cryptolocker | hxxp://malware files github

Resubmissions

09/01/2025, 16:56 UTC

250109-vf7g7avmfz 10

09/01/2025, 16:56 UTC

250109-vf2xpsvmfw 1

09/01/2025, 16:51 UTC

250109-vc55ysxjgp 10

Analysis

max time kernel
264s
max time network
268s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
09/01/2025, 16:51 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://malware files github

Score

10^/10

cryptolocker discovery evasion persistence ransomware

Malware Config

Signatures

CryptoLocker
Ransomware family with multiple variants.
ransomware cryptolocker
Cryptolocker family
cryptolocker
Disables Task Manager via registry modification
evasion

Executes dropped EXE 2 IoCs

pid	Process
4676	{34184A33-0407-212E-3320-09040709E2C2}.exe
3772	{34184A33-0407-212E-3320-09040709E2C2}.exe

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\CryptoLocker = "C:\\Users\\Admin\\AppData\\Roaming\\{34184A33-0407-212E-3320-09040709E2C2}.exe"	{34184A33-0407-212E-3320-09040709E2C2}.exe

Enumerates connected drives 3 TTPs 23 IoCs

Attempts to read the root path of hard drives other than the default C: drive.

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

description	ioc	Process
File opened (read-only)	\??\I:	ChilledWindows.exe
File opened (read-only)	\??\R:	ChilledWindows.exe
File opened (read-only)	\??\Y:	ChilledWindows.exe
File opened (read-only)	\??\T:	ChilledWindows.exe
File opened (read-only)	\??\U:	ChilledWindows.exe
File opened (read-only)	\??\Z:	ChilledWindows.exe
File opened (read-only)	\??\A:	ChilledWindows.exe
File opened (read-only)	\??\B:	ChilledWindows.exe
File opened (read-only)	\??\M:	ChilledWindows.exe
File opened (read-only)	\??\N:	ChilledWindows.exe
File opened (read-only)	\??\S:	ChilledWindows.exe
File opened (read-only)	\??\O:	ChilledWindows.exe
File opened (read-only)	\??\P:	ChilledWindows.exe
File opened (read-only)	\??\Q:	ChilledWindows.exe
File opened (read-only)	\??\E:	ChilledWindows.exe
File opened (read-only)	\??\G:	ChilledWindows.exe
File opened (read-only)	\??\J:	ChilledWindows.exe
File opened (read-only)	\??\K:	ChilledWindows.exe
File opened (read-only)	\??\L:	ChilledWindows.exe
File opened (read-only)	\??\V:	ChilledWindows.exe
File opened (read-only)	\??\H:	ChilledWindows.exe
File opened (read-only)	\??\W:	ChilledWindows.exe
File opened (read-only)	\??\X:	ChilledWindows.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 6 IoCs

Web Service

T1102

flow	ioc
77	raw.githubusercontent.com
78	camo.githubusercontent.com
79	camo.githubusercontent.com
80	camo.githubusercontent.com
75	camo.githubusercontent.com
76	raw.githubusercontent.com

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

System Location Discovery: System Language Discovery 1 TTPs 3 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	CryptoLocker.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	{34184A33-0407-212E-3320-09040709E2C2}.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	{34184A33-0407-212E-3320-09040709E2C2}.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Kills process with taskkill 4 IoCs

evasion

pid	Process
1392	taskkill.exe
3424	taskkill.exe
2560	taskkill.exe
3548	taskkill.exe

Modifies registry class 2 IoCs

description	ioc	Process
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-940901362-3608833189-1915618603-1000\{CE608085-52DB-4B49-8AEE-BA50DB749A1D}	ChilledWindows.exe
Key created	\REGISTRY\USER\S-1-5-21-940901362-3608833189-1915618603-1000_Classes\Local Settings	msedge.exe

