaQX-ykjsW6SvWFqT1ZZQd3QfKmlSuIupxzRW3ycQcADmNj2E_8rk8-RWK7es9c6sVnOf8RzhMkJRGs3kk19f4Op6_mnX6i8EGW7YJsl_vBffaIlgL1U34b3YXx-tnfCkGh1Bbf0guxE

msedge.exe

Remote address:

142.250.187.226:443

Request

GET /pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241212&jk=4312251384164516&bg=!PT6lPnHNAAbtGp3CzRo7ADQBe5WfOK19Drao4fauKXkoVpWpjbvSGn6uwqD-GJh9_049ZTH6aOQSuBjpzSW_VV7oB6SiAgAAApBSAAAABGgBB34ANXx6SJROy3ldW4ERaJEdhVFwFTG8-3cjynO6vRQIX7qLMI2xlkZOThLvUEPY8Nom30tj2rsoCgC2rWuxkgg2DxTxtQTZIuzRjO_APLvOdPUtcWQc5MsxfLCYWnJhzCB-sLAMDomVYyFIOFXc1SIU2CN3xKLDho1jLMzDmCQ-BB8Y5lXMFlJrL-3tcsM9zbbYUVfyj7wQ_q-l5dY-OShpJhRtWvvIznp5FMBXxl43w3z0SdIbO6DzjkYrM5WH10vLcpksbpUpLycqap3xyNMPG7P2EYSzFKgcNK1h58CZ9psRF8y8a6aQKTqxFXyOoT6ZAoX3CKo84qsmPv2_epCrRAzLT0O7ThlVXVy9VKLsBtsJfl12aofL8ZtUVnc7DTtXElORM1kCEOGzA2XgAwHHcO8ENacS3_8bhp5ewNp-HONoY2YvwuZsVBCURPC_bwFqJbIDgwmU3GXs55RCUesgtBex_qeOt9hD3WJXbezGON16oZ9MW62LIopTD3lViCeWwSdH1uERWniOlcVSWVfToojrPY_p_vESeJY5KjuPo4kvkyziOkbnd2P2ksEJMHHVdO9MCgzuejqtD8GasCvwJJHhhYmlsKEtGVIdaChoLJGUwjDtfkfBpJ2Bx_N66XLxiss6dSAWUe8x2fY5Eycse2_SMtMQNZF_Kh3emJsz_IoFW406wGzhErfk0yaLC6ZYivjNujxAKsHVtJ_4QQQSPmGGyTBK9UXePOBdagMcpnLwo-vN7PEZH_8U_eSaVQW-WccWLWtoQqDHzeaX1FlY6hX_lhcECcLUP2EqIsnumIg8YXFzyGJQKtEdJyTjUEYFHBUVHyWXvr_9tcDiEP1sOT8raLiWO-ki9-CFKydLRXIpniPGrvut-9zyfJ_75fB5mtO_TmCEHnIh-a9xpGrNX2qLDWAduNnipM28vunQQ9Faj8TECWNDmzj7XVG9nsniyBRwwJMLWmNkDa1SvWIXpdj9SvVKg9zlRDpXFuSjFJYP4C-wX-4L__oaxvy9KDgQYmJEOX5NlfOqzg6OZxKmaQX-ykjsW6SvWFqT1ZZQd3QfKmlSuIupxzRW3ycQcADmNj2E_8rk8-RWK7es9c6sVnOf8RzhMkJRGs3kk19f4Op6_mnX6i8EGW7YJsl_vBffaIlgL1U34b3YXx-tnfCkGh1Bbf0guxE HTTP/2.0
host: ep1.adtrafficquality.google
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://wearedevs.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

2.19.117.146

a1851.dscg2.akamai.net

IN A

2.19.117.143
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingcsp

msedge.exe

Remote address:

2.19.117.146:443

Request

OPTIONS /api/report?cat=bingcsp HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://www.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Length: 0
Server: Kestrel
Date: Sat, 04 Jan 2025 21:17:21 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.8f741302.1736025441.210a50a7
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
DNS

146.117.19.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.117.19.2.in-addr.arpa

IN PTR

Response

146.117.19.2.in-addr.arpa

IN PTR

a2-19-117-146deploystaticakamaitechnologiescom
DNS

146.117.19.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.117.19.2.in-addr.arpa

IN PTR
DNS

LETSQOOO-62766.portmap.host

windows 3543.exe

Remote address:

8.8.8.8:53

Request

LETSQOOO-62766.portmap.host

IN A

Response

20.26.156.215:443

https://github.com/TOP-executors/JJsploit/releases/download/v2.1.0/JJSPLOIT.V2.exe

tls, http2

msedge.exe

4.0kB
67.9kB
44
67

HTTP Request

GET https://github.com/TOP-executors/JJsploit/releases

HTTP Response

200

HTTP Request

GET https://github.com/TOP-executors/JJsploit/security/overall-count

HTTP Response

200

HTTP Request

GET https://github.com/manifest.json

HTTP Response

200

HTTP Request

GET https://github.com/TOP-executors/JJsploit/releases/expanded_assets/v2.1.0

HTTP Response

200

HTTP Request

GET https://github.com/TOP-executors/JJsploit/releases/download/v2.1.0/JJSPLOIT.V2.exe

HTTP Response

302
20.26.156.215:443

github.com

tls

msedge.exe

1.1kB
4.0kB
11
8
185.199.109.154:443

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

tls, http2

msedge.exe

36.4kB
922.7kB
517
738

HTTP Request

GET https://github.githubassets.com/assets/light-0cfd1fd8509e.css

HTTP Request

GET https://github.githubassets.com/assets/dark-d782f59290e2.css

HTTP Request

GET https://github.githubassets.com/assets/primer-primitives-953961b66e63.css

HTTP Request

GET https://github.githubassets.com/assets/primer-4430d3c2c150.css

HTTP Request

GET https://github.githubassets.com/assets/global-47b8b2ca21ae.css

HTTP Request

GET https://github.githubassets.com/assets/github-e72829f5538b.css

HTTP Request

GET https://github.githubassets.com/assets/repository-d031bcc14e1b.css

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

HTTP Request

GET https://github.githubassets.com/assets/primer-react.797c8ec006b327590422.module.css

HTTP Request

GET https://github.githubassets.com/assets/releases-d27bae89dc62.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-7c7cbcadd2c9.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-c551691a8183.js

HTTP Request

GET https://github.githubassets.com/assets/environment-7b93e0f0c8ff.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js

HTTP Request

GET https://github.githubassets.com/assets/github-elements-f991cfab5105.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-68317a5dae9a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js

HTTP Request

GET https://github.githubassets.com/assets/behaviors-a6abce982f3f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-global-cfcd9f4f0f23.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js

HTTP Request

GET https://github.githubassets.com/assets/repositories-f3093651fb0e.js

HTTP Request

GET https://github.githubassets.com/assets/primer-react-753dc87b1e29.js

HTTP Request

GET https://github.githubassets.com/assets/react-core-accb67f1350f.js

HTTP Request

GET https://github.githubassets.com/assets/react-lib-2131e17288a8.js

HTTP Request

GET https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu-51601778bd8d.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-df3b47d86af0.js

HTTP Request

GET https://github.githubassets.com/assets/keyboard-shortcuts-dialog-958cae8ecd6c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js

HTTP Request

GET https://github.githubassets.com/assets/sessions-5d6426bbf16a.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_paths_index_ts-4e4d706da555.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

HTTP Response

200
185.199.109.133:443

https://raw.githubusercontent.com/wcrddn/wcrddn.github.io/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi

tls, http2

msedge.exe

157.9kB
6.9MB
3059
4973

HTTP Request

GET https://avatars.githubusercontent.com/u/186148682?s=40&v=4

HTTP Response

200

HTTP Request

GET https://objects.githubusercontent.com/github-production-release-asset-2e65be/877772159/a8b6bd16-5f97-4a30-8808-65c761396f62?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20250104%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250104T211442Z&X-Amz-Expires=300&X-Amz-Signature=840c7291c90a716de7c926c5ed30d27b8326cdac4e1684864feb10157d394513&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DJJSPLOIT.V2.exe&response-content-type=application%2Foctet-stream

HTTP Response

200

HTTP Request

GET https://raw.githubusercontent.com/wcrddn/wcrddn.github.io/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi

HTTP Response

200
185.199.109.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.109.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.109.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.109.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.109.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.109.154:443

https://github.githubassets.com/assets/structured-issues-eb321c77cee9.js

tls, http2

msedge.exe

4.6kB
59.1kB
46
58

HTTP Request

GET https://github.githubassets.com/favicons/favicon.svg

HTTP Request

GET https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/favicons/favicon.png

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_hotkey_dist_index_js-524e40420665.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_remote-form_dist_-8c3668-4ebea233dc11.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_form-utils_form-utils_ts-ui_packages_input-navigation-behavior_input-navigation-b-a97423-0ee33bdc7197.js

HTTP Request

GET https://github.githubassets.com/assets/issues-49a49680995d.js

HTTP Request

GET https://github.githubassets.com/assets/structured-issues-eb321c77cee9.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
140.82.113.22:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

19.2kB
11.4kB
49
45

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Response

204
140.82.113.22:443

collector.github.com

tls

msedge.exe

885 B
4.3kB
8
5
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

3.6kB
7.9kB
24
27

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

tls, http

msedge.exe

11.5kB
14.6kB
30
21

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

11.0kB
14.1kB
29
22

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/actions

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/downloadcomplete/1

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
20.26.156.215:443

https://github.com/TOP-executors/JJsploit/archive/refs/tags/v2.1.0.zip

tls, http2

msedge.exe

2.2kB
8.2kB
14
15

HTTP Request

GET https://github.com/TOP-executors/JJsploit/archive/refs/tags/v2.1.0.zip

HTTP Response

302
20.26.156.216:443

https://codeload.github.com/TOP-executors/JJsploit/zip/refs/tags/v2.1.0

tls, http2

msedge.exe

31.7kB
1.3MB
595
930

HTTP Request

GET https://codeload.github.com/TOP-executors/JJsploit/zip/refs/tags/v2.1.0

HTTP Response

200
192.168.50.1:4782

windows 3543.exe

260 B
5
10.0.0.113:4782

windows 3543.exe

260 B
5
20.26.156.215:443

https://github.com/TOP-executors/JJsploit/issues

tls, http2

msedge.exe

2.7kB
19.7kB
25
24

HTTP Request

GET https://github.com/TOP-executors/JJsploit/issues

HTTP Response

200
92.123.128.170:443

www.bing.com

tls, http2

msedge.exe

2.6kB
1.3kB
15
10
92.123.128.170:443

www.bing.com

tls, http2

msedge.exe

1.3kB
946 B
12
8
20.26.156.210:443

api.github.com

tls

msedge.exe

931 B
4.5kB
9
6
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

3.5kB
6.7kB
20
21

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Response

200
92.123.128.170:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

196.0kB
566.1kB
832
732

HTTP Request

GET https://www.bing.com/qbox?query=jjs&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=69ee5fb6d2bc4878a167ab6dc1bec5f1&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=jjsp&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=8935b2ef2cc94c8c8662257f96566a23&oit=1&cp=4&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=jjspl&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=3a80e0248bf9464590884769a90aec07&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=jjsplo&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=79fa9d3ee1234a5a91db9a5a3c816730&oit=1&cp=6&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=jjsploi&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=288f7c365db546e393fb2a94aa90cc3a&oit=1&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=jjsploit&language=en-US&pt=EdgBox&cvid=793554baa9764daead1bf307feeb56e1&ig=f70efc3ae90f49c1b7773744d570ae6b&oit=1&cp=8&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:217,%22SE%22:-1,%22TC%22:-1,%22H%22:385,%22BP%22:3723,%22CT%22:3736,%22IL%22:14},%22ad%22:[43,194,1263,601,1263,2221,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250104

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Response

204

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=undefined

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025391221%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736025391221%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391223%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391243%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736025391245%2C%22Name%22%3A351%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391246%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391250%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736025391251%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736025391253%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=bd1932da496c4d479ab25e8b6d474ba5&oit=1&cp=1&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=we&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=b75f9f3f3ee14da58de0266b01e4eba2&oit=1&cp=2&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=wea&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=d4e2c48cb3f445368fec24e5e9147e7f&oit=1&cp=3&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=wear&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=16f88bd79348450ba759f362231783e0&oit=1&cp=4&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=weare&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=8bcd3f89bd294e8c836fb3b5cb36f770&oit=1&cp=5&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=wearee&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=12e2be7cd1ce4d8db72127917072e7a2&oit=1&cp=6&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=weareed&language=en-US&pt=EdgBox&cvid=dc3d274135fc49a4b7186d343f3676e2&ig=dcb015a623dd406fbb8fd3c033474ca1&oit=1&cp=7&pgcl=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736025392099%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%228%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=B8E2C05EC3CB49C58D85191E3D81D809&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/qbox?query=d&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=31c30eafc90b4b15b3eebe1c9c756407&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=de&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=260511c6214242588ea1ab9b899d1762&oit=1&cp=2&pgcl=4

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52516973&IID=SERP.5056&IG=B8E2C05EC3CB49C58D85191E3D81D809

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.5066&q=jjsploit&cvid=793554baa9764daead1bf307feeb56e1&aqs=edge..69i57j69i60l2j0j69i61j0l2.1575j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=d&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=6fb468b0c5404264ae051e1c2ce4efc9&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=6ac864d582e24604983bca72665ba2be&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=we&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=a62184c9e8964418a40aba5ee2ec4da1&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wea&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=b57750f1c2b84504a72271c835dd1a08&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=weare&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=50b657752f7f47f182473278d2046a6c&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=weared&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=099773d7b7cb4432bf8d2ddc6ac1cb76&oit=1&cp=6&pgcl=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736025394025%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226779a52b65394782a26b4820880b5e86%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025394044%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226779a52b65394782a26b4820880b5e86%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025394044%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025394515%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A7490%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/qbox?query=wearede&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=409f7c6286e84cc2a61dce1c8cb14e3b&oit=1&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/qbox?query=wearedev&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=ea42b684dce44f4ba341ce9dc42f961d&oit=1&cp=8&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wearedevs&language=en-US&pt=EdgBox&cvid=9b64875c15a84d588ab49aef8c3129ad&ig=bd6d4fd9bec94de8a18b68fc39202de6&oit=1&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A7492%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025394767%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/search?q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C2%3A2%2C3%3A3%2C4%3A4%2C5%3A5%2C6%3A6%2C8%3A7%2C7%3A8%2C9%3A9%2C10%3A10%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:17,%22BC%22:17,%22SE%22:-1,%22TC%22:-1,%22H%22:118,%22BP%22:145,%22CT%22:148,%22IL%22:5},%22ad%22:[-1,-1,1263,601,1263,3398,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025397358%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22300%22%2C%22Downlink%22%3A%221.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736025397358%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736025397368%2C%22Name%22%3A755%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397368%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397372%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397372%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=B8E2C05EC3CB49C58D85191E3D81D809&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=B8E2C05EC3CB49C58D85191E3D81D809&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/aes/c.gif?type=mv&tids=21,23,25,27&rg=d75ab62428394a76a1bd48b57213e253&reqver=1.0

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=B8E2C05EC3CB49C58D85191E3D81D809&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397212%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%5D

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=444283A3E116B05586E7444283A3E116B05586E7&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=5A344F017517530744B45A344F017517530744B4&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=380F7DDD526B77713ECE380F7DDD526B77713ECE&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=3C75A1255A7E0AB555C43C75A1255A7E0AB555C4&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=51C0E8A1226D8A27A2E051C0E8A1226D8A27A2E0&vdpp=VideoAnswerHover&&IG=B8E2C05EC3CB49C58D85191E3D81D809&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397374%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397375%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397382%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397385%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736025397386%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397389%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736025397389%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22MouseEventId%22%3A%22f480a208-d9a9-e036-5e07-d2eb713dbf2d%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1736025397552%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseEnter%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%229%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