Suspicious behavior: EnumeratesProcesses 12 IoCs

pid	Process
2456	msedge.exe
2456	msedge.exe
1596	msedge.exe
1596	msedge.exe
212	identity_helper.exe
212	identity_helper.exe
2780	msedge.exe
2780	msedge.exe
3596	msedge.exe
3596	msedge.exe
3596	msedge.exe
3596	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 21 IoCs

pid	Process
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe

Suspicious use of AdjustPrivilegeToken 12 IoCs

description	pid	Process
Token: SeShutdownPrivilege	3824	ChilledWindows.exe
Token: SeCreatePagefilePrivilege	3824	ChilledWindows.exe
Token: 33	3960	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	3960	AUDIODG.EXE
Token: SeShutdownPrivilege	3824	ChilledWindows.exe
Token: SeCreatePagefilePrivilege	3824	ChilledWindows.exe
Token: SeShutdownPrivilege	3824	ChilledWindows.exe
Token: SeCreatePagefilePrivilege	3824	ChilledWindows.exe
Token: SeDebugPrivilege	3424	taskkill.exe
Token: SeDebugPrivilege	1392	taskkill.exe
Token: SeDebugPrivilege	2560	taskkill.exe
Token: SeDebugPrivilege	3548	taskkill.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe
1596	msedge.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1596 wrote to memory of 4952	1596	msedge.exe	83
PID 1596 wrote to memory of 4952	1596	msedge.exe	83
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 64	1596	msedge.exe	84
PID 1596 wrote to memory of 2456	1596	msedge.exe	85
PID 1596 wrote to memory of 2456	1596	msedge.exe	85
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86
PID 1596 wrote to memory of 4664	1596	msedge.exe	86

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument http://malware files github
1⤵
- Enumerates system info in registry
- Modifies registry class
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1596
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd426a46f8,0x7ffd426a4708,0x7ffd426a4718
  2⤵
  PID:4952
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2088 /prefetch:2
  2⤵
  PID:64
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2156 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2456
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2668 /prefetch:8
  2⤵
  PID:4664
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3256 /prefetch:1
  2⤵
  PID:4824
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3264 /prefetch:1
  2⤵
  PID:3408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3976 /prefetch:1
  2⤵
  PID:232
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3720 /prefetch:1
  2⤵
  PID:2412
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5072 /prefetch:8
  2⤵
  PID:552
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5072 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:212
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3512 /prefetch:1
  2⤵
  PID:2028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3544 /prefetch:1
  2⤵
  PID:388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5360 /prefetch:1
  2⤵
  PID:3892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5660 /prefetch:1
  2⤵
  PID:4548
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5792 /prefetch:1
  2⤵
  PID:4324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5768 /prefetch:1
  2⤵
  PID:2220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5848 /prefetch:1
  2⤵
  PID:3572
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5624 /prefetch:1
  2⤵
  PID:4860
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5880 /prefetch:1
  2⤵
  PID:3388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4156 /prefetch:1
  2⤵
  PID:5104
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6100 /prefetch:1
  2⤵
  PID:3572
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4020 /prefetch:1
  2⤵
  PID:2544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5220 /prefetch:1
  2⤵
  PID:872
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5544 /prefetch:1
  2⤵
  PID:4340
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6156 /prefetch:1
  2⤵
  PID:552
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5268 /prefetch:8
  2⤵
  PID:2412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4796 /prefetch:1
  2⤵
  PID:4384
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6472 /prefetch:8
  2⤵
  PID:5088
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6424 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2780
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6412 /prefetch:1
  2⤵
  PID:1480
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2064,16892461525917314105,10886968957987123728,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3932 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:3596

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2036

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2380

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x300 0x308
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:3960

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:3688

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Ransomware\CryptoLocker.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Ransomware\CryptoLocker.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:1392
- C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe
  "C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe" "/rC:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Ransomware\CryptoLocker.exe"
  2⤵
  - Executes dropped EXE
  - Adds Run key to start application
  - System Location Discovery: System Language Discovery
  PID:4676
- - C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe
    "C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe" /w0000021C
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:3772

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Joke\ChilledWindows.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Joke\ChilledWindows.exe"
1⤵
- Enumerates connected drives
- Modifies registry class
- Suspicious use of AdjustPrivilegeToken
PID:3824

C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Joke\Trololo.exe
"C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Joke\Trololo.exe"
1⤵
PID:3864
- C:\Windows\SYSTEM32\taskkill.exe
  taskkill.exe /f /im explorer.exe
  2⤵
  - Kills process with taskkill
  - Suspicious use of AdjustPrivilegeToken
  PID:1392
- C:\Windows\SYSTEM32\taskkill.exe
  taskkill.exe /f /im taskmgr.exe
  2⤵
  - Kills process with taskkill
  - Suspicious use of AdjustPrivilegeToken
  PID:3424
- C:\Windows\SYSTEM32\taskkill.exe
  taskkill.exe /f /im explorer.exe
  2⤵
  - Kills process with taskkill
  - Suspicious use of AdjustPrivilegeToken
  PID:2560
- C:\Windows\SYSTEM32\taskkill.exe
  taskkill.exe /f /im taskmgr.exe
  2⤵
  - Kills process with taskkill
  - Suspicious use of AdjustPrivilegeToken
  PID:3548

Network

DNS

241.150.49.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

241.150.49.20.in-addr.arpa

IN PTR

Response
DNS

google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

google.com

IN A

Response

google.com

IN A

142.250.180.14
DNS

google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

google.com

IN A

Response

google.com

IN A

142.250.180.14
DNS

136.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

136.32.126.40.in-addr.arpa

IN PTR

Response
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
GET

https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&oit=0

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&oit=0 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 268
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb0e7514916b3331532de55824f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Qu6jduvQQm8RuIKmFIotG+zVn+vCspEzEQkJfGGy7yY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:00 GMT
set-cookie: MUID=0B94BEEBBDA166452074AB84BC6067E6; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0B94BEEBBDA166452074AB84BC6067E6; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=34AC5BB3B91A6F2504344EDCB8DB6E41; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=DB48F44F212445EEAD173FBE9C30AAA4&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:00 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=34AC5BB3B91A6F2504344EDCB8DB6E41; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441520.27a69fa
GET

https://www.bing.com/qbox?query=malware%2520files%25&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=5ee92e4f871443a984853956a3cb6e49&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%2520files%25&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=5ee92e4f871443a984853956a3cb6e49&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 119
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb13a4b478b9c24af2a78bf38f6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pCqZbMJN+MyGUaFQ7R4jg9AjaHrrA1ZSqW0+RipHWXI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:01 GMT
set-cookie: MUID=092B48DE0B10686708E85DB10AFE691B; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=092B48DE0B10686708E85DB10AFE691B; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=20D17F695D5168A9332B6A065CBF69B0; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=28C6C42132984C97B165A73D181CE95C&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:01 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=20D17F695D5168A9332B6A065CBF69B0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441521.27a6ddd
GET

https://www.bing.com/qbox?query=malware%2520files&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=f9ee678947114d979192326195e94f7d&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%2520files&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=f9ee678947114d979192326195e94f7d&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 115
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb26c7f42adb5dac2f65c60d46e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-uatD4rSzmZCA97oyPR32TMQqO0+0qPFBfvJkk80B4as='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:02 GMT
set-cookie: MUID=134A961BD00F67F13DBC8374D14566C8; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=134A961BD00F67F13DBC8374D14566C8; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=08DE7AF38AE96547195E6F9C8BA36494; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=2EA544D2640E47D3AA40AE06975D503A&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:02 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=08DE7AF38AE96547195E6F9C8BA36494; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441522.27a70a9
GET

https://www.bing.com/qbox?query=malware%2520fil&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=3d60d97c55c3430d83368fd32019a7a6&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%2520fil&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=3d60d97c55c3430d83368fd32019a7a6&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 157
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb36c8d4b46bd9b6579af3cd9a0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZxtmKIqUHFOwVhBt3bnCk8kFEfQ+JBkrQxv615olmfI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:03 GMT
set-cookie: MUID=39F2B66FA6FD69030673A300A7F768AC; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=39F2B66FA6FD69030673A300A7F768AC; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=32677B294E99603126856E464F93610A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8F273D0637FE40B484B9AE7D46AF5566&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=32677B294E99603126856E464F93610A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441523.27a741b
GET

https://www.bing.com/qbox?query=malware%2520fi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=794bb2098a3b447d93d59212165691f7&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%2520fi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=794bb2098a3b447d93d59212165691f7&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 289
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb3cada4347bfb5481cbc49dc59
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-evb40SvQ88SA7K+tvdZyxh4HKgS63BG6L2CvI4jwNBw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:03 GMT
set-cookie: MUID=14AD9BB7FB7A64952F728ED8FAA4656A; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=14AD9BB7FB7A64952F728ED8FAA4656A; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=25B4C3A6C199642B068DD6C9C04765C0; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=28662D471721466782340A10BB4474E8&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=25B4C3A6C199642B068DD6C9C04765C0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441523.27a74cb
GET