204

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=7A17024427584A86AB1CA612FF66F67E&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=B8E2C05EC3CB49C58D85191E3D81D809

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

400

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025397562%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22MouseEventId%22%3A%22f480a208-d9a9-e036-5e07-d2eb713dbf2d%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1736025397798%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseLeave%22%7D%2C%7B%22Time%22%3A2432%2C%22time%22%3A2432%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736025398896%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A2434%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025398897%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A2434%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736025398897%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52516973&IID=SERP.5056&IG=7A17024427584A86AB1CA612FF66F67E

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=7A17024427584A86AB1CA612FF66F67E&IID=SERP.5066&q=wearedevs&cvid=9b64875c15a84d588ab49aef8c3129ad&aqs=edge.0.0l7.2561j0j4&FORM=ANAB01&PC=U531

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=22FC2F28EE7B6B5C1B4B3A42EF826A53&clientsid=undefined

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736025397758%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1736025399075%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1736025399295%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399315%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399316%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736025399124%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226779a535c4b9461baf3e6dff61071b8a%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025399138%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226779a535c4b9461baf3e6dff61071b8a%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736025399138%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736025399353%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399368%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1736025399476%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736025399567%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399629%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025399361%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=7A17024427584A86AB1CA612FF66F67E&ID=SERP,5758.1&url=javascript%3A%20void(0)

HTTP Response

204

HTTP Request

GET https://www.bing.com/notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225531.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736025403726,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Request

GET https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025399364%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225532.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736025404239,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399367%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736025403320%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736025403321%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025399608%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%2202e512c7-96f4-f514-a40b-d65afbcc2bdf%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025406667%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseEnter%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%2202e512c7-96f4-f514-a40b-d65afbcc2bdf%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025407074%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseLeave%22%7D%2C%7B%22MouseEventId%22%3A%2277d61c2d-1864-3702-85db-1b3e27547d27%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025407580%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseEnter%22%7D%2C%7B%22MouseEventId%22%3A%2277d61c2d-1864-3702-85db-1b3e27547d27%22%2C%22T%22%3A%22CI.RqnaAnswerCardMouseEvent%22%2C%22TS%22%3A1736025408845%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22Rqna.Answer.Card.MouseLeave%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=B8E2C05EC3CB49C58D85191E3D81D809&CID=28151858BA2767D9100B0D32BBDE6647&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736025407818%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%223974.000000016531%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736025407820%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%2220543.000000005122%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736025407820%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=d2517e3701c54b8497654814f6ada1f8&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=we&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=65882ec3fe644467866fd051cf810d11&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wea&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=c32177a0c5ca4501aaa72bc06ec5609f&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wear&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=875209891b1b4a919aaa0592c1da62d9&oit=1&cp=4&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=weare&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=ae1a0a2de31b4380a711927c1164401e&oit=1&cp=5&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=weared&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=08abb1fc4099410f8d3187d1934b16f0&oit=1&cp=6&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wearede&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=1b0dc159f9484806b0933c4d238cfc03&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wearedev&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=057b9fb6c18d42b78cd8e87767e81a2e&oit=1&cp=8&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wearedevs&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=0c8685394b2a41e386c822a66a2b75b6&oit=1&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wearedevs.&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=c2da448677384cd3bb5a7d91ad864164&oit=1&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wearedevs.n&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=50f9e66f8e98471aab84d4288c571182&oit=1&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wearedevs.ne&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=6f615519599d432dbe63c343e6f795a0&oit=3&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wearedevs.net&language=en-US&pt=EdgBox&cvid=120e45521ac2461a8169ed6a8a6c1630&ig=3bb0cf11768b4179a33ae4b3f34a6a3a&oit=3&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=22FC2F28EE7B6B5C1B4B3A42EF826A53&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416128%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416128%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736025416144%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736025416145%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416146%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7A17024427584A86AB1CA612FF66F67E&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736025416155%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22921.4999999967404%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736025416156%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%2219691.500000015367%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736025416156%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736025416208%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204
92.123.128.137:443

th.bing.com

tls

msedge.exe

2.1kB
17.9kB
29
20
92.123.128.132:443

https://r.bing.com/rp/XhuulIbo88eLoQSXNdexXtHhacY.svg

tls, http2

msedge.exe

11.7kB
83.9kB
99
103

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

HTTP Request

GET https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

HTTP Request

GET https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

HTTP Request

GET https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

HTTP Request

GET https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

HTTP Request

GET https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

HTTP Request

GET https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

HTTP Request

GET https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

HTTP Request

GET https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/Zj5QqsSQi83uQ7b8BpArQo3Jsn4.br.css

HTTP Request

GET https://r.bing.com/rp/RBARmUXLe8rKWg9gEFXYysn3nEg.br.css

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/TpPCFCXHYMX-2o17wlqq63GR6OE.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/zYRmeqAEd4Z0yDRz8nuL0syHMEI.svg

HTTP Request

GET https://r.bing.com/rp/0WKY0ny-iWR3yYCvsD6MQVMjVbw.svg

HTTP Request

GET https://r.bing.com/rp/9mM--t8iClqcK4e1MHzNovhHkVA.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/kxTm6_yMJSr-Au_oSrzcrpJm2mY.svg

HTTP Request

GET https://r.bing.com/rp/XhuulIbo88eLoQSXNdexXtHhacY.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200
92.123.128.132:443

https://r.bing.com/rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js

tls, http2

msedge.exe

46.4kB
536.5kB
464
439

HTTP Request

GET https://r.bing.com/rp/rkc4dXUuTwYj-GlQG8osxg1V2gE.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

HTTP Request

GET https://r.bing.com/rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js

HTTP Request

GET https://r.bing.com/rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js

HTTP Request

GET https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

HTTP Request

GET https://r.bing.com/rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

HTTP Request

GET https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

HTTP Request

GET https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

HTTP Request

GET https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

HTTP Request

GET https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

HTTP Request

GET https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

HTTP Request

GET https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

HTTP Request

GET https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

HTTP Request

GET https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

HTTP Request

GET https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

HTTP Request

GET https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

HTTP Request

GET https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

HTTP Request

GET https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

HTTP Request

GET https://r.bing.com/rp/IzifzVeZAFUPAOVXA0p1w_tvqEA.br.js

HTTP Request

GET https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

HTTP Request

GET https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

HTTP Request

GET https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

HTTP Request

GET https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Request

GET https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js

HTTP Request

GET https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

HTTP Request

GET https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

HTTP Request

GET https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

HTTP Request

GET https://r.bing.com/rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js

HTTP Request

GET https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

HTTP Request

GET https://r.bing.com/rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js

HTTP Request

GET https://r.bing.com/rp/P3JcGPiznvFTQHPH6lDPETmCcW0.br.js

HTTP Request

GET https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

HTTP Request

GET https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Request

GET https://r.bing.com/rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js

HTTP Request

GET https://r.bing.com/rp/d2AC6-r9l7SefnJ0q5_pqEqXQEg.br.js

HTTP Request

GET https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

HTTP Request

GET https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

HTTP Request

GET https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

HTTP Request

GET https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

HTTP Request

GET https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js

HTTP Request

GET https://r.bing.com/rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200
92.123.128.137:443

th.bing.com

tls, http2

msedge.exe

1.4kB
6.4kB
12
9
92.123.128.137:443

https://th.bing.com/th?id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

tls, http2

msedge.exe

21.5kB
142.0kB
152
171

HTTP Request

GET https://th.bing.com/th?id=ODLS.0166d99a-6c0a-4f97-82c0-5b2c4af3f24e&w=32&h=32&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=OADD2.9964499574036_1L44E6G8C38QPRTLFI&w=32&h=32&o=6&pid=21.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.159597f2-b9d6-4e36-bce3-033424a24c6d&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?q=Jjsploit+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Jjsploit+Roblox&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Jjsploit+Tutorial&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=How+to+Attach+Jjsploit+to+a+Game&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Jjsploit+V5&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.kJ-YpgnNHpN4HZ6Yh9h5BwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Wearedevs.com+Cheats&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wearedevs+Exploits&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Roblox+Wearedevs&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Wearedevs+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wearedevs+Infinite+Jump&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.7a379d4e-6578-494d-ba36-1d4225b5c673&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.QmCJi5oZrWo6OMFj3aXnJQHaD7&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.dd96b4fe-7589-4e0e-9017-7fae5672f1cf&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c9b13779-35d1-4087-b34c-0a1458d70df4&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3cca92db-1b56-46a6-88e1-b85c9dce00dc&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.0236e40b-025e-4b80-ac2a-edc58e94c1bc&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.3cca92db-1b56-46a6-88e1-b85c9dce00dc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.1f96cdd4-e1d6-47c3-bf4e-022246009d57&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.FMRLybFAqdbVcdaXUJpGkAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.i1rmS6IUPONImmc37VUPwAFRJY&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.LxEIiJVOjVUJUtWP_FJGOQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.LGihu_8U1PAfiGG9TfUz3gDdFo&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.adcNTdRKkZYcMfJIR6f-RQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.lo1v1N0f-Ayd5UGz15SP2AEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.q92iIH1l02s3cm3xxMANvgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.2XP_dBfJShok_3IfUX_dYAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200
92.123.128.137:443

th.bing.com

tls

msedge.exe

1.1kB
5.0kB
11
9
13.107.21.200:443

https://bing.com/th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2&qlt=100

tls, http2

msedge.exe

7.0kB
28.1kB
32
31

HTTP Request

GET https://bing.com/th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2

HTTP Response

200

HTTP Request

GET https://bing.com/th?asid=432345564846781741&id=OAUMA.B95451E2B1E133D4804A12410CD4E0C1_518484B1AC161B0C&pid=21.1&o=5&w=296&h=165&rs=2&qlt=100

HTTP Response

200
51.140.242.104:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

24.7kB
24.4kB
46
33

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
92.123.128.137:443

th.bing.com

tls, http2

msedge.exe

1.7kB
5.4kB
13
12
20.190.159.71:443

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=510012e6-e31c-486d-af8c-ccc35059ca1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227A17024427584A86AB1CA612FF66F67E%22%7d

tls, http2

msedge.exe

4.6kB
11.2kB
23
17

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=54be6630-e023-49d0-a264-afb2daae8133&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22B8E2C05EC3CB49C58D85191E3D81D809%22%7d

HTTP Response

200

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=510012e6-e31c-486d-af8c-ccc35059ca1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%227A17024427584A86AB1CA612FF66F67E%22%7d

HTTP Response

200
20.190.159.71:443

login.microsoftonline.com

tls, http2

msedge.exe

4.2kB
8.3kB
21
17
192.168.50.1:4782

windows 3543.exe

260 B
5
150.171.27.10:443

tse1.mm.bing.net

tls

msedge.exe

1.4kB
271 B
7
4
150.171.27.10:443

https://tse1.mm.bing.net/th?&id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

tls, http2

msedge.exe

3.9kB
24.7kB
31
29

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.2XP_dBfJShok_3IfUX_dYAHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.q92iIH1l02s3cm3xxMANvgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.4h996vcDk58YMDpebdyaKgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200

HTTP Response

200

HTTP Response

200
150.171.27.10:443

tse1.mm.bing.net

tls

msedge.exe

1.4kB
271 B
7
4
150.171.27.10:443

tse1.mm.bing.net

tls, http2

msedge.exe

2.1kB
7.1kB
11
12
204.79.197.237:443

www2.bing.com

tls, http2

msedge.exe

2.7kB
7.3kB
13
14
172.67.71.2:80

wearedevs.net

msedge.exe

236 B
172 B
5
4
172.67.71.2:80

http://wearedevs.net/

http

msedge.exe

675 B
1.2kB
5
3

HTTP Request

GET http://wearedevs.net/

HTTP Response

301
172.67.71.2:443

https://wearedevs.net/js/service-worker.js

tls, http2

msedge.exe

20.7kB
349.3kB
253
328

HTTP Request

GET https://wearedevs.net/

HTTP Response

301

HTTP Request

GET https://wearedevs.net/exploits

HTTP Response

200

HTTP Request

GET https://wearedevs.net/css/main.css?v=26

HTTP Request

GET https://wearedevs.net/css/themes/night.css?v=26&v2=2

HTTP Request

GET https://wearedevs.net/css/themes/christmas.css?v2=3

HTTP Request

GET https://wearedevs.net/css/navheader.css?v=26

HTTP Request

GET https://wearedevs.net/css/exploits.css?v=26&v2=7

HTTP Request

GET https://wearedevs.net/js/timestamp.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://wearedevs.net/images/bloxshade/logo-s.jpeg

HTTP Response

200

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/multiplerbx.png

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/autoclicker.jpeg

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/lagswitch-small.jpeg

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/swift-12060024.webp

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/solara-1209242.webp

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/JJSploit-v5.jpeg

HTTP Request

GET https://wearedevs.net/images/christmas-strip.png?V=1.0.0

HTTP Request

GET https://wearedevs.net/icons/windows.svg

HTTP Request

GET https://wearedevs.net/icons/download-gray.svg

HTTP Request

GET https://wearedevs.net/icons/christmastree.svg

HTTP Request

GET https://wearedevs.net/icons/info.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/krnl.jpeg

HTTP Response

200

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/DLL%20Injector.png

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/winrar.png

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/general-tool.jpeg

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/dllinjector.png

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/autoshutdown.png

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/cheatengine.png

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/notepad++.png

HTTP Request

GET https://cdn.wearedevs.net/images/thumbnails/cs.jpeg

HTTP Request

GET https://wearedevs.net/icons/android.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://wearedevs.net/favicon.ico

HTTP Response

200

HTTP Request

GET https://wearedevs.net/d/JJSploit

HTTP Response

200

HTTP Request

GET https://wearedevs.net/css/download.css?v=26&v2=5

HTTP Request

GET https://cdn.wearedevs.net/js/timestamp.js

HTTP Request

GET https://cdn.wearedevs.net/images/icons/youtube.png

HTTP Request

GET https://cdn.wearedevs.net/images/icons/twitter.png

HTTP Request

GET https://wearedevs.net/images/unc.png

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://wearedevs.net/js/service-worker.js

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

27.9kB
21.6kB
44
31

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

19.2kB
15.9kB
32
22

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
162.159.134.233:443

https://cdn.discordapp.com/icons/1226285947646378097/361860a035b4f15906f12252dbad7e56.webp

tls, http2

msedge.exe

2.0kB
15.4kB
18
22

HTTP Request

GET https://cdn.discordapp.com/icons/1258796097153929237/56eaef53fdb39fb957846be91aca4523.webp

HTTP Request

GET https://cdn.discordapp.com/icons/1226285947646378097/361860a035b4f15906f12252dbad7e56.webp

HTTP Response

200

HTTP Response

200
162.159.134.233:443

cdn.discordapp.com

tls

msedge.exe

897 B
2.5kB
7
5
216.239.34.36:443

https://region1.analytics.google.com/g/collect?v=2&tid=G-46VWDGRLXJ&gtm=45je4cc1v875665888za200&_p=1736025415138&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1095209109.1736025415&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1736025415&sct=1&seg=0&dl=https%3A%2F%2Fwearedevs.net%2Fexploits&dt=Roblox%20Exploits%20%26%20Hacks%20%26%20Cheats%20-%20WeAreDevs&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1650

tls, http2

msedge.exe

2.1kB
7.0kB
14
12

HTTP Request

POST https://region1.analytics.google.com/g/collect?v=2&tid=G-46VWDGRLXJ&gtm=45je4cc1v875665888za200&_p=1736025415138&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1095209109.1736025415&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1736025415&sct=1&seg=0&dl=https%3A%2F%2Fwearedevs.net%2Fexploits&dt=Roblox%20Exploits%20%26%20Hacks%20%26%20Cheats%20-%20WeAreDevs&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1650
142.250.187.194:443

https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;ecn1=1;etm1=0;eid1=210008;

tls, http2

msedge.exe

6.0kB
11.7kB
29
31

HTTP Request

GET https://googleads.g.doubleclick.net/pagead/html/r20241212/r20190131/zrt_lookup_fy2021.html

HTTP Request

GET https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;ecn1=1;etm1=0;eid1=11;

HTTP Request

GET https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D0%26sdk%3Do%26p%3D1,1,169,299%26tm%3D0%26tu%3D0%26tos%3D0,0,0,0,0%26mtos%3D0,0,0,0,0%26mcvt%3D0%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D0%26is%3D33554707%26i0%3D33554707%26ic%3D33556754%26cs%3D33556754%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D0%26dfvs%3D0%26dvpt%3D0%26qmt%3D0,0,0,0,0%26qas%3D0%26qnv%3D0%26qmv%3D0;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D0%26sdk%3Do%26p%3D1,1,169,299%26tm%3D0%26tu%3D0%26tos%3D0,0,0,0,0%26mtos%3D0,0,0,0,0%26mcvt%3D0%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D0%26is%3D33554707%26i0%3D33554707%26ic%3D33556754%26cs%3D33556754%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D0%26dfvs%3D0%26dvpt%3D0%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;dc_rfl=%5BURL_SIGNALS%5D;ecn1=1;etm1=0;eid1=210001;

HTTP Request

GET https://ade.googlesyndication.com/ddm/activity/dc_oe=ChMIurzO1_7cigMVvSUGAB1wBwx8EAAYACD-peNsQhMIkeHG1v7cigMVj2WkBB0_8zubSABQOljwLmCf278MaIuFycQBggGbAQoTCJHhxtb-3IoDFY9lpAQdP_M7mxITCNHxzdf-3IoDFQVkHQkd5CoAgyIaCK7vltNREPrE26sCqAKm8-rgArACvMny5QMomAVAAeABAYACAZgCAaACwabx-I4TqAIGwAJ5yALn4O4r0gImGAAiEwiR4cbW_tyKAxWPZaQEHT_zO5soATABOMGm8fiOE0ABSAGaAwS117BT0AMD;dc_eps=AHas8cB0N2_9HaJzXuj6B0ktYg3kP7ryX0t6w3AA82Mlz5kU5cXp3cHzEl0vJ4rX8Wmq4mnQSUNEL1Hg8HSFpglWeYRk8ViNi1ktNdBq;met=1;acvw=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385;gv=v%3D20241205%26bin%3D30%26cb%3Drxov%26e%3D6%26sdk%3Do%26p%3D1,1,169,299%26tm%3D385%26tu%3D0%26tos%3D385,0,0,0,0%26mtos%3D385,385,385,385,385%26mcvt%3D385%26ps%3D0,0%26scs%3D0,0%26bs%3D0,0%26a%3D0%26at%3D0%26dat%3D0%26amtos%3D0,0,0,0,0%26as%3D0%26vpt%3D385%26is%3D33554707%26i0%3D33554707%26ic%3D1024%26cs%3D33557778%26gmm%3D4%26nmt%3D0%26tcm%3D0%26dur%3D6000%26c%3D1%26mc%3D1%26nc%3D1%26lte%3D1%26mv%3D0%26nv%3D0%26avms%3Domid%26psm%3D1%26ces%3D200104%26ssb%3D0,0,0,0,0,0,0,0,0,0,0%26omidp%3DGoogle2%26omidpv%3D0.0.0%26omidor%3D0%26omids%3Dh%26omidam%3Dl%26omidct%3Dvideo%26omidia%3D0%26nopd%3D0%26dvs%3D385%26dfvs%3D385%26dvpt%3D385%26atos%3D0,0,0,0,0%26avt%3D0%26davs%3D0%26dafvs%3D0%26dav%3D0%26ss%3D0;ecn1=1;etm1=0;eid1=210008;
74.125.133.156:443

stats.g.doubleclick.net

tls, http2

msedge.exe

984 B
998 B
7
4
172.217.169.3:443

www.google.co.uk

tls

msedge.exe

977 B
464 B
7
6
142.250.178.14:443

https://fundingchoicesmessages.google.com/i/ca-pub-9142841210062390?href=https%3A%2F%2Fwearedevs.net%2Fexploits&ers=2

tls, http2

msedge.exe

4.7kB
78.9kB
51
61

HTTP Request

GET https://fundingchoicesmessages.google.com/i/ca-pub-9142841210062390?href=https%3A%2F%2Fwearedevs.net%2Fexploits&ers=2
172.217.169.3:443

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178&tag_exp=101925629~102067555~102067808~102081485~102198178&z=1815071803

tls, http2

msedge.exe

3.3kB
5.9kB
16
15

HTTP Request

GET https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178&tag_exp=101925629~102067555~102067808~102081485~102198178&z=1815071803
74.125.133.156:443

https://bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-BpwW6UreGvb29vJ23L6UrmnTpos-dr-68WWDNSYR85SMFk8magM1YmrLDh7Lro8wTUBGFq_08zSnyj4zDcKX4vysVQZw&cry=1&dbm_d=AKAmf-AWAwdxlAqhr5iKrUB0xv3c8gZwnsHWRh4G6igHFF5W-Mc4JFLBvRm6-dKutU7Pr23suSBDcQIh_e-wkNDuqG6sUTj0USqy2RC-ek6l50D1mQDIDCLlxqIOvtUixcTWZ4sAzCTSlVY4B78NKHykx_j-Trx358k4pkOlZhNIlT3c2RuIob-YfqwzlvuyBCXCCnmVim3x55HGi7XRDzSzQkQ8ZSb3oKG02U6rTXjfUArgbAaJ34YDCZAcwdJjXmHRD5XCSio8L2V8ciaxih2KuNQSLNDcsIhCiapLqmwc7zU3nzMgWC8dCj-GexESkbZ0-zhdaVmI4EzI7N-I45UCMuh2jmpLuFknsup9vPhhru6wkKjgNPH4ZmudC766EGWmkmlsibwh7JpqJAMwbPg9hb8HSag9_TgfBCzR746DZpInUm3F_qTIl-2E9JYzEttGa1Z_Y0fYBpyUn0CS5JiTQZlGge2HZS8BoVurlCmY5bzDvjMcZzmzUPVvASvuH4Gv_kLHWzNQXuYCp2--NfHaw4OCM9sMthPkwyHgqopBQ2Q1w462LWtv1XpHwhDghgv3hjd-ze3kv9UUVrRTGUtRz9iHt-fTv4BlxRb862siVn8js4nlCoFr2XjrR3NRSGIi7iLgDxsqfLoRpP7rNu75a7KRZZR7SH7RQsHSYXbnMjMV5XNwz7hbJHv46csZXUnKOWYvo-iJJnhS0nSWavGMy-3uAChr9RBUBkniElXF83RzDXowrvb-NWhFHrxy3kKocNfjI70g2CozdzxCNcp5T9nety6D1HfcPvpgFB_-3WCVhPavuNhytc5v83fwwCJN1NPkbTZryRmnKp9ZmDl4ahRJPNrXj1SLlvBNmRJLcx3WGGpw79qR2APiS_Pro7gxkfWpqAVxA76VsnM5Gjx7kbqc6_iMBSCTT_4cnVOGMyRnnRden3VMTH_0_kDi8vuHra_lanBcrN6wb8bangy967ejQ6tIT6g14WdugANeihxISXobLyE7c21N9SzEA0t8BxKt19qOJrjOutQpFkHziUKvQ3-lCPmQwb95iFCaGn9kl_IIICVuIkkaQZqE-JQOwXAGl3O-GSlRuZj_5paVvDga7Hv8Z0rO45BExs7L91KFga4f9po0wiXTYLRo_6Ca3hmb2gm6hurDWTwZlHM84-p2cgDjfLqaN_o6poojc2JUS6VfKlLxZVCE89ShAwvI9dkrW97lZja2wmbnzyOjkM6wPoWqML9EBnzPi4_84nUBG-XF5EAD-LAChI2oqCtPs3gYCQJrfr1qpb9-rO6ZTEaUtKRGS_k5CNJ6RLYDxiYyWwgS9EN-eL7Xyl7pBeQTvINpx7o3RHv5J6yc2TjyVa2-QPcQH3s5KqMnchUjlYHg1uQoY48F1QCLwkUK6o8fk2-UxLsvh74o1aHuoqms3y1PpKFg_6ENfHlQ_hTODheM4qlk2UaqZiWeQHEHfOhnMV3vlb2DpYXFhBrLuPVOOzc4e84BgKQx0mvhBWvzXWnt_VeTN9IzSLKCuf9-Rw1qKyIC-bW1d4iwSNJ3ovxSXPaU_1QB-sauL25tDjbR1dA8CNWwp1k6oKAKXggU2PHd4QBhuybluqelyoe_USvab-Ev1KiXn5U8LuVIXhtG7vhTSEYmjb66_Qj5fVVKCUZFHTgewSBC-PBJ_5DYP_5hQg5qD2Y7G0zo8rgJe40TuBtU_JusXgvZO7qwvk1_bj6lkauSvrZT2udzhRZjVJTf0O1Ya_NxQeuO6VCYMZIA0d-tXmAv1ZAl00LUjBpQLYrX-qnOlXg6hKw7Au4JqKt7k4Jq09lcVa_t8nIFlYJfvvaCfM-QRkrTkGxtzZmQaVetEHKPwZx9CAzA1k3spz1fQBWqv3A-JYVICQ0h1QsFCsHXFZJmOLtI7Rxs_QtwJxeKbV1AaxABC2NfwatsBTARqOt7vlbYrwvA56kMNPL8m1-iX752PnVzcqFsXmZb8LccP1FJaDhv5tT5i1axy-0fAxptn-1KjFknT2PFAti6Tt9FESQm_G0YvhXDrlND2Sl-78rA3xbUmYOf4Eb0Nj0ODi9-vLEpn8XoVGBaGyxDXpfU1MFZ78XzGlH71B5ZKbV-_7AT8Xfv29IYZhcguV3wpx0XNYWTCwHnAL2Byx1pyuO5rfBFXk3q7All0ZDR0MavIADJk9BhdKt4gJ6qq7owZybQzB-pFoUGP6BUzrTutRv4Vp3gVT3MTopgIYEEnOvKy8CK6911QTGgF8Eswo0WxjCnP1fsnJL0Tm2mUWmNY7GI4I15reC1xIyvgZz6s9h9_e2hFLoPNAfcBHyYV5UPvuQFXJ6ydXhbIjuY3vgvbJTKITBX_fuBrHM29b6TEMtfxMjizSJZ0CpuNvwgwB1YADIU1i8cj8JmSgN2XWyOu8oFVN1t2Bm8v1MQBYVO8UBxl9GpvVYPCNAp_C-D2LBrcyaukTWQNTy_ODq-le66DIl2xDxtR985KCUy5IdKGLKpO7hXV0kgrZUpc9yv7402H7H6seRrYt1iHHbXB5wlvEXx4PZ4D87Wpc1c--6uxUjJxPKQojyu_IwYOisWHdDRbYIOYlnhHgqM9CMl0hzla5EyjL27Pp-iH5zIjO1QwbjzZDhwOp_i1fr_JMkkg5xtkYGmwwl7FJRCrn0jfeUI3q4XwB8waqzd8kgGBWtOTGL90EaaLLSg1zedxFbS1YijnPK_1daYZNxV2ykX0l30-ebqXFwtPbGVjhQjAOOZRnOyF74JLl5fx3_4Rrkf-j2JePVK0p7r_mhMoo-GBAsBqRhJdvyQy36rbp6V_TFuFKhWFP1_VCZyGHVGsZj6pcw5h1M9GFmKNUap8z8FTzwIX1D0uXMIb3_VCi011hXsCF-YEMC6siRR7ssIT5XwAU8QFuvdOgI_hsM0klEJ6N8ejZqSwMgNXgPWj33APJ0IKS5kX0UdW5RSRy0ny-vK6aFMhOjKIL0Ful5VKoGQQY0d5--48s0QxMiuzJjFzcQ-nPNdhFpXlx4bmBVoJKtEPHUOsoaPLrjA5yDXDG4rQVuq7ocP4pAiBTE5AkzZbcgupSqY2un4SHP9SSOHCxxFhSs438P09IvnomBHtU0SAO4USjmwnuRx04JTsJ-IMdkektPqsaoNg2zfz_IcSLoVxd757NTTzfCoGKJWOikaA9ZyeAlPYJlz_KBJoucrMnJdOpLEQVo6tx1-BXL7ruekJKgNYKouFe3vZibcirDpH8_Kvt-ugPH0pulF1o07X1cNccfKf98zJ8dr6kO519pw7K1lUbNm2qWW_FkztjAPXykPPl7Mr4Coscy7jke-KtrxaiDZuNVN9gSwltTLQvPdWx9rdzyZKYnhQPshkVxjTBPre5A86ZXFKVD_2Id3S4lTmLaJOSFJnp0j-HEP3q_gAkO7vVIjQHZgY49yMoEaHiJYPDXAuXWizW6bp-gR5uO7huC3kdUGzk-mDDD6viMizxtsSW72rAx0XXrhYoIlo1OLMgqBFJNKJQu8eNqlv8BAglSd-TaFCdIXWJjdYUoaYzXaveNrbJvVYmHSm6eXvpr-TUjNwWdtweKNAtuCnJry2nVAbDqxSkpywgxn-4reR_ZMVEjUBljW9myk_BPNRflAW6IVQKj5LCa6xMZjZJZaWivxdT9GrUkbzafmzm9hgd-LMi9l_xBXKRZW98mbZg7s1Tn0bMd3s3e8DTxxMcQHHbqnCbvkaWGHjnGao-f2HqtAzJuL-J9DLHl9ZpIJOBdfHSz5PDwZAcO6qDqABDdb6RLOww6GJmBGZ_FM1HCM0j1Q4ABStU4a1_aE60VL-upthdpf2R1ue6vn5ditLgYDtKTmWsRhjZdLyOxd1hiqqKpQ0kZO9Qr4LFItIp3yKBNiEfe9X6CBrEvtkdAVuK5cyTSglEODO5Uvo1te6n2YWSC5kuG7vtPhxOAO0Rr6tSmT_nmqOhQX32PmO9xxz3C-jNK8Obvx39Ro2jRSSQGfrdpRUADWvxQXB4txWmwtFOmDFaw_rOTnaKNThy2oSUyuF3h20dyUZM-EaRok8fJXvOckdVUQSKihrgoKY0aDy4EYElY5j3uvhpVsSmH-HQH4WoRtwtRtnB4pxTruTJGyEz5mI3BvzCmfJQrQkq1qJhFctQCgw-o0sGHvWpgteRoYiulJANAWhzMNrDrW2tz1xX0q7VhoXvbkmfcVzsrKSN4PUYo3oS-W73HEB8e1hhNES5-BCISDG71vDMuLYsz_VfjoE4cmlXXvfM2ubI82ow9SIp82Np7r9zaqavo2OCY4PTUuuP7iRs6INyhr4U4W9LNYsDpdR_jGAUb1ZNpnKIb010wZOSD6rl31Xx7LZCSMAUnEI4VmfXT51RBVwIpOgbmYkBU2xpEaEKab3sCnnv4Fb6AnlUVPRHJkiH-VWIz94jflZzkIlICNGZ0YB2aIDn97ZAZVZmThzot4HxefkVORe2Zqe7ipaXpDkwpVFS-4MNF7AkBowqR4y_CeOtgElhUA2094QUuRJfWqVpLitEC1cWJLThgE-UfX-PGNzvtBnA6EqGNNlRVLyRAwTHCm831GGuJN86AF65FWS1-e7WkoMZEjHJR5VTI&cid=CAQSTgCa7L7duDfuU6ObicuEJHCPXecu0REooj4axhisoF8KOQA6tF9j7OglFb3yzhVireifW9xVxgTgLuUQ9xHR3luJNkuimggkbnGfV6FrcxgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0

tls, http2

msedge.exe

11.5kB
48.5kB
45
49

HTTP Request

POST https://stats.g.doubleclick.net/g/collect?v=2&tid=G-46VWDGRLXJ&cid=1095209109.1736025415&gtm=45je4cc1v875665888za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=101925629~102067555~102067808~102081485~102198178