https://www.bing.com/qbox?query=malware%2520f&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=24909c54ecab41a0a788dcdc0d432299&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%2520f&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=24909c54ecab41a0a788dcdc0d432299&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 261
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb3f8084067a16d0b9aef031c3d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZMXb/7vJf7Fj5vTfe3q3D/itIf7dj9YXNmaQ7N9HpYc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:03 GMT
set-cookie: MUID=3343ED0E1404602B3CFEF86115DF616A; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3343ED0E1404602B3CFEF86115DF616A; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3C7ED24E4B1E61853FEEC7214AC56098; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=85B243DD40244F76815391B0AC8C59D2&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3C7ED24E4B1E61853FEEC7214AC56098; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441523.27a75ac
GET

https://www.bing.com/qbox?query=malware%2520&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=470df0f683ef454fb0f4ab3fb3e085ef&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%2520&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=470df0f683ef454fb0f4ab3fb3e085ef&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 277
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb3b81a404ebf03ce45bb69da45
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-b9leExu3JRfwOgrO/fB9R0DqRyd/76v2QdrFUt2RWBI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:03 GMT
set-cookie: MUID=0375BE2C052967A42D45AB430496669A; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0375BE2C052967A42D45AB430496669A; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=06371914D5576E5527480C7BD4E86F6B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=88A55A34A60548FB98B1BBC8F7987956&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=06371914D5576E5527480C7BD4E86F6B; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441523.27a761e
GET

https://www.bing.com/qbox?query=malware%252&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=71b21f1b912845b88edc3467cb8ebeac&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%252&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=71b21f1b912845b88edc3467cb8ebeac&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 381
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb3f45f4d5b8d6852287f3004b5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-exuUZf+dZ8Mm8motioHJ2VFBZFgNMxq62ysrAfzlbME='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:03 GMT
set-cookie: MUID=3243737BC264681208CE6614C30A69AC; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3243737BC264681208CE6614C30A69AC; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=01805FB5CB376F0F10594ADACA596EFC; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=40E22919BED845709D8D1BCD82EAC7E2&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:03 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=01805FB5CB376F0F10594ADACA596EFC; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441523.27a7687
GET

https://www.bing.com/qbox?query=malware%25&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=0792ffd40bb34a81af490437bfab72d8&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware%25&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=0792ffd40bb34a81af490437bfab72d8&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 390
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb451c54bb3a25de6224a10cf92
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-v4VWsxLIUoFs2PaMVM6tFJVGk2Fsdl5ZMgET73g9oqc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:04 GMT
set-cookie: MUID=3DC30D8E04A86142304918E105B0605D; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3DC30D8E04A86142304918E105B0605D; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=152AB79062CD65560DA1A2FF63D564E7; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=74908C3EE5884C74A01D942DADDAFD06&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=152AB79062CD65560DA1A2FF63D564E7; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441524.27a77c5
GET

https://www.bing.com/qbox?query=malware&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=7a5fb9cffe97459e9f95380fabf6d66b&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=7a5fb9cffe97459e9f95380fabf6d66b&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 190
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb4489b4b599130f1c50f476696
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-w0RGP7gJi76VSw4alMd9+i62Up9+IEyR5AvUGnd7Cls='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:04 GMT
set-cookie: MUID=3494809E24CC6EFE376295F125FB6F06; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3494809E24CC6EFE376295F125FB6F06; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=07FB349A883A6DF40A1A21F5890D6C6A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=055BE1E3F9C248008D2BB755029E323B&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:04 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=07FB349A883A6DF40A1A21F5890D6C6A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441524.27a7953
GET

https://www.bing.com/qbox?query=malwar&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=42d207234f374e24a6a689d52a1c6d85&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malwar&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=42d207234f374e24a6a689d52a1c6d85&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 390
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb5e00e4579a42ed82847389b51
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-quTFnVWzvC0GXidhW6C2CdSRGWVG0HCwFYdXQj7wyb8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:05 GMT
set-cookie: MUID=2201E7CC9B5F63C83D2FF2A39A816264; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2201E7CC9B5F63C83D2FF2A39A816264; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0ACBDAB5822467033017CFDA83FA66ED; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=EE09BC13C3384374BBA86B7B5313DFFF&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0ACBDAB5822467033017CFDA83FA66ED; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441525.27a7aa8
GET