HTTP Request

GET https://bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-D2pDpZQ2uiyM_onr9OVOT3lWOe_iNWroFGHhynwfLCKBTSAXDKKmLAm-6odrl7RjyXhXrNwg5wbNfZe-14opignZW2xw&cry=1&dbm_d=AKAmf-C7izTduFG_8MhrrBEHoe80YugmjUn4XxsAODI6rW9bhYGI7d8dJ4szvHDHOwY0k2J6i6zFQ_rWsRcJLa1Sp69ciKpnAuNiB2iwuu_pSzpSDn7phNXDXgg6Hr-VVhHBUIJatLmJqsaOxeBJTg5sPa_roGhM5-ECaM-7IDZilDFpMGaXerwFWjwE4_hGfgb-4UIrCSvzDqtEpRPg_zm0Pds3j_8KH_pMpYtzSoIJj-U87JXUUS_M99anvaFznI_Jq8Ivij2OevgD-wYyytjnXkehmyHI2plq_G-AukwuvKdzhs5VsLZUC-BtC8Re7Qgw_VVqtWvBy7avNHYs8cYryTubCb4EnKsI1Z8EfA99AC1lCktwFDj6OEGtNvZAdkB2gvr6KEdc1e-dQlBI0J-FsjZrhIfs87rB-7l3BcQJNG6fS79oa-Iy6m-MkbQQQM9eAif7XSQXT_5n5U1BwX3sD4RsAuoJQ40Hq_fGutA2fI8o7Xe-5l9oqG0YbDCahg_rQVQcrB4nhOU3e524gx46O1Ko7IDhY5ZyGWi0AVtGoF3Wk1Ql6PSjsUGmnWBweN64BNQDiY_2iplpvDBM-bBoRcX76nQeNPDbf79bBp-RvWqCRqouFrZYCBTF2r8ccVD5rUDD1riG9M5Hgwe_3COedzGD1OUJdxMREl47KTVA6gJG-nnG41kmRJGZIAVSnmy5cl0TpGYpw_MfIkqeBK-IxwXe7SOeafNh7CYGakZhN7BAXkSUtZlGGhL5X8-2iIhfUccWc8TChFB9JKIWMPGpFArx5lSm1xm1VOnC3eJZ0UH8u3i0mxoOFqveVaAWhGVUl-AOCS5vQEno2VCi5yzo96-B1tzbqtUqiL7ANlXW_rHViwtQhiQN_t-FfKw3jUMbx2EuMbKqjvwfmsYH2x_UtqgiiUv7sYJSi3x0zHGnXcLxud3xh5Vpi20YrOFfJwq2GgCSYTWoysaaDwUS-sjuuJuUVomjYiPgSxx6C7O3vHElUm1tzQyKY_QtwIjI_dZ0b0cbJOEb7ffppgaA2RtiPddWi_n3lkd7TFdFZeonblhdsCq6m2y6jFUnwWrG_kfynIPQxGu3klsj-i8Bbse-L_3O5uJtpyAwAONsGK2Ek--T1My1QYfrDthKXv14E5E4FzeXHN7cU3XmcVuc__mOzDplwkgw2-ZVPG6oQlDifKdiRhoNBVs5ClaruzshNMn1TolSe3eRYwtM0JZC_VerAfXRNA-h-H73AA-dUm57TMiGgod8e2m4ROpaFwL8ClJG4WflUH9C-0GnQqfJrK7SsHEkWQQpbmAiT9dOOPtNJgIB1rRwVBP5Qq0L2HUSK5ZPOMwHwlyRRU6NruFcrEbvZHKbuDyWvuB6Nk4D1STb81IKxqO7z2iJX4J91cyas-MyaZdf9hwZvgdG9EiGexwxj9mQ1_4pox_A9CJhvChHWG0Mv-XODoNXEfvW57uGfuLQulwgU-OryFTpY7T9LKwBNLOsaHaRqmhUQnGJhy57eUT2WmoiHLq5mjGXQjC9ggmYIHf_68UY5_UPYyUb5DUPprBPdk9txxj988QdJkKNYFeTvoDsKESxBucf7RwHA6UbANkltFADv76m4AyVP8pEvbvgb8rvOfBywteb8v4aG5n1iftBM4LMB1M4xbg0b13-29VV1FO2-obG3Z4nrugm1NY6IiT_O85Ha3viUQRTsYten5GBxlz7cm488p9Qg9979cVFiYlVsvcMGCf7WqjtV1w6wAIGypJI17qm2o25215hSU2EEH2UDZPxsJWza1NDsvrxfUj-eEkxBlV1DRUT8l6cJfTzBVkv_dipqGn7ZAzwB9EE83Zx3cEJdGCKyr869NPy4PNju6y5qoUaSIgAstVOwBCXuZN41LceHA7YY426C3utvlLBryOXOpuC-oSU5WRetM8ZFvGAuPNH0uc4W8RV6JQBAry2MdedhXd1o33HEt3LRTBlAc1PQ2UYLU_QvbaoQTb7KW8P27y0mk7dj-YQEcQkjjOZEunaQiB1KFaCLAukF93o-C3mvJgjraRMtF9kjIFlL0xdZFqnlN6Yg62ODjKq_6I1lfxnYxN8bLuqkVFuVCXHPKl1ig8NyPSg_0MKTd1baAQD22E_6OfSFZc478ZrrQ78CIO4XcgDzbglE4rUUuC_JhGc_jNhI4Zfy2Gr9aK9XrPPYPguO7-ka1jneY3ONjX_8DDhTXLLblHtt3G2xbxk_71T6nL_A_Epf0VA6TnwyQjbktCW__vrSAEevAI0czRYpynh-orChKX0CamLjN4pfr0rEpQEbvBv3UJjbJz3KVPU3GjopqESUIDUNWSWUq_SGk0CI5x3k5VCJVDffDPE8JvSD2BnWbmxg2IWVWgC82t8nPAyHFslfg2WaCUstFKiX8PqYkQnuOFhhrat39Zfs3YQY5TTKcIhqXj3z-vtRaGxsXMb4fFRUvwsazbi-Y_t3nRfmL1EIl2k1dxoo1ttmyimdF2uBnl9JVt-dUkv38nPdEGBg1HTdeV-mKZ-MjEPfpXMr3M-eIhhz-lLiGLlvB9LoImVe30BQizHbJh_QyIgS6VyFUrZ_AxknU-dn1EDyhk_TWh_o7XUHPysou-M8KD6t6pr9dXm4Ki9X3_bpjmulvoFCpDp6Zd-0L-LXPjOrtfBUTutRDgZfTtSmSMnZt_pj-cIMJSkkczgiUN56HCiknQtKK2_0p3cdgtglri7OLUsX0TLzSqmeWKkuUXUAhAEjv6Nbmxeo2RLyKSBagIzt81N4ZBa2RmUmo9Iaqh4Bm-RMtM7wH1f3doMJqv9JnGQjqcQ4JcliGQXIFJb9iG70JdpEAEySx4Uj5qeFk0jmMCG18duICJmS_zVDSSUreYsbSXZ_SXpaKds1lJHHWsVC-joYtKU3zeXEuH0ezWN4Tmo5J7_mrfKKir_AdrtNHApnbik6D2vXxMFhoFTKLx5kO4LE06lZ_kyuuIlFTY4Sqj28zEULDJl0XpDq9XSEcVnWD9hq0Lq68gOhE5d3eWUUEQz2N0KQy2-GA6jJ_H_u0Up2-Uln4m_4Q1rm54Ros0QI4MVus61_oNWNxdqGBbM-tQ_oRWcs6suZpiYgUWwFcJ6BqXv8Jl54Ml46gUdMLMd3xlj9B79ifR8xsW4xsxNzyhua-nViQx7xZf1g8lZY2KzXBa0BDAYtL8mdNgcmU-Yv0csi3JK4TbaBfMckcSYI89jMxlMZK0mpas2_9mwA2fAqGDnalSOnLEaPCtBL7F-WJt6iQsxPBlEH2OzfFX4mOCjn_R0mJXXuf_dxtIj8bAIbd5HuDWyYX-dM_6TjtN5M1px-3FbW8aYaMOqQ8WnHNEjvgYsmka3WzLAAQMq9D9bLTFGJn0dJgTeR2BkPpl0IcM21H9gwgLaL5oTqA_0z1IiEpb8S7hC6RDgkuFHoQTQ4jQngloAa1o1pg6AKc5audDWJC-uazL_SRt3pAIB0yjWYtBEkI3U6G5NUwwJYRhunRP_gbWMbwFyMhFLSEFObtLk9I2MkXPAWfPJYSkdWkzz05BmAcKUqFvHTKOG3c-3vYSEby-y5Rpv2wsoZ17lIBMe1-8GBZPexlGmy7SC4ioDPd1SHcx57s9CawUGIpOeZpOCrBmhttIJaVl33boWoWvGHFBviKA4b7F30HugJeZbPQUvOcTIXy5MbiQ8Obz2fuSFWZzirGQiHVV7Fr8XdCKOHchdkbddNoiqt-128a286HNWVr6Sva9Xh5JhUQxVhfg-p02mzquVn7WChgpse6NZ5L-M-sb9SGqHEINL2diZyk6hrSZnXFX9iB9adOQFYRtKsiUjONeko-cSACd1U1jsqnzAnkyt0d4oqsfmdPEdl5kaaC7OiQoEcTxtQuFFcjr6fFiZ2oi006vCqBIqpFO7Z5THSQ_NeZtTsEd6NE6CDIVmhFEb__eR7AyRSa7MsFxDBH4j2JZyEtHvLGT8Nd9uOWDb7o3Y5Eaq8TX8i1X-eK6C1R8fueE6tiLs_-4XSjd6V6xLK2tiCwzTv_eaOKL33-hFO2INcxnDo1FCBuSswTPHt0dosU1FVLBs_1FjNhWhfHPVXG81WPcTOpD9A-2joeC2AI7N3HCgzyDnmuYbHWlVEf68yeLByTa6HjOWWIzh32qAtBf-xJDkQraRQFqxS_IItzfxfrbc5v1_J5rZlQ0krrKESHMZmbGmUMYFrbaanYaCNi3an9j-8_UDNjsdJIdfeKHomlnAfoEyT9JPIKSKk6kbl8PcBwQni9GFrnGTbXPv8ssOcgEUgCUdR12uuaOU7bX_bPP7sYxTz5fxD-eNtFzFrAAzP3FWiqT5Ffgsc5kPB0HjQXYkVaOoiy9IP9aiq-H6sICh6GZ-ubt-RpBaLHF3eHBRnn-fVWZJOlNN9fKB1sxT7s21PKJsd8qkZA6w4G9p6c0rLAmUqGQ4k0y16vAgR7EnLmTkyVLTju_d_37BljsxGhDrqtci5HLVKh8rekR8RLwwLa75Kf8BBE1-tR-I1RbCghMmBdCinhB4eIO3bSOJ7pi3WHRTLCr1OtEB4npO2nfdrum_gBagn_F2BwT-xXKiKA&cid=CAQSTgCa7L7d8VQ_PHRtCfHORLU28BzV1TRy_u2TPWayM9th0ebUn9xvP-sCnaKrgRjQ_Sb5_IFGbg_aiQxgHeKdR7yUw0sdVb6eVouFkYoZEhgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0

HTTP Request

GET https://bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-BpwW6UreGvb29vJ23L6UrmnTpos-dr-68WWDNSYR85SMFk8magM1YmrLDh7Lro8wTUBGFq_08zSnyj4zDcKX4vysVQZw&cry=1&dbm_d=AKAmf-AWAwdxlAqhr5iKrUB0xv3c8gZwnsHWRh4G6igHFF5W-Mc4JFLBvRm6-dKutU7Pr23suSBDcQIh_e-wkNDuqG6sUTj0USqy2RC-ek6l50D1mQDIDCLlxqIOvtUixcTWZ4sAzCTSlVY4B78NKHykx_j-Trx358k4pkOlZhNIlT3c2RuIob-YfqwzlvuyBCXCCnmVim3x55HGi7XRDzSzQkQ8ZSb3oKG02U6rTXjfUArgbAaJ34YDCZAcwdJjXmHRD5XCSio8L2V8ciaxih2KuNQSLNDcsIhCiapLqmwc7zU3nzMgWC8dCj-GexESkbZ0-zhdaVmI4EzI7N-I45UCMuh2jmpLuFknsup9vPhhru6wkKjgNPH4ZmudC766EGWmkmlsibwh7JpqJAMwbPg9hb8HSag9_TgfBCzR746DZpInUm3F_qTIl-2E9JYzEttGa1Z_Y0fYBpyUn0CS5JiTQZlGge2HZS8BoVurlCmY5bzDvjMcZzmzUPVvASvuH4Gv_kLHWzNQXuYCp2--NfHaw4OCM9sMthPkwyHgqopBQ2Q1w462LWtv1XpHwhDghgv3hjd-ze3kv9UUVrRTGUtRz9iHt-fTv4BlxRb862siVn8js4nlCoFr2XjrR3NRSGIi7iLgDxsqfLoRpP7rNu75a7KRZZR7SH7RQsHSYXbnMjMV5XNwz7hbJHv46csZXUnKOWYvo-iJJnhS0nSWavGMy-3uAChr9RBUBkniElXF83RzDXowrvb-NWhFHrxy3kKocNfjI70g2CozdzxCNcp5T9nety6D1HfcPvpgFB_-3WCVhPavuNhytc5v83fwwCJN1NPkbTZryRmnKp9ZmDl4ahRJPNrXj1SLlvBNmRJLcx3WGGpw79qR2APiS_Pro7gxkfWpqAVxA76VsnM5Gjx7kbqc6_iMBSCTT_4cnVOGMyRnnRden3VMTH_0_kDi8vuHra_lanBcrN6wb8bangy967ejQ6tIT6g14WdugANeihxISXobLyE7c21N9SzEA0t8BxKt19qOJrjOutQpFkHziUKvQ3-lCPmQwb95iFCaGn9kl_IIICVuIkkaQZqE-JQOwXAGl3O-GSlRuZj_5paVvDga7Hv8Z0rO45BExs7L91KFga4f9po0wiXTYLRo_6Ca3hmb2gm6hurDWTwZlHM84-p2cgDjfLqaN_o6poojc2JUS6VfKlLxZVCE89ShAwvI9dkrW97lZja2wmbnzyOjkM6wPoWqML9EBnzPi4_84nUBG-XF5EAD-LAChI2oqCtPs3gYCQJrfr1qpb9-rO6ZTEaUtKRGS_k5CNJ6RLYDxiYyWwgS9EN-eL7Xyl7pBeQTvINpx7o3RHv5J6yc2TjyVa2-QPcQH3s5KqMnchUjlYHg1uQoY48F1QCLwkUK6o8fk2-UxLsvh74o1aHuoqms3y1PpKFg_6ENfHlQ_hTODheM4qlk2UaqZiWeQHEHfOhnMV3vlb2DpYXFhBrLuPVOOzc4e84BgKQx0mvhBWvzXWnt_VeTN9IzSLKCuf9-Rw1qKyIC-bW1d4iwSNJ3ovxSXPaU_1QB-sauL25tDjbR1dA8CNWwp1k6oKAKXggU2PHd4QBhuybluqelyoe_USvab-Ev1KiXn5U8LuVIXhtG7vhTSEYmjb66_Qj5fVVKCUZFHTgewSBC-PBJ_5DYP_5hQg5qD2Y7G0zo8rgJe40TuBtU_JusXgvZO7qwvk1_bj6lkauSvrZT2udzhRZjVJTf0O1Ya_NxQeuO6VCYMZIA0d-tXmAv1ZAl00LUjBpQLYrX-qnOlXg6hKw7Au4JqKt7k4Jq09lcVa_t8nIFlYJfvvaCfM-QRkrTkGxtzZmQaVetEHKPwZx9CAzA1k3spz1fQBWqv3A-JYVICQ0h1QsFCsHXFZJmOLtI7Rxs_QtwJxeKbV1AaxABC2NfwatsBTARqOt7vlbYrwvA56kMNPL8m1-iX752PnVzcqFsXmZb8LccP1FJaDhv5tT5i1axy-0fAxptn-1KjFknT2PFAti6Tt9FESQm_G0YvhXDrlND2Sl-78rA3xbUmYOf4Eb0Nj0ODi9-vLEpn8XoVGBaGyxDXpfU1MFZ78XzGlH71B5ZKbV-_7AT8Xfv29IYZhcguV3wpx0XNYWTCwHnAL2Byx1pyuO5rfBFXk3q7All0ZDR0MavIADJk9BhdKt4gJ6qq7owZybQzB-pFoUGP6BUzrTutRv4Vp3gVT3MTopgIYEEnOvKy8CK6911QTGgF8Eswo0WxjCnP1fsnJL0Tm2mUWmNY7GI4I15reC1xIyvgZz6s9h9_e2hFLoPNAfcBHyYV5UPvuQFXJ6ydXhbIjuY3vgvbJTKITBX_fuBrHM29b6TEMtfxMjizSJZ0CpuNvwgwB1YADIU1i8cj8JmSgN2XWyOu8oFVN1t2Bm8v1MQBYVO8UBxl9GpvVYPCNAp_C-D2LBrcyaukTWQNTy_ODq-le66DIl2xDxtR985KCUy5IdKGLKpO7hXV0kgrZUpc9yv7402H7H6seRrYt1iHHbXB5wlvEXx4PZ4D87Wpc1c--6uxUjJxPKQojyu_IwYOisWHdDRbYIOYlnhHgqM9CMl0hzla5EyjL27Pp-iH5zIjO1QwbjzZDhwOp_i1fr_JMkkg5xtkYGmwwl7FJRCrn0jfeUI3q4XwB8waqzd8kgGBWtOTGL90EaaLLSg1zedxFbS1YijnPK_1daYZNxV2ykX0l30-ebqXFwtPbGVjhQjAOOZRnOyF74JLl5fx3_4Rrkf-j2JePVK0p7r_mhMoo-GBAsBqRhJdvyQy36rbp6V_TFuFKhWFP1_VCZyGHVGsZj6pcw5h1M9GFmKNUap8z8FTzwIX1D0uXMIb3_VCi011hXsCF-YEMC6siRR7ssIT5XwAU8QFuvdOgI_hsM0klEJ6N8ejZqSwMgNXgPWj33APJ0IKS5kX0UdW5RSRy0ny-vK6aFMhOjKIL0Ful5VKoGQQY0d5--48s0QxMiuzJjFzcQ-nPNdhFpXlx4bmBVoJKtEPHUOsoaPLrjA5yDXDG4rQVuq7ocP4pAiBTE5AkzZbcgupSqY2un4SHP9SSOHCxxFhSs438P09IvnomBHtU0SAO4USjmwnuRx04JTsJ-IMdkektPqsaoNg2zfz_IcSLoVxd757NTTzfCoGKJWOikaA9ZyeAlPYJlz_KBJoucrMnJdOpLEQVo6tx1-BXL7ruekJKgNYKouFe3vZibcirDpH8_Kvt-ugPH0pulF1o07X1cNccfKf98zJ8dr6kO519pw7K1lUbNm2qWW_FkztjAPXykPPl7Mr4Coscy7jke-KtrxaiDZuNVN9gSwltTLQvPdWx9rdzyZKYnhQPshkVxjTBPre5A86ZXFKVD_2Id3S4lTmLaJOSFJnp0j-HEP3q_gAkO7vVIjQHZgY49yMoEaHiJYPDXAuXWizW6bp-gR5uO7huC3kdUGzk-mDDD6viMizxtsSW72rAx0XXrhYoIlo1OLMgqBFJNKJQu8eNqlv8BAglSd-TaFCdIXWJjdYUoaYzXaveNrbJvVYmHSm6eXvpr-TUjNwWdtweKNAtuCnJry2nVAbDqxSkpywgxn-4reR_ZMVEjUBljW9myk_BPNRflAW6IVQKj5LCa6xMZjZJZaWivxdT9GrUkbzafmzm9hgd-LMi9l_xBXKRZW98mbZg7s1Tn0bMd3s3e8DTxxMcQHHbqnCbvkaWGHjnGao-f2HqtAzJuL-J9DLHl9ZpIJOBdfHSz5PDwZAcO6qDqABDdb6RLOww6GJmBGZ_FM1HCM0j1Q4ABStU4a1_aE60VL-upthdpf2R1ue6vn5ditLgYDtKTmWsRhjZdLyOxd1hiqqKpQ0kZO9Qr4LFItIp3yKBNiEfe9X6CBrEvtkdAVuK5cyTSglEODO5Uvo1te6n2YWSC5kuG7vtPhxOAO0Rr6tSmT_nmqOhQX32PmO9xxz3C-jNK8Obvx39Ro2jRSSQGfrdpRUADWvxQXB4txWmwtFOmDFaw_rOTnaKNThy2oSUyuF3h20dyUZM-EaRok8fJXvOckdVUQSKihrgoKY0aDy4EYElY5j3uvhpVsSmH-HQH4WoRtwtRtnB4pxTruTJGyEz5mI3BvzCmfJQrQkq1qJhFctQCgw-o0sGHvWpgteRoYiulJANAWhzMNrDrW2tz1xX0q7VhoXvbkmfcVzsrKSN4PUYo3oS-W73HEB8e1hhNES5-BCISDG71vDMuLYsz_VfjoE4cmlXXvfM2ubI82ow9SIp82Np7r9zaqavo2OCY4PTUuuP7iRs6INyhr4U4W9LNYsDpdR_jGAUb1ZNpnKIb010wZOSD6rl31Xx7LZCSMAUnEI4VmfXT51RBVwIpOgbmYkBU2xpEaEKab3sCnnv4Fb6AnlUVPRHJkiH-VWIz94jflZzkIlICNGZ0YB2aIDn97ZAZVZmThzot4HxefkVORe2Zqe7ipaXpDkwpVFS-4MNF7AkBowqR4y_CeOtgElhUA2094QUuRJfWqVpLitEC1cWJLThgE-UfX-PGNzvtBnA6EqGNNlRVLyRAwTHCm831GGuJN86AF65FWS1-e7WkoMZEjHJR5VTI&cid=CAQSTgCa7L7duDfuU6ObicuEJHCPXecu0REooj4axhisoF8KOQA6tF9j7OglFb3yzhVireifW9xVxgTgLuUQ9xHR3luJNkuimggkbnGfV6FrcxgB&gdpr_consent=redundant&addtl_consent=redundant&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1&nel=0
142.250.200.33:443

https://lh3.googleusercontent.com/npCkuoHmnEkYwA_f4iuxGSXXCqvrJd85R6pQEGqL_-bYkitifzZ8_a79jan1M6JA5kumg3-OEKJcnJ0NEw1BW7Ve1KadSjoRFQ3WSfsZk8fl6kys_UkGRQ=h60

tls, http2

msedge.exe

2.0kB
15.8kB
17
18

HTTP Request

GET https://lh3.googleusercontent.com/npCkuoHmnEkYwA_f4iuxGSXXCqvrJd85R6pQEGqL_-bYkitifzZ8_a79jan1M6JA5kumg3-OEKJcnJ0NEw1BW7Ve1KadSjoRFQ3WSfsZk8fl6kys_UkGRQ=h60
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

15.8kB
14.2kB
31
25

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

22.9kB
17.1kB
35
24

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

8.1kB
11.1kB
20
17

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

25.2kB
21.3kB
42
28

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
142.250.187.226:443

https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20241212&st=env

tls, http2

msedge.exe

2.4kB
20.5kB
25
21

HTTP Request

GET https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20241212&st=env
142.250.187.226:443

ep1.adtrafficquality.google

tls, http2

msedge.exe

1.9kB
1.9kB
14
10
142.250.180.1:443

tpc.googlesyndication.com

tls

msedge.exe

839 B
1.6kB
7
5
142.250.180.1:443

https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/load_preloaded_resource_fy2021.js

tls, http2

msedge.exe

7.6kB
84.2kB
80
73

HTTP Request

GET https://tpc.googlesyndication.com/daca_images/simgad/9428238143277926780

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/qs_click_protection_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/one_click_handler_one_afma_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/abg_lite_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/window_focus_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/elements/html/fullscreen_api_adapter_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/elements/html/interstitial_ad_frame_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20241212/r20110914/client/load_preloaded_resource_fy2021.js
142.250.180.1:443

tpc.googlesyndication.com

tls

msedge.exe

937 B
5.8kB
9
7
142.250.180.1:443

tpc.googlesyndication.com

tls

msedge.exe

1.0kB
5.8kB
10
8
142.250.180.1:443

tpc.googlesyndication.com

tls, http2

msedge.exe

1.1kB
5.2kB
11
9
142.250.187.196:443

www.google.com

tls

msedge.exe

1.1kB
4.6kB
12
11
20.26.156.215:443

https://github.com/wcrddn/wcrddn.github.io/raw/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi

tls, http2

msedge.exe

2.8kB
8.3kB
15
15

HTTP Request

GET https://github.com/wcrddn/wcrddn.github.io/raw/refs/heads/main/122724/JJSploit_8.10.15_x64_en-US.msi

HTTP Response

302
216.58.201.106:443

https://imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.js

tls, http2

msedge.exe

7.7kB
149.9kB
102
115

HTTP Request

GET https://imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.css

HTTP Request

GET https://imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20241209_RC00/outstream.min.js
216.58.201.106:443

imasdk.googleapis.com

tls

msedge.exe

897 B
2.0kB
8
5
10.0.0.113:4782

windows 3543.exe

260 B
5
216.58.202.99:443

csi.gstatic.com

tls, http2

msedge.exe

989 B
5.1kB
9
8
216.58.202.99:443

csi.gstatic.com

tls

msedge.exe

885 B
4.4kB
8
7
216.58.202.99:443

csi.gstatic.com

tls

msedge.exe

931 B
4.4kB
9
7
216.58.202.99:443

https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=6~m5iopu1v&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0hw_r7Lf_uHHzcLWZPR9RFZ%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0

tls, http2

msedge.exe

7.3kB
8.2kB
37
42

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=1~m5iopsm3&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&sei=44752538%2C420706098&nsei=44714510%2C44729911%2C44730425%2C44730426%2C72811302%2C75259405%2C75259407%2C75259408%2C75259414%2C95329494%2C318491509%2C447279544&bi=outstream

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=2~m5iopsmb&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&ulv=1&cll=0&met.4=arp_a_s.21o&vast_v=4.0&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&lima_p_ich=0&lima_p_icu=0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=1~m5iopsnm&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&sei=44752538%2C420706098&nsei=44714510%2C44729911%2C44730425%2C44730426%2C72811302%2C75259405%2C75259407%2C75259408%2C75259414%2C95329494%2C318491509%2C447279544&bi=outstream

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=3~m5iopsmz&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&vast_v=2.0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=2~m5iopsnu&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&ulv=1&cll=0&met.4=arp_a_s.235&vast_v=4.0&icc=1&icrh=0&icri=0&icrs=1&icru=0&icp=GoogleWhyThisAd&icdi=18x18&lima_p_ich=0&lima_p_icu=0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=3~m5iopso2&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&vast_v=2.0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=4~m5iopswo&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&vmfc=6&vhc=0&icc=2&icrs=2&icp=AdChoices&icdi=15x19&ccc=0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=5~m5iopu13&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&msm=1&aits=0&webm=0&vp9=0&vamt=video%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false&vms=1&bit=0&hcn=0&met.4=arp_a_e.3gb~atrd.3gk~videopreviewvisible.3gm&ua_e=1&umsem=0&ape=1

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=4~m5iopswt&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&vmfc=6&vhc=0&icc=2&icrs=2&icp=AdChoices&icdi=15x19&ccc=0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=5~m5iopu1j&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&msm=1&aits=0&webm=0&vp9=0&vamt=video%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4%2Cvideo%2Fmp4&hvmf=false&vms=1&bit=0&hcn=0&met.4=arp_a_e.3gc~atrd.3gn~videopreviewvisible.3go&ua_e=1&umsem=0&ape=1

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=6~m5iopu1g&c=3086056886809&slotId=1543028443404&qqid=CJHhxtb-3IoDFY9lpAQdP_M7mw&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0gmP1kjEvjX6UiW0Y1AfMgi%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0

HTTP Request

POST https://csi.gstatic.com/csi?v=2&s=osv&dmc=8&puid=6~m5iopu1v&c=2142150670522&slotId=1071075335261&qqid=CNLUxtb-3IoDFaqEJwIdXvUsYQ&fb=outstream-lima&gpm_i=6&gpm_c=6&gpm_a=6&smb=Infinity&br=15100&mt=video%2Fmp4&vs=1920x1080&ple=1&event_name=unmeasurable_asset&resource_name=https%253A%252F%252Fservedby.flashtalking.com%252Fimp%252F1%252F259407%253B9085895%253B208%253Bxml%253BDV360%253BDV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA%252F%253Fgdpr%253D1%2526gdpr_consent%253DCQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA%2526us_privacy%253D%2524%257BUS_PRIVACY%257D%2526ft_partnerimpid%253DABAjH0hw_r7Lf_uHHzcLWZPR9RFZ%2526bundle_id%253D%2526site_url%253Dhttps%253A%252F%252Fwearedevs.net%252Fd%252FJJSploit%2526pub_id%253D1%2526sup_platform%253D1%2526pbMethods%253D%255BPLAYBACKMETHODS%255D%257C%255BCONTINUOUSPLAY%255D%257C%255BTIMESINCEINTERACTION%255D%2526cachebuster%253D%255BCACHEBUSTER%255D&encoded_body_size=0&transfer_size=0
216.58.202.99:443

csi.gstatic.com

msedge.exe

52 B
1
216.58.202.99:443

csi.gstatic.com

tls

msedge.exe

931 B
4.4kB
9
7
2.23.204.231:443

https://servedby.flashtalking.com/state/9085895;5075075;0;271;1D0186F2-F325-A971-E0DA-76202EAFDB3E/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1192816502

tls, http

msedge.exe

6.5kB
8.8kB
19
16

HTTP Request

GET https://servedby.flashtalking.com/imp/1/259407;9085895;208;xml;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&us_privacy=${US_PRIVACY}&ft_partnerimpid=ABAjH0gmP1kjEvjX6UiW0Y1AfMgi&bundle_id=&site_url=https://wearedevs.net/d/JJSploit&pub_id=1&sup_platform=1&pbMethods=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=[CACHEBUSTER]

HTTP Response

200

HTTP Request

GET https://servedby.flashtalking.com/imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=FD720FCF-70EF-8733-454A-3D2AB05859C3&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0gmP1kjEvjX6UiW0Y1AfMgi&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1830144605

HTTP Response

302

HTTP Request

GET https://servedby.flashtalking.com/state/9085895;5075075;0;271;1D0186F2-F325-A971-E0DA-76202EAFDB3E/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1192816502