https://www.bing.com/qbox?query=malwarw&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a60b0069b501401f96bb2d9aed9331d2&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malwarw&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a60b0069b501401f96bb2d9aed9331d2&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 381
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb54492432db216ff51fb270ccd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Fp04rT+WOSC1K3Wsv5j6NFy40DQhZ1378lmJjzwSzMQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:05 GMT
set-cookie: MUID=19B58B20467166DF11CC9E4F476E6744; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=19B58B20467166DF11CC9E4F476E6744; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0CF7B505C4746A7120FCA06AC56B6BDD; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=EFBD348EB5E74D96A083631EFDEFC4EE&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0CF7B505C4746A7120FCA06AC56B6BDD; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441525.27a7b1f
GET

https://www.bing.com/qbox?query=malwar&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a23a52a4921a4dac8c431bbf525df702&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malwar&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a23a52a4921a4dac8c431bbf525df702&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 280
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb53f2b4fb0ad01be1e49fe12a2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-8mGysFjXZYsfANhHdiAGDsgZH2IW5cqMtZStaY4YSak='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:05 GMT
set-cookie: MUID=2425B48DFE756F631B9FA1E2FFCF6E6B; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2425B48DFE756F631B9FA1E2FFCF6E6B; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=30E24C7A2AE06D75021159152B5A6C5C; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=C09E5B20C1CC4415880975904289C34E&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=30E24C7A2AE06D75021159152B5A6C5C; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441525.27a7b7c
GET

https://www.bing.com/qbox?query=malware&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=e9985928002647c6b49b58f19fa7973d&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=e9985928002647c6b49b58f19fa7973d&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 274
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb5e2ad4a08b7d6f7bd2275d9bd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-s2FH30irYxS4L/prPLCcYTmsFtIuCzgaVDCxBQwwqjc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:05 GMT
set-cookie: MUID=201E306E86D6608628222501875461EC; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=201E306E86D6608628222501875461EC; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=30E296D1595E6A103D4183BE58DC6B72; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=99AABE9D9B3B4F9F812E6915E4FCF049&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=30E296D1595E6A103D4183BE58DC6B72; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441525.27a7be4
GET

https://www.bing.com/qbox?query=malware+&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=83183ccf2dee4ae5990637dfcdae4347&oit=1&cp=8&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=83183ccf2dee4ae5990637dfcdae4347&oit=1&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 277
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb536564b0fa98a1c670b8e0f9b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6Cuz7KkTTCTBJc2zWCQOE6Pe5ZzOHWM/ulMlaypKckc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:05 GMT
set-cookie: MUID=272CAF1C752466240A0DBA7374366703; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=272CAF1C752466240A0DBA7374366703; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=317531FB5E196D3B180924945F0B6C15; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=3DA442425539445E911DB2EB5A882E69&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=317531FB5E196D3B180924945F0B6C15; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441525.27a7c30
GET

https://www.bing.com/qbox?query=malware+f&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=b66dbb1c10c64841acf89018813e8af7&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+f&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=b66dbb1c10c64841acf89018813e8af7&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 295
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb5106a49a5b193089ebf0406d0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-z0Q0gdujc/OyPddgN4w8rXaRBPG1xXuGwI1KwfvhLvQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:05 GMT
set-cookie: MUID=109C73693044608013A5660631766150; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=109C73693044608013A5660631766150; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0A5640A46C446C58252355CB6D766D4C; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=BC518FFB1EC9434DA94DD46E49A811F5&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:05 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0A5640A46C446C58252355CB6D766D4C; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441525.27a7cff
GET

https://www.bing.com/qbox?query=malware+fi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=e07a58a98d2f46a48b67b003dc12438d&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+fi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=e07a58a98d2f46a48b67b003dc12438d&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 299
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb6984f4595999f1d4a29316b04
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-M2fqPRzGJKcD2KVYxTkwMNVtSWdtKZAqYEqWa4J2Oo4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:06 GMT
set-cookie: MUID=2A5AE09158FF69191CA4F5FE599068EE; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2A5AE09158FF69191CA4F5FE599068EE; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2CE57C1719C361312897697818AC604C; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=D5A8E8C124B043779A193C7951005664&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2CE57C1719C361312897697818AC604C; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441526.27a7da9
GET

https://www.bing.com/qbox?query=malware+fil&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=ef3a49eb634d4a66829776abc3fa93cb&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+fil&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=ef3a49eb634d4a66829776abc3fa93cb&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 295
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb6a5de49f9b41b54bf3f37e038
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qHmN67wkxnCmZSuBeIIX9R3H6asHZLz8eNjzRBFUoDI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:06 GMT
set-cookie: MUID=3A161FA2057160D837980ACD0416619F; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3A161FA2057160D837980ACD0416619F; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=217C87E19AAD6CE83372928E9BCA6D45; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=1EB7D205DAD34ED487BFA673E12DF58A&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=217C87E19AAD6CE83372928E9BCA6D45; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441526.27a7f73
GET