HTTP Response

200
2.23.204.231:443

https://servedby.flashtalking.com/imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=1D0186F2-F325-A971-E0DA-76202EAFDB3E&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1192816502

tls, http

msedge.exe

6.5kB
8.8kB
19
16

HTTP Request

GET https://servedby.flashtalking.com/imp/1/259407;9085895;208;xml;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&us_privacy=${US_PRIVACY}&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&bundle_id=&site_url=https://wearedevs.net/d/JJSploit&pub_id=1&sup_platform=1&pbMethods=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=[CACHEBUSTER]

HTTP Response

200

HTTP Request

GET https://servedby.flashtalking.com/state/9085895;5075075;0;271;FD720FCF-70EF-8733-454A-3D2AB05859C3/?ft_data=[PLAYBACKMETHODS]|[CONTINUOUSPLAY]|[TIMESINCEINTERACTION]&cachebuster=1830144605

HTTP Response

200

HTTP Request

GET https://servedby.flashtalking.com/imp/1/259407;9085895;201;gifimpid;DV360;DV360FY25CCPSPCAffinityUsersMay2024INDPHSPGoogleUKDSKVID1280X720JasminaZornic6sVideoDV360OMPNAPhotoshopDCNA/?ft_impID=1D0186F2-F325-A971-E0DA-76202EAFDB3E&ft_pid=&ft_custom=&ft_c1=&ft_c2=&ft_c3=&ft_id=&ft_mcid=&ft_mliid=&ft_partnerimpid=ABAjH0hw_r7Lf_uHHzcLWZPR9RFZ&ft_partnerid=&ft_section=&gdpr=1&gdpr_consent=CQKtMQAQKtMQAEsACBENBXFoAP_gAEPgACiQINJD7C7FbSFCwH5zaLsAMAhHRsAAQoQAAASBAmABQAKQIAQCgkAQFASgBAACAAAAICRBIQIECAAAAUAAQAAAAAAEAAAAAAAIIAAAgAEAAAAIAAACAIAAEAAIAAAAEAAAmAgAAIIACAAAgAAAAAAAAAAAAAAAAgCAAAAAAAAAAAAAAAAAAQOhSD2F2K2kKFkPCmwXYAYBCujYAAhQgAAAkCBMACgAUgQAgFJIAgCIFAAAAAAAAAQEiCQAAQABAAAIACgAAAAAAIAAAAAAAQQAABAAIAAAAAAAAEAQAAIAAQAAAAIAABEhCAAQQAEAAAAAAAQAAAAAAAAAAABAAA&gdpr_pd=FT_GDPR_PD&us_privacy=!!US_PRIVACY!&ft_creative=5075075&ft_configuration=0&cachebuster=1192816502

HTTP Response

302
2.23.204.49:443

secure.flashtalking.com

tls

msedge.exe

1.1kB
546 B
10
8
2.23.204.49:443

cdn.flashtalking.com

tls

msedge.exe

441.1kB
12.6MB
7301
9012
2.23.204.49:443

cdn.flashtalking.com

tls

msedge.exe

599.1kB
13.5MB
8600
9710
2.23.204.49:443

secure.flashtalking.com

tls

msedge.exe

1.8kB
13.0kB
11
16
142.250.200.34:443

www.googletagservices.com

tls, http2

msedge.exe

1.7kB
1.7kB
9
6
142.250.200.34:443

https://www.googletagservices.com/activeview/js/current/rx_omid_video.js

tls, http2

msedge.exe

3.5kB
57.8kB
46
48

HTTP Request

GET https://www.googletagservices.com/activeview/js/current/rx_omid_video.js
18.169.86.84:443

ad-events.flashtalking.com

tls

msedge.exe

5.2kB
6.7kB
40
30
2.23.204.49:443

cdn.flashtalking.com

tls

msedge.exe

2.0kB
843 B
7
6
130.211.115.4:443

data.ad-score.com

tls

msedge.exe

8.4kB
6.6kB
19
16
130.211.115.4:443

data.ad-score.com

tls

msedge.exe

3.0kB
4.8kB
15
14
52.213.193.125:443

d9.flashtalking.com

tls

msedge.exe

1.6kB
6.2kB
16
12
52.213.193.125:443

d9.flashtalking.com

tls

msedge.exe

6.4kB
7.3kB
17
13
130.211.115.4:443

data.ad-score.com

tls

msedge.exe

2.8kB
3.7kB
12
10
52.213.193.125:443

d9.flashtalking.com

tls

msedge.exe

1.6kB
6.6kB
15
12
130.211.115.4:443

data.ad-score.com

tls

msedge.exe

11.8kB
10.2kB
28
19
216.58.201.97:443

https://ep2.adtrafficquality.google/sodar/sodar2.js

tls, http2

msedge.exe

1.9kB
12.8kB
18
19

HTTP Request

GET https://ep2.adtrafficquality.google/sodar/sodar2.js
216.58.201.97:443

ep2.adtrafficquality.google

tls, http2

msedge.exe

1.0kB
998 B
7
4
142.250.187.196:443

https://www.google.com/recaptcha/api2/aframe

tls, http2

msedge.exe

2.5kB
7.2kB
15
16

HTTP Request

GET https://www.google.com/recaptcha/api2/aframe
142.250.187.226:443

https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241212&jk=4312251384164516&bg=!PT6lPnHNAAbtGp3CzRo7ADQBe5WfOK19Drao4fauKXkoVpWpjbvSGn6uwqD-GJh9_049ZTH6aOQSuBjpzSW_VV7oB6SiAgAAApBSAAAABGgBB34ANXx6SJROy3ldW4ERaJEdhVFwFTG8-3cjynO6vRQIX7qLMI2xlkZOThLvUEPY8Nom30tj2rsoCgC2rWuxkgg2DxTxtQTZIuzRjO_APLvOdPUtcWQc5MsxfLCYWnJhzCB-sLAMDomVYyFIOFXc1SIU2CN3xKLDho1jLMzDmCQ-BB8Y5lXMFlJrL-3tcsM9zbbYUVfyj7wQ_q-l5dY-OShpJhRtWvvIznp5FMBXxl43w3z0SdIbO6DzjkYrM5WH10vLcpksbpUpLycqap3xyNMPG7P2EYSzFKgcNK1h58CZ9psRF8y8a6aQKTqxFXyOoT6ZAoX3CKo84qsmPv2_epCrRAzLT0O7ThlVXVy9VKLsBtsJfl12aofL8ZtUVnc7DTtXElORM1kCEOGzA2XgAwHHcO8ENacS3_8bhp5ewNp-HONoY2YvwuZsVBCURPC_bwFqJbIDgwmU3GXs55RCUesgtBex_qeOt9hD3WJXbezGON16oZ9MW62LIopTD3lViCeWwSdH1uERWniOlcVSWVfToojrPY_p_vESeJY5KjuPo4kvkyziOkbnd2P2ksEJMHHVdO9MCgzuejqtD8GasCvwJJHhhYmlsKEtGVIdaChoLJGUwjDtfkfBpJ2Bx_N66XLxiss6dSAWUe8x2fY5Eycse2_SMtMQNZF_Kh3emJsz_IoFW406wGzhErfk0yaLC6ZYivjNujxAKsHVtJ_4QQQSPmGGyTBK9UXePOBdagMcpnLwo-vN7PEZH_8U_eSaVQW-WccWLWtoQqDHzeaX1FlY6hX_lhcECcLUP2EqIsnumIg8YXFzyGJQKtEdJyTjUEYFHBUVHyWXvr_9tcDiEP1sOT8raLiWO-ki9-CFKydLRXIpniPGrvut-9zyfJ_75fB5mtO_TmCEHnIh-a9xpGrNX2qLDWAduNnipM28vunQQ9Faj8TECWNDmzj7XVG9nsniyBRwwJMLWmNkDa1SvWIXpdj9SvVKg9zlRDpXFuSjFJYP4C-wX-4L__oaxvy9KDgQYmJEOX5NlfOqzg6OZxKmaQX-ykjsW6SvWFqT1ZZQd3QfKmlSuIupxzRW3ycQcADmNj2E_8rk8-RWK7es9c6sVnOf8RzhMkJRGs3kk19f4Op6_mnX6i8EGW7YJsl_vBffaIlgL1U34b3YXx-tnfCkGh1Bbf0guxE

tls, http2

msedge.exe

2.8kB
5.5kB
12
10

HTTP Request

GET https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241212&jk=4312251384164516&bg=!PT6lPnHNAAbtGp3CzRo7ADQBe5WfOK19Drao4fauKXkoVpWpjbvSGn6uwqD-GJh9_049ZTH6aOQSuBjpzSW_VV7oB6SiAgAAApBSAAAABGgBB34ANXx6SJROy3ldW4ERaJEdhVFwFTG8-3cjynO6vRQIX7qLMI2xlkZOThLvUEPY8Nom30tj2rsoCgC2rWuxkgg2DxTxtQTZIuzRjO_APLvOdPUtcWQc5MsxfLCYWnJhzCB-sLAMDomVYyFIOFXc1SIU2CN3xKLDho1jLMzDmCQ-BB8Y5lXMFlJrL-3tcsM9zbbYUVfyj7wQ_q-l5dY-OShpJhRtWvvIznp5FMBXxl43w3z0SdIbO6DzjkYrM5WH10vLcpksbpUpLycqap3xyNMPG7P2EYSzFKgcNK1h58CZ9psRF8y8a6aQKTqxFXyOoT6ZAoX3CKo84qsmPv2_epCrRAzLT0O7ThlVXVy9VKLsBtsJfl12aofL8ZtUVnc7DTtXElORM1kCEOGzA2XgAwHHcO8ENacS3_8bhp5ewNp-HONoY2YvwuZsVBCURPC_bwFqJbIDgwmU3GXs55RCUesgtBex_qeOt9hD3WJXbezGON16oZ9MW62LIopTD3lViCeWwSdH1uERWniOlcVSWVfToojrPY_p_vESeJY5KjuPo4kvkyziOkbnd2P2ksEJMHHVdO9MCgzuejqtD8GasCvwJJHhhYmlsKEtGVIdaChoLJGUwjDtfkfBpJ2Bx_N66XLxiss6dSAWUe8x2fY5Eycse2_SMtMQNZF_Kh3emJsz_IoFW406wGzhErfk0yaLC6ZYivjNujxAKsHVtJ_4QQQSPmGGyTBK9UXePOBdagMcpnLwo-vN7PEZH_8U_eSaVQW-WccWLWtoQqDHzeaX1FlY6hX_lhcECcLUP2EqIsnumIg8YXFzyGJQKtEdJyTjUEYFHBUVHyWXvr_9tcDiEP1sOT8raLiWO-ki9-CFKydLRXIpniPGrvut-9zyfJ_75fB5mtO_TmCEHnIh-a9xpGrNX2qLDWAduNnipM28vunQQ9Faj8TECWNDmzj7XVG9nsniyBRwwJMLWmNkDa1SvWIXpdj9SvVKg9zlRDpXFuSjFJYP4C-wX-4L__oaxvy9KDgQYmJEOX5NlfOqzg6OZxKmaQX-ykjsW6SvWFqT1ZZQd3QfKmlSuIupxzRW3ycQcADmNj2E_8rk8-RWK7es9c6sVnOf8RzhMkJRGs3kk19f4Op6_mnX6i8EGW7YJsl_vBffaIlgL1U34b3YXx-tnfCkGh1Bbf0guxE
2.19.117.146:443