https://www.bing.com/qbox?query=malware+file&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=39c16052bd804486b1bed2627f21d088&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+file&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=39c16052bd804486b1bed2627f21d088&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 199
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb6bf3842889c6c320622e92028
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-nS9ubvqKdYMDNH4gxbl7zcs/p488uZfpJGEJPMuJOW4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:06 GMT
set-cookie: MUID=040184CE6031691F212D91A161BB68CE; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=040184CE6031691F212D91A161BB68CE; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0EA2FF4205176FF7231EEA2D049D6E9B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=309CA4679C20425FB3F46E953DA8CB69&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0EA2FF4205176FF7231EEA2D049D6E9B; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441526.27a7fee
GET

https://www.bing.com/qbox?query=malware+files&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a88cc0a21ca641c1b2cf8cb03292900a&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a88cc0a21ca641c1b2cf8cb03292900a&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 145
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb6643345ff83e2d5522ea59f44
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7H5Ko2GdUnoxkjIgHxuzOYd//BGICkttwvgLDD0imEM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:06 GMT
set-cookie: MUID=3D123A9720706E5608AD2FF821826FB6; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3D123A9720706E5608AD2FF821826FB6; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=20EED0192EB5633606FCC5762F476215; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8C86C32DC3724E49846F956E34C2698C&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=20EED0192EB5633606FCC5762F476215; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441526.27a8085
GET

https://www.bing.com/qbox?query=malware+files+&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=6b1dbe41c20e4f0ab40b9cf503735922&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=6b1dbe41c20e4f0ab40b9cf503735922&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 145
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb608c5475481953201dd664804
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-sH3ad53fNbh1yGe94b5A9iGbrIrY8aKTZtKqSCcUMd8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:06 GMT
set-cookie: MUID=2C39C37E13A268FA37FAD6111277690C; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2C39C37E13A268FA37FAD6111277690C; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=11BA3B2985A06DE42C572E4684756CCE; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=4B16574F29A3466897EF0E18DA4F72F9&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:06 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=11BA3B2985A06DE42C572E4684756CCE; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441526.27a80f3
GET

https://www.bing.com/qbox?query=malware+files+g&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=45db69da07bc47239a05b996dea8d397&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+g&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=45db69da07bc47239a05b996dea8d397&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 145
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb7179e4940b069de2733bad46c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7vHsVVg9Nl0N/t17T0WvEHBGnWmP3bDPkiI9vxiOOw0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:07 GMT
set-cookie: MUID=247487BF259E6D9B0DCE92D024DD6CCE; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=247487BF259E6D9B0DCE92D024DD6CCE; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=05B2B1234FD067DB344DA44C4E93663E; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=AB71EE56FEB9479B8BFE7EB5870ECBCD&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=05B2B1234FD067DB344DA44C4E93663E; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8276
GET

https://www.bing.com/qbox?query=malware+files+gi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=d4506189829f4552b13fc48c4588a6eb&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+gi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=d4506189829f4552b13fc48c4588a6eb&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Thu, 09 Jan 2025 16:51:07 GMT
vary: Accept-Encoding
x-eventid: 677ffeb7a5de4d1aa3b484710b4d0c0e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UVvqirtGMaGCQpnUhI31I//Qm5n8UN9wcXzvStCFFK4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Thu, 09 Jan 2025 16:52:07 GMT
set-cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250109; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:07 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8305
set-cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg; Domain=.bing.com; Path=/; Expires=Thu, 09 Jan 2025 18:52:07 GMT; Max-Age=7200
GET

https://www.bing.com/qbox?query=malware+files+git&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=c56cdf85fc3c40ebac7d34e12fb90f78&oit=4&cp=17&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+git&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=c56cdf85fc3c40ebac7d34e12fb90f78&oit=4&cp=17&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 67601b514a794596bc0f51e79662f334
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pElm+CU2k4Hr8Nj0miteYMzb1sRx81JgBMxb62ONWG8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8397
GET

https://www.bing.com/qbox?query=malware+files+gith&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=dd394a17136a4340aeae468f19245aac&oit=4&cp=18&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+gith&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=dd394a17136a4340aeae468f19245aac&oit=4&cp=18&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 674f25384d934917bebff6d8d28459e2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-vykrJTcs8zY4FGIopCYP40g10yPJ8eLRGmvQwWkuRYU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a839e
GET

https://www.bing.com/qbox?query=malware+files+githu&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=0258f06f0ddf441585907fae93057311&oit=4&cp=19&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+githu&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=0258f06f0ddf441585907fae93057311&oit=4&cp=19&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:53:27 GMT
etag: 0x8DCDC6597B401F0
cache-control: public, no-transform, max-age=155547
expires: Sat, 11 Jan 2025 08:50:40 GMT
akamai-grn: 0.4c1a1202.1736429893.8e47624f
timing-allow-origin: *
akamai-amd-bc-debug: [a=92.122.211.94,b=2228230919,c=c,d=1732605900,h=304,k=1,l=8,n=GB_EN_LONDON,o=20940,r=9]
content-length: 9310
content-type: image/png
content-md5: GUexVzkiHrDbJxwd2PleRg==
x-ms-request-id: 490b4d38-e01e-005f-1926-15186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a83bf
GET

https://www.bing.com/qbox?query=malware+files+github&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=b99de4087ade40e09dbe4bf1d650b9ab&oit=4&cp=20&pgcl=4

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /qbox?query=malware+files+github&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=b99de4087ade40e09dbe4bf1d650b9ab&oit=4&cp=20&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8514
GET

https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a856a
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

expires: Thu, 09 Jan 2025 18:35:11 GMT
last-modified: Wed, 20 Nov 2024 06:08:31 GMT
etag: 0x8DD0929C20E3B35
cache-control: public, no-transform, max-age=46056
x-ms-request-id: 606b4f7f-501e-0020-5871-61865c000000
x-ms-version: 2009-09-19
access-control-allow-origin: *
akamai-grn: 0.521a1202.1736301960.618f744f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: JK6htLKQ1ICDGtJL4pV2vA==
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: gzip
content-length: 7546
vary: Accept-Encoding
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8571
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8568
GET

https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441527.27a8569
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C3%3A2%2C2%3A3%2C4%3A4%2C5%3A5%2C6%3A6%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C3%3A2%2C2%3A3%2C4%3A4%2C5%3A5%2C6%3A6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Wed, 13 Nov 2024 18:09:46 GMT
vary: Accept-Encoding
x-ms-request-id: 9870385d-001e-0007-3e6c-620be8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20250109T080000Z-18576787c452csvbhC1DB1suqw00000014fg00000000en94
x-fd-int-roxy-purgeid: 0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 677f820093e64c0fb0337e26a83ec717|AFD:677f820093e64c0fb0337e26a83ec717|2025-01-09T08:00:00.860Z
content-length: 48833
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a85b9
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

expires: Thu, 28 Nov 2024 10:42:30 GMT
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
cache-control: public, no-transform, max-age=314721
akamai-grn: 0.a3777b5c.1728974494.ceaeeaa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 1d60634c-401e-0052-2736-1bf762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a85c1
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:349,%22SE%22:-1,%22TC%22:-1,%22H%22:418,%22BP%22:446,%22CT%22:451,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,4228,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:349,%22SE%22:-1,%22TC%22:-1,%22H%22:418,%22BP%22:446,%22CT%22:451,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,4228,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffeb84ec84617996cc8944c587784
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-uzh/WnGamHcZSIBtpD+2SIZbeG0TLdot9MJt42tbsCY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 4075967C09934AE8A860BFF589C446E4 Ref B: LON601060101062 Ref C: 2025-01-09T16:52:08Z
date: Thu, 09 Jan 2025 16:52:08 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:08 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:08 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:08 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a85cf
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8627
GET

https://www.bing.com/rp/-EIZevjHcUrHpzs-pSkHp48FtP0.br.js

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /rp/-EIZevjHcUrHpzs-pSkHp48FtP0.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8625
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250109

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250109 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8624
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8623
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=1843F2E6FE8064990467E789FFBE652B