aefd.nelreports.net

tls

msedge.exe

1.8kB
1.6kB
11
10
2.19.117.146:443

https://aefd.nelreports.net/api/report?cat=bingcsp

tls, http

msedge.exe

1.4kB
5.3kB
8
9

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingcsp

HTTP Response

200
192.168.50.1:4782

windows 3543.exe

208 B
4

8.8.8.8:53

215.156.26.20.in-addr.arpa

dns

682 B
2.0kB
10
9

DNS Request

215.156.26.20.in-addr.arpa

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.234.233

54.231.159.9

52.217.124.201

3.5.29.207

54.231.228.233

16.182.36.209

52.217.124.113

52.217.174.241

DNS Request

210.156.26.20.in-addr.arpa

DNS Request

ctldl.windowsupdate.com

DNS Response

199.232.214.172

199.232.210.172

DNS Request

nexusrules.officeapps.live.com

DNS Response

52.111.227.11

DNS Request

www.bing.com

DNS Response

92.123.128.170

92.123.128.173

92.123.128.168

92.123.128.174

92.123.128.167

92.123.128.164

92.123.128.175

92.123.128.165

92.123.128.171

DNS Request

www.bing.com

DNS Response

92.123.128.137

92.123.128.134

92.123.128.138

92.123.128.133

92.123.128.132

92.123.128.194

92.123.128.191

92.123.128.192

92.123.128.136

DNS Request

r.bing.com

DNS Response

92.123.128.132

92.123.128.185

92.123.128.193

92.123.128.192

92.123.128.186

92.123.128.194

92.123.128.188

92.123.128.189

92.123.128.187

DNS Request

137.128.123.92.in-addr.arpa

DNS Request

137.128.123.92.in-addr.arpa
8.8.8.8:53

83.210.23.2.in-addr.arpa

dns

456 B
719 B
7
6

DNS Request

83.210.23.2.in-addr.arpa

DNS Request

github.githubassets.com

DNS Response

185.199.109.154

185.199.108.154

185.199.110.154

185.199.111.154

DNS Request

133.109.199.185.in-addr.arpa

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.11.108.188

DNS Request

github.com

DNS Response

20.26.156.215

DNS Request

github.com

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

726 B
1.1kB
10
7

DNS Request

95.221.229.192.in-addr.arpa

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.109.133

185.199.110.133

185.199.108.133

185.199.111.133

DNS Request

api.github.com

DNS Response

20.26.156.210

DNS Request

objects.githubusercontent.com

DNS Response

185.199.111.133

185.199.110.133

185.199.108.133

185.199.109.133

DNS Request

216.156.26.20.in-addr.arpa

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.0.19

52.217.48.36

52.217.232.177

3.5.28.250

3.5.25.217

3.5.27.182

52.217.115.65

52.217.116.177

DNS Request

LETSQOOO-62766.portmap.host

DNS Request

LETSQOOO-62766.portmap.host

DNS Request

LETSQOOO-62766.portmap.host

DNS Request

LETSQOOO-62766.portmap.host
224.0.0.251:5353

745 B
12
8.8.8.8:53

132.128.123.92.in-addr.arpa

dns

146 B
139 B
2
1

DNS Request

132.128.123.92.in-addr.arpa

DNS Request

132.128.123.92.in-addr.arpa
8.8.8.8:53

200.21.107.13.in-addr.arpa

dns

651 B
968 B
9
5

DNS Request

200.21.107.13.in-addr.arpa

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.140.242.104

DNS Request

104.242.140.51.in-addr.arpa

DNS Request

login.microsoftonline.com

DNS Response

20.190.159.71

40.126.31.73

20.190.159.4

20.190.159.68

20.190.159.0

20.190.159.23

40.126.31.71

20.190.159.75

DNS Request

71.159.190.20.in-addr.arpa

DNS Request

71.159.190.20.in-addr.arpa

DNS Request

71.159.190.20.in-addr.arpa

DNS Request

71.159.190.20.in-addr.arpa

DNS Request

71.159.190.20.in-addr.arpa
8.8.8.8:53

tse1.mm.bing.net

dns

msedge.exe

124 B
170 B
2
1

DNS Request

tse1.mm.bing.net

DNS Request

tse1.mm.bing.net

DNS Response

150.171.27.10

150.171.28.10
8.8.8.8:53

10.27.171.150.in-addr.arpa

dns

216 B
158 B
3
1

DNS Request

10.27.171.150.in-addr.arpa

DNS Request

10.27.171.150.in-addr.arpa

DNS Request

10.27.171.150.in-addr.arpa
8.8.8.8:53

237.197.79.204.in-addr.arpa

dns

146 B
286 B
2
2

DNS Request

237.197.79.204.in-addr.arpa

DNS Request

237.197.79.204.in-addr.arpa
8.8.8.8:53

31.73.42.20.in-addr.arpa

dns

140 B
156 B
2
1

DNS Request

31.73.42.20.in-addr.arpa

DNS Request

31.73.42.20.in-addr.arpa
8.8.8.8:53

nav.smartscreen.microsoft.com

dns

msedge.exe

215 B
455 B
3
3

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.11.108.188

DNS Request

2.71.67.172.in-addr.arpa

DNS Request

2.71.67.172.in-addr.arpa
8.8.8.8:53

cdn.wearedevs.net

dns

msedge.exe

126 B
222 B
2
2

DNS Request

cdn.wearedevs.net

DNS Response

172.67.71.2

104.26.7.147

104.26.6.147

DNS Request

cdn.wearedevs.net

DNS Response

104.26.6.147

104.26.7.147

172.67.71.2
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

211 B
355 B
3
3

DNS Request

googleads.g.doubleclick.net

DNS Response

142.250.187.194

DNS Request

stats.g.doubleclick.net

DNS Request

stats.g.doubleclick.net

DNS Response

74.125.133.156

74.125.133.157

74.125.133.155

74.125.133.154

DNS Response

74.125.133.154

74.125.133.155

74.125.133.156

74.125.133.157
8.8.8.8:53

72.204.58.216.in-addr.arpa

dns

192 B
829 B
3
3

DNS Request

72.204.58.216.in-addr.arpa

DNS Request

login.live.com

DNS Request

login.live.com

DNS Response

20.190.159.4

20.190.159.71

20.190.159.23

20.190.159.73

40.126.31.73

20.190.159.75

40.126.31.71

20.190.159.64

DNS Response

20.190.159.71

40.126.31.71

20.190.159.75

20.190.159.4

20.190.159.23

20.190.159.73

40.126.31.73

20.190.159.64
8.8.8.8:53

74.204.58.216.in-addr.arpa

dns

423 B
656 B
6
5

DNS Request

74.204.58.216.in-addr.arpa

DNS Request

3.169.217.172.in-addr.arpa

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.11.108.188

DNS Request

github.com

DNS Response

20.26.156.215

DNS Request

196.187.250.142.in-addr.arpa

DNS Request

196.187.250.142.in-addr.arpa
8.8.8.8:53

195.187.250.142.in-addr.arpa

dns

293 B
313 B
4
3

DNS Request

195.187.250.142.in-addr.arpa

DNS Request

14.178.250.142.in-addr.arpa

DNS Request

ep1.adtrafficquality.google

DNS Response

142.250.187.226

DNS Request

ep1.adtrafficquality.google
8.8.8.8:53

2.178.250.142.in-addr.arpa

dns

332 B
644 B
5
4

DNS Request

2.178.250.142.in-addr.arpa

DNS Request

www.bing.com

DNS Response

92.123.128.138

92.123.128.137

92.123.128.133

92.123.128.143

92.123.128.134

92.123.128.136

92.123.128.139

92.123.128.132

92.123.128.142

DNS Request

www.google.com

DNS Response

142.250.187.196

DNS Request

raw.githubusercontent.com

DNS Request

raw.githubusercontent.com

DNS Response

185.199.110.133

185.199.108.133

185.199.109.133

185.199.111.133
8.8.8.8:53

233.134.159.162.in-addr.arpa

dns

289 B
330 B
4
3

DNS Request

233.134.159.162.in-addr.arpa

DNS Request

156.133.125.74.in-addr.arpa

DNS Request

tpc.googlesyndication.com

DNS Request

tpc.googlesyndication.com

DNS Response

142.250.180.1
8.8.8.8:53

14.200.250.142.in-addr.arpa

dns

294 B
335 B
4
3

DNS Request

14.200.250.142.in-addr.arpa

DNS Request

33.200.250.142.in-addr.arpa

DNS Request

226.187.250.142.in-addr.arpa

DNS Request

226.187.250.142.in-addr.arpa
8.8.8.8:53

36.34.239.216.in-addr.arpa

dns

218 B
310 B
3
3

DNS Request

36.34.239.216.in-addr.arpa

DNS Request

googleads.g.doubleclick.net

DNS Request

googleads.g.doubleclick.net

DNS Response

216.58.204.66

DNS Response

216.58.204.66
8.8.8.8:53

194.187.250.142.in-addr.arpa

dns

289 B
338 B
4
3

DNS Request

194.187.250.142.in-addr.arpa

DNS Request

lh3.googleusercontent.com

DNS Response

142.250.200.33

DNS Request

1.180.250.142.in-addr.arpa

DNS Request

1.180.250.142.in-addr.arpa
142.250.178.14:443

fundingchoicesmessages.google.com

https

msedge.exe

30.3kB
173.4kB
149
208
142.250.187.194:443

googleads.g.doubleclick.net

https

msedge.exe

148.8kB
335.1kB
359
444
216.239.34.36:443

region1.analytics.google.com

https

msedge.exe

7.2kB
7.5kB
23
21
8.8.8.8:53

imasdk.googleapis.com

dns

msedge.exe

189 B
160 B
3
2

DNS Request

imasdk.googleapis.com

DNS Response

216.58.201.106

DNS Request

www.gstatic.com

DNS Request

www.gstatic.com

DNS Response

142.250.187.227
142.250.180.1:443

tpc.googlesyndication.com

https

msedge.exe

10.4kB
92.1kB
64
79
8.8.8.8:53

106.201.58.216.in-addr.arpa

dns

146 B
173 B
2
1

DNS Request

106.201.58.216.in-addr.arpa

DNS Request

106.201.58.216.in-addr.arpa
8.8.8.8:53

227.187.250.142.in-addr.arpa

dns

148 B
112 B
2
1

DNS Request

227.187.250.142.in-addr.arpa

DNS Request

227.187.250.142.in-addr.arpa
8.8.8.8:53

csi.gstatic.com

dns

msedge.exe

270 B
574 B
4
3

DNS Request

csi.gstatic.com

DNS Response

216.58.202.99

DNS Request

bid.g.doubleclick.net

DNS Response

74.125.133.156

108.177.15.154

64.233.166.154

108.177.15.155

108.177.15.156

74.125.71.155

74.125.133.155

74.125.133.154

74.125.71.156

64.233.166.155

64.233.166.157

74.125.133.157

64.233.166.156

74.125.71.157

74.125.71.154

108.177.15.157

DNS Request

servedby.flashtalking.com

DNS Request

servedby.flashtalking.com

DNS Response

2.23.204.231
8.8.8.8:53

99.202.58.216.in-addr.arpa

dns

281 B
471 B
4
3

DNS Request

99.202.58.216.in-addr.arpa

DNS Request

231.204.23.2.in-addr.arpa

DNS Request

secure.flashtalking.com

DNS Request

secure.flashtalking.com

DNS Response

2.23.204.49
216.58.202.99:443

csi.gstatic.com

https

msedge.exe

30.9kB
13.8kB
91
96
8.8.8.8:53

cdn.flashtalking.com

dns

msedge.exe

132 B
161 B
2
1

DNS Request

cdn.flashtalking.com

DNS Request

cdn.flashtalking.com

DNS Response

2.23.204.49
8.8.8.8:53

tpc.googlesyndication.com

dns

msedge.exe

142 B
87 B
2
1

DNS Request

tpc.googlesyndication.com

DNS Request

tpc.googlesyndication.com

DNS Response

142.250.180.1
8.8.8.8:53

www.googletagservices.com

dns

msedge.exe

142 B
174 B
2
2

DNS Request

www.googletagservices.com

DNS Request

www.googletagservices.com

DNS Response

142.250.200.34

DNS Response

142.250.180.2
8.8.8.8:53

49.204.23.2.in-addr.arpa

dns

212 B
220 B
3
2

DNS Request

49.204.23.2.in-addr.arpa

DNS Request

ade.googlesyndication.com

DNS Response

142.250.187.194

DNS Request

ade.googlesyndication.com
8.8.8.8:53

34.200.250.142.in-addr.arpa

dns

203 B
391 B
3
3

DNS Request

34.200.250.142.in-addr.arpa

DNS Request

d9.flashtalking.com

DNS Response

52.213.193.125

34.249.82.190

DNS Request

d9.flashtalking.com

DNS Response

34.249.82.190

52.213.193.125
8.8.8.8:53

ad-events.flashtalking.com

dns

msedge.exe

198 B
367 B
3
3

DNS Request

ad-events.flashtalking.com

DNS Response

18.169.86.84

18.135.8.239

DNS Request

data.ad-score.com

DNS Response

130.211.115.4

DNS Request

data.ad-score.com

DNS Response

130.211.115.4
8.8.8.8:53

googleads4.g.doubleclick.net

dns

msedge.exe

370 B
90 B
5
1

DNS Request

googleads4.g.doubleclick.net

DNS Request

googleads4.g.doubleclick.net

DNS Request

googleads4.g.doubleclick.net

DNS Request

googleads4.g.doubleclick.net

DNS Request

googleads4.g.doubleclick.net

DNS Response

142.250.178.2
8.8.8.8:53

84.86.169.18.in-addr.arpa

dns

142 B
133 B
2
1

DNS Request

84.86.169.18.in-addr.arpa

DNS Request

84.86.169.18.in-addr.arpa
8.8.8.8:53

4.115.211.130.in-addr.arpa

dns

144 B
124 B
2
1

DNS Request

4.115.211.130.in-addr.arpa

DNS Request

4.115.211.130.in-addr.arpa
8.8.8.8:53

125.193.213.52.in-addr.arpa

dns

146 B
137 B
2
1

DNS Request

125.193.213.52.in-addr.arpa

DNS Request

125.193.213.52.in-addr.arpa
8.8.8.8:53

ep2.adtrafficquality.google

dns

msedge.exe

146 B
89 B
2
1

DNS Request

ep2.adtrafficquality.google

DNS Request

ep2.adtrafficquality.google

DNS Response

216.58.201.97
8.8.8.8:53

ep2.adtrafficquality.google

dns

msedge.exe

146 B
178 B
2
2

DNS Request

ep2.adtrafficquality.google

DNS Response

216.58.201.97

DNS Request

ep2.adtrafficquality.google

DNS Response

216.58.201.97
8.8.8.8:53

www.google.com

dns

msedge.exe

200 B
200 B
3
2

DNS Request

www.google.com

DNS Response

142.250.187.196

DNS Request

15.39.65.18.in-addr.arpa

DNS Request

15.39.65.18.in-addr.arpa
216.58.201.97:443

ep2.adtrafficquality.google

https

msedge.exe

4.9kB
13.3kB
15
15
8.8.8.8:53

97.201.58.216.in-addr.arpa

dns

144 B
169 B
2
1

DNS Request

97.201.58.216.in-addr.arpa

DNS Request

97.201.58.216.in-addr.arpa
142.250.187.226:443

ep1.adtrafficquality.google

https

msedge.exe

4.9kB
9.3kB
11
11
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

195 B
174 B
3
1

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

2.19.117.146

2.19.117.143
8.8.8.8:53

146.117.19.2.in-addr.arpa

dns

142 B
135 B
2
1

DNS Request

146.117.19.2.in-addr.arpa

DNS Request

146.117.19.2.in-addr.arpa
8.8.8.8:53

LETSQOOO-62766.portmap.host

dns

windows 3543.exe

73 B
166 B
1
1

DNS Request

LETSQOOO-62766.portmap.host

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

T1053

Scheduled Task

T1053.005

Persistence

Scheduled Task/Job

T1053

Scheduled Task

T1053.005

Privilege Escalation

Scheduled Task/Job

T1053

Scheduled Task

T1053.005

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

SIP and Trust Provider Hijacking

T1553.003

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

Remote System Discovery

T1018

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

System Network Configuration Discovery

T1016

Internet Connection Discovery

T1016.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\JJSPLOIT.V2.exe.log

Filesize
1KB

MD5
b4e91d2e5f40d5e2586a86cf3bb4df24

SHA1
31920b3a41aa4400d4a0230a7622848789b38672

SHA256
5d8af3c7519874ed42a0d74ee559ae30d9cc6930aef213079347e2b47092c210

SHA512
968751b79a98961f145de48d425ea820fd1875bae79a725adf35fc8f4706c103ee0c7babd4838166d8a0dda9fbce3728c0265a04c4b37f335ec4eaa110a2b319

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
5431d6602455a6db6e087223dd47f600

SHA1
27255756dfecd4e0afe4f1185e7708a3d07dea6e

SHA256
7502d9453168c86631fb40ec90567bf80404615d387afc7ec2beb7a075bcc763

SHA512
868f6dcf32ef80459f3ea122b0d2c79191193b5885c86934a97bfec7e64250e10c23e4d00f34c6c2387a04a15f3f266af96e571bbe37077fb374d6d30f35b829

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
7bed1eca5620a49f52232fd55246d09a

SHA1
e429d9d401099a1917a6fb31ab2cf65fcee22030

SHA256
49c484f08c5e22ee6bec6d23681b26b0426ee37b54020f823a2908ab7d0d805e

SHA512
afc8f0b5b95d593f863ad32186d1af4ca333710bcfba86416800e79528616e7b15f8813a20c2cfa9d13688c151bf8c85db454a9eb5c956d6e49db84b4b222ee8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

Filesize
62KB

MD5
c813a1b87f1651d642cdcad5fca7a7d8

SHA1
0e6628997674a7dfbeb321b59a6e829d0c2f4478

SHA256
df670e09f278fea1d0684afdcd0392a83d7041585ba5996f7b527974d7d98ec3

SHA512
af0d024ba1faafbd6f950c67977ed126827180a47cea9758ee51a95d13436f753eb5a7aa12a9090048a70328f6e779634c612aebde89b06740ffd770751e1c5b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013

Filesize
67KB

MD5
69df804d05f8b29a88278b7d582dd279

SHA1
d9560905612cf656d5dd0e741172fb4cd9c60688

SHA256
b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608

SHA512
0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015

Filesize
63KB

MD5
226541550a51911c375216f718493f65

SHA1
f6e608468401f9384cabdef45ca19e2afacc84bd

SHA256
caecff4179910ce0ff470f9fa9eb4349e8fb717fa1432cf19987450a4e1ef4a5

SHA512
2947b309f15e0e321beb9506861883fde8391c6f6140178c7e6ee7750d6418266360c335477cae0b067a6a6d86935ec5f7acdfdacc9edffa8b04ec71be210516

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000016

Filesize
19KB

MD5
1bd4ae71ef8e69ad4b5ffd8dc7d2dcb5

SHA1
6dd8803e59949c985d6a9df2f26c833041a5178c

SHA256
af18b3681e8e2a1e8dc34c2aa60530dc8d8a9258c4d562cbe20c898d5de98725

SHA512
b3ff083b669aca75549396250e05344ba2f1c021468589f2bd6f1b977b7f11df00f958bbbd22f07708b5d30d0260f39d8de57e75382b3ab8e78a2c41ef428863

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000027

Filesize
67KB

MD5
bcfda9afc202574572f0247968812014

SHA1
80f8af2d5d2f978a3969a56256aace20e893fb3f

SHA256
7c970cd163690addf4a69faf5aea65e7f083ca549f75a66d04a73cb793a00f91

SHA512
508ca6011abb2ec4345c3b80bd89979151fee0a0de851f69b7aa06e69c89f6d8c3b6144f2f4715112c896c5b8a3e3e9cd49b05c9b507602d7f0d6b10061b17bd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
10717e864497edd81949b490019b4a9f

SHA1
afd39871ed65f40a82d74ef29d75340d9cea7123

SHA256
cbd29288d8bdbff930a64a86005400082837ad8695bfeac17fcd6bd7b546e587

SHA512
1c8129db2629678fa614998f59552238fe4409c4c1510dfe1d80730742d0f916df9ad8b3c183513ab36c9c6c75d9ec863fee892166165cd8667dc63241bc43d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
09d5e8f57dcbf866e6fd4011b0f62941

SHA1
8d638b9ff8599f327d38ee0a6e71c0e15fba8383

SHA256
00ac93989c5fc74c043635da27d70cd36f0dffb87b2ba5525f358d01ea55b45f

SHA512
cfae098d6cf452b7f4ecb2834530c3538fa7f4751276293f41ea8ab851790acd746a0d9d80a1fd8ffc9376d34ac364eda55af68bd987cba36b6dacef39c54dbf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
496B

MD5
30322550d9f9c54f345ea1c71f3b2e8f

SHA1
b5a3cff2995147279c2bbed7c03b2280ecb286e5

SHA256
4e7798d8476361378f8fbfb0442db63c7f6bf7e1830d50808bfdb8a58700d8f9

SHA512
261d1f5bc9c8a369f815eb846c252f54681f70862153bd49959411450870207b3ee240cc9016533c27401922527d561cc1ea7bb23708e4a257f071d010cf55ef

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
573B

MD5
ae032e5a8d0088761a5b1131e6d7adb7

SHA1
d495300e297e5392d0ad7512461b3f1b6f8f367e

SHA256
578b48d86653d004d76e5f3f0e3ca52ad7e39b3ce2ad9a4b069a3a55083b0b4d

SHA512
a3acb9599dc64d93e17dffdf65e8df2f3c4a6e349645cfe054de79a60ba9f8876d5fa88715f733529c21c803db429270a024375bf10d50bd38356e516febfe12

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
573B

MD5
68255df6947e1f33d971450f4e9a82b9

SHA1
19b4b832043ab2f62fa67462c558de257c004a51

SHA256
fbd3174171715d68ed17fad0114979ccaa795697f22b7ce84f9dc6296620d4e5

SHA512
eb7a1989ddf8286d1b3ec6d12aab7e9729c1e5d0e92c049f30379cb5c38f41799d3cdcd90de006d521ae84de71360884b13f330bd6902ee7d2f9e0a3a8bf307b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
5KB

MD5
7b9be63f73f245650d2498a556c1df29

SHA1
db693ef5d311f3b1322636e20ac5fe4bdf3113de

SHA256
498bbeb55f05f09873ca55fe539f1d4ff452bb46f6d71787e11feb622c124fae

SHA512
4e3363120f77d8b494c24c42bfeb04f20fd60b5587672df18842c33ee03d5bdca4915eb81afc07917da5a2ba150162351f0912ca6509798357f9d162c21868fd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
4da6957413541f1fa2e03c00c70a456e

SHA1
f2a429fd9c3917dbc5fdc41fbca5d3f1a2e4ad3a

SHA256
c808269821e655ca253a506a460874d27327dc850d4f6a4b03684e7f59e362b5

SHA512
70dbe3f00b2ae86cfa3bce78b3cf0751a1262fd7b29b5bd73b9c351f2251a1046f3b025c203bacc7b9d860df60a5ad497fe7bf16bbcfe0e7ea01563c2b8c5592

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
760890bac3a7e449ef2ee004179290ae

SHA1
d9cdb57961e01c0b1676fe99c6c613a5dde7d559

SHA256
cfe52e0d683d2b512e3bc79e7fa2b204203e2a714d5794ed904231e45e1d2821

SHA512
1afc7bdec9f2fa31d1f9e3cad4439870afd092d5416c87d9ca25bad9fc8af188062d2fee91c94df8204f7d16ba5ba4133c18f1f8efa31b8b8e04fd74d8110264

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
8af3e27de9389ebfbf5007ce9234fc9e

SHA1
c8053cbc0623279d58466191a0f9d18a633bf021

SHA256
ec24d4285a4e2c2db17f3d54370d9884a1a7c29989a39a0982f14e6bb8770562

SHA512
98c78524c0bf1f3a3bbf7bccd2b255e3356217c29962f18df3fd7452971f7070e0e1d3f9167574c7811b39dbc754b02eafe8b7f2038aba1123d904286f959207

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
e844cd1446f263fc86d71bab6020f469

SHA1
97904d10a610f2daacd8fb69a9576d42f91daeeb

SHA256
72d9ee45b8c9a53f7744ef248a4ac8446100d0507833dae88fedda157ffb7295

SHA512
099b7befd6b3bfb5904bc97e5f6c4f7ee27765394bcc5239262fd8bfd5d0d27282b0168a29bd875fd432eafc77528ef16540a5cf2a8a62ab1a87f71a93505abd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
871a764b3c005a19c8f4343e8131720b

SHA1
08fe682b116afb4eac21ce857834f1df4feca0fa

SHA256
a7cdacaa0826f63e1b0feed15301b12b052b8ae54da1ca50a8536a031fbf8c4b

SHA512
d7b6779082e14ca34f36cb1fc889b72061f84e2cdee041b2c6c5aa695d52dd238b93cf802a9f7291adc87b3ecad0e51a778da0b6e0489a1b9fbd1e4d393b1d2d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
daa6c1ffab5b2914376a43e819b70404

SHA1
e717dfd6ca9e1776513233dc186599e09ddd6941

SHA256
1ea879bd8641d6d4c3c4e42414801323521ee86e579370d59447b5759a5659a4

SHA512
ef619d5bb7897815511325d1d8379d38c5272562ee496b256d4cb17aad1863ec714f380515be061dcfcb302633f708ca398465c3a0fe7115568f3a6538ab6f85

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
90ecd189468f4eeab33cdcefb766397f

SHA1
ab84375c865eeac52c3840880fbf32ada4f5ff28

SHA256
a0f4ced7f88f95aacc5a6ce632f35297044df1b74b54d68f9fb129b21c7c9c2b

SHA512
ba1a790e019159c6850f220455dfa2c4d2299b77a1d52cd54f7d93e272e0767efe0ff7801f665ccf26256ec8d53af64557f034d6b293866bc2e58a4da4dd46f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
84175a2d79d765d79d98ebcd5da61556

SHA1
64f614fee9767024979585b76d3d63a2e520bbb7

SHA256
27fbeca790f6ca01c8b2d46d7ac0d6789797c59522bb037c3f5a2d8ebe005cfe

SHA512
ae3c406106a25fc86cd02a98265ec5776aca5461277b2c4dfd9b8a35a75797e65ed3dcdbb68d9fbf93017b9b57693560c331a0227a85884eeb40fa0efd4c82ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
01e547ecc89485a91ea43f814b9a6c1e

SHA1
5d22d693441e80adb55f15772b8e5ce0c9bc4919

SHA256
1ee4e453d8278ab6411e449c0d50f38b2b61540f71b5275d5eec1df5167e3517

SHA512
26c61a086b795544c392dc8e1ad07ec1c5efd941790e5661964973a9f85962c576142f583cdbe001df417531faebe7b5e098e6dc38c1699fe14bbbff3b50a180

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5a76c7.TMP

Filesize
48B

MD5
d754ed453b4956bfa863a11554d29598

SHA1
8cf825894f3b8e84576df3f370921ea49c5a2c8f

SHA256
65144416d18375c0ee842ac50e8c523157458b56aaee89241ef15da0c3ef4487

SHA512
3cedad5aa513c7806a22b97978767e0ee75aa8fb9c8b9bc2416d06164200ed08d197654e86cffdd6156640299d4b1c9f4545bd70086626ad53367a6f7351db47

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
cb3dbeda644ce32568fa9927277a274e

SHA1
81c1223e7f4812061d25455e2b4b4d158c03257c

SHA256
cf51692119865c8398bcad772801d836785608ff68c864f78504907112652cd8

SHA512
0596ee9807c230cbb8a5a11ec6911aaa5767a1669d57bfa80ab7b3e982c3184b02895aebb8d52280bb6b868993836ded177fdc1401118ce4f184db8366a405a5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
3c8d7ebbd81381c400950b29bb115bfb

SHA1
abf13480e706819cc483f3c761d8409875573df0

SHA256
b435500fd4f6aad5b8b08b0be53a29ba441b9088af8a2ddac2e99e847608680d

SHA512
3cd05f3d00b6dc77251c2f3f6fd9bd7d581511355ac8ca085ad30ca56c712bbdb0d07f6279eafd315bb7e0c12453e3deb37a627ba68a30ed25f21e25d3c567d1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
6efa1bc8c649f505ca15c22098072fe2

SHA1
d35bcb477e15f040ba8f00dfc3f2392603bde1e8

SHA256
462594d6f03d4b3ba9bea95df8a265d5d82c6c77016066d1656436997794cbb7

SHA512
08a75d7b0e7e283886248f314c4a3965fe90aa65a9664c088ecdc5a39ea5f4fe642b024b6b69d0fb29662a5ecdb538b614c7feaff06bff3178800eef2932b239

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
2ef19344f70e121e052d4a55d0b5eab1

SHA1
fe2a9f6821dc9d4350d68011db837884668cbdf2

SHA256
af6e55a7266f5b9a0832fb62611710d523f36e680186f8714e68b287c29b16cc

SHA512
2e602a54011d2eed7d56d0ad89341a84f8c734b383357dd2a76863e518531110a2e7eef44fe9d226f8891f72fcadd317b1234c82834bdd4884278408fde42f1e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
9f7d74950f2c4298edbdc85d6594f120

SHA1
50aca9b9c95bc978946c00c63f2b4d763afdaff9

SHA256
bb6ee2ab54e6015e4d6e880b492e87b3e2830fb743eb2e35fe635228ddca8e2e

SHA512
2354249171b104ac78f4b9f975af45c1867a5d4c4700b3ca1ef1136cc24fe656fba13b78ca9fe72fae54f360219b29963e7490669f74a384a16e5e7c4d85a734

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
0b46f284e78c612a00efcc4f2b8a4d69

SHA1
b942616b2b84c1c1fdda23574ea34b360cad1022

SHA256
ee693c27a790ed356ead572ec5d930fda4bc83282a2ce41febfe502932f1f32c

SHA512
2243fb188c0e4f648e44cd46508eb111a6903ff99050c2eeec2de5f2ec3100885ce098801025a14a34af4412fcbc28448110441597efbfd39cdb142a63070435

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
874B

MD5
0ea2205b1a8b377163d68d50aae3254d

SHA1
5cbd25a19d2218feedb684aeb1b25fbb89b8813e

SHA256
3a8f162ce58c7c3d65e920132f6e0811cd4bd3001f205e4622cc4de7d5547b4a

SHA512
1c13441af482d3cff489057ec37326ccd55082055db6996a021cf3c3d2a897a2db9ef28f6d907482a504801b29fef5f4fc1a2cb40776c6e0576248ddeb408531

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe582c0c.TMP

Filesize
874B

MD5
2c7e0aa82678387ca8425504c70ec773

SHA1
a0c51d6571002fcda9003e83f46dcb5945bdd735

SHA256
98d56d1b64b71a4768f90798110b99cc407e5350d2831b82809a94fab210f89d

SHA512
5eff3576cf1b0d8a19cdf20930484653e86094c57ad53f0fabfcab4d3deaab7683463eb3a821a3a7096a6fab6d52336eb5dce5b441c8627c2f8ebddb5c430ffe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
19ca1e42c9d081b1e1208e6229b7e93a

SHA1
2602af0a68a50dc1016781a4ed00a273accde506

SHA256
e6d1f1dffd94c54a4e32487b81e400c78285e5678cf0f6f39930567a749d4e06

SHA512
27ece1f39893008cc9dd26f733c18b1a4ba00dbbe412bdbca191ebb2fc2fff2fb6ecaddc9bd1716341b8791ff02a9695ab09f6c38a9f854534e82d01ff2cfa96

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
12cb5f23deb34baffad4dae76d47ed29

SHA1
ac69b52315aadd1ca76e8489c6c150d460f079eb

SHA256
97a1c1701c24ad304057451f7df6ad4fb0ac3e2473bc4d4f406c949d417b9458

SHA512
f5a0ee90d805bb31398567d8956ead77bd92a8b4aac67b6d8edd539b7f0ee61785d2cfcef53f6f3313f7180bee036c4143a1b9c114aedec30ac5d96bb7decbae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
59aecc73954a488f7d17a61fafac876a

SHA1
b6e6ca6244e928889db447ace0912d30fe871e34

SHA256
2d8127aae9b470993aa676bd9ab8ce8be8d4bb829c51a98861708945063b0c42

SHA512
88c2425be751216f8aaefb7c4a9f0617ef69046132812b7b2da3d69ddc4552228f164e7cfe8350b930b6892344573387cd6d1294ecdb339e7866fb2e6e8f91d3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db

Filesize
14KB

MD5
cd391b4c46b67abdb1f39b1849dfd822

SHA1
84fc7646687458e29d8da08a839871d47e152a15

SHA256
4ea0589d177407c245a2b77042af3813cd320a200e455593746da8667845015c

SHA512
66d7212f11e0e8f68e5f4a786cd05f553a63ce0b008dfc36156b61d08047038cc3849d774e7fb40540d77512e8efbb66ddba4a4afe7d15de75f7f459810492ce

Download Submit
C:\Users\Admin\AppData\Local\Temp\dmIXD6z6Aqtg.bat

Filesize
222B

MD5
0f8c09c0c5f1fa0aa80676bea152f695

SHA1
b863c89e56c38149c381e88189bbbb258e3df8e9

SHA256
062f26d0f81ea97a97625d34c0a59ce2d962d6223785ceb6b548e7f9dc604cd6

SHA512
fc718220dfbcbd352f3ec4bbf6b5e3c70ec2eaccb666ac6ddf8ee6a77fb3dccd979a846d0aaa3383704aae2ee44c97f730ebd949430d5ba89d61152e5b30ea40

Download Submit
C:\Users\Admin\Downloads\JJSPLOIT.V2.exe:Zone.Identifier

Filesize
26B

MD5
fbccf14d504b7b2dbcb5a5bda75bd93b

SHA1
d59fc84cdd5217c6cf74785703655f78da6b582b

SHA256
eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913

SHA512
aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 367374.crdownload

Filesize
1.2MB

MD5
27c7ecce8b355249bcc2457e2cdc9625

SHA1
3aa7b1e295565016a1f50203391da4796e55036b

SHA256
62be94b89bc9b669901640972ef2744db5c5fdbc2ffa6ee809507a16577695d4

SHA512
63f8017c5991619ef0f81a62ed5263745366b93f3dc15146707c5c376fb446f999e4a30cd6613106a20c5dc7155df2b6b63ed9fd715e461f016b9f7864a5f0c9

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 66597.crdownload

Filesize
3.1MB

MD5
d4a776ea55e24d3124a6e0759fb0ac44

SHA1
f5932d234baccc992ca910ff12044e8965229852

SHA256
7ef4d0236c81894178a6cfc6c27920217bea42a3602ad7a6002834718ba7b93c

SHA512
ba9127f7f84e55a37e4eb1dc1a50d10ef044f0b24a23d451187c8d1dedec26d3a37cf78e8763b351ef1e492e26b1ef9b28fc2331591ce1b53c3d76369d100f4b

Download Submit
memory/2220-237-0x0000000000A80000-0x0000000000DA4000-memory.dmp

Filesize
3.1MB

Download
memory/3368-658-0x000000001C430000-0x000000001C958000-memory.dmp

Filesize
5.2MB

Download
memory/3368-621-0x000000001BD40000-0x000000001BDF2000-memory.dmp

Filesize
712KB

Download
memory/3368-620-0x00000000028E0000-0x0000000002930000-memory.dmp

Filesize
320KB

Download

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request