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=1843F2E6FE8064990467E789FFBE652B HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8626
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441526657%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441526657%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526672%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526674%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441526657%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441526657%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526672%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526674%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8706
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526676%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526676%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8739
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8741
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8768
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526678%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526679%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A497%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526678%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526679%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A497%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 16045
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffeb814784000904201bf34809381
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ENz00fmSemlcPMqN7SzQ0r9HLdMv6kKHpGatVHwrar8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:08 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8769
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526906%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441526909%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526906%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441526909%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a875e
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2220%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2220%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8767
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 771
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffeb8ae0d42b5b168cc529af51940
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-et7l+/StarH+VV9eDXDKny56rTH1L3q+BIJztGujzJs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffeb8ae0d42b5b168cc529af51940|AFD:677ffeb8ae0d42b5b168cc529af51940|2025-01-09T16:52:08.498Z
date: Thu, 09 Jan 2025 16:52:08 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a879a
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1082%2C%22time%22%3A1085%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441527076%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1082%2C%22time%22%3A1085%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441527076%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 995
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffeb83adc45d8baec46720017a36f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-e+DycWI5KbVA4Z1NPxDsvqzrJZcFvbQSbMWbMws2Z4A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffeb83adc45d8baec46720017a36f|AFD:677ffeb83adc45d8baec46720017a36f|2025-01-09T16:52:08.499Z
date: Thu, 09 Jan 2025 16:52:08 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Fri, 09-Jan-2026 16:52:08 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-09; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a87ac
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1085%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441527076%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1085%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441527076%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8869
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1086%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441527077%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1086%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441527077%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a886a
GET

https://www.bing.com/images/sbi?mmasync=1&ig=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /images/sbi?mmasync=1&ig=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a88e3
POST

https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a88ec
POST

https://www.bing.com/rewardsapp/reportActivity?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&IID=SERP.5066&q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/reportActivity?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&IID=SERP.5066&q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 165
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8913
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8906
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a893a
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a893f
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ1&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a88d5
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ0&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8940
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8939
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffeb81f1248b08c90dd2908d7b355
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZhcbzTePJt5BPYFExQ25m/PM8AVDcX7V/sJJRDQlty4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: C9D91A502667463CB0A92FD872F567F3 Ref B: LON601060103031 Ref C: 2025-01-09T16:52:08Z
date: Thu, 09 Jan 2025 16:52:08 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:08 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:08 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a893d
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736441527110%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441527123%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441527123%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441527142%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441527142%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527175%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527249%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441527376%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527490%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736441527110%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441527123%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441527123%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441527142%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441527142%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527175%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527249%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441527376%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527490%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a894c
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527490%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527490%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a8938
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a893c
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441527516%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441527516%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a893e
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441528.27a897b
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffeb973744e6f93941b685752719a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-kfix0BjPeHT4VpPIK+MFeZP+W5EWoRTnNd5pCnilR+U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 51740ED156D042C1A2626A6E7BB28B66 Ref B: LON601060101062 Ref C: 2025-01-09T16:52:09Z
date: Thu, 09 Jan 2025 16:52:09 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:09 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=213D47CD3C8F69AA2AF552A23DBE6870; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a89cb
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 236
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffeb936804a318b5d8d3346e51096
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9AYzKyf4oG8YrZXZBi6p2IjD0LbSMqMgsGO2xR3hyQY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: DF14D90BF26543F380CC343994B7B540 Ref B: LON601060101062 Ref C: 2025-01-09T16:52:09Z
date: Thu, 09 Jan 2025 16:52:09 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:09 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a8a6e
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a8c29
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.PPT&DATA={%22S%22:545,%22E%22:1395,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.PPT&DATA={%22S%22:545,%22E%22:1395,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a8cca
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441527554%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22693.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441527555%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221562.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441527555%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527587%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441527554%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22693.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441527555%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221562.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441527555%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527587%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a8d16
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffeb9fa2e4e87be1bc21c89e241e6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-1p09/d/yCLE2KTa/5k4HY8vV6Z24LuwN5l3aa8ka28E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a8d3b
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441529.27a8d56
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19581
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441530.27a8d98
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441530.27a8e68
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441530.27a8eb9
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441531.27a920d
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557

Response

HTTP/2.0 200

cache-control: no-cache
pragma: no-cache
content-length: 1
content-type: text/html
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffebc184f44b9b27db8bd4bc72b64
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-sT46IgLrDHlZPr/T+z+YUtGq7+nCRj3l/BT7s2ojdzo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A39B2C7AAF2E4CBCAE7FD9401E15B654 Ref B: LON601060108040 Ref C: 2025-01-09T16:52:12Z
date: Thu, 09 Jan 2025 16:52:12 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:12 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441532.27a9950
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441532.27a9a12
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441535.27aa2b5
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441535.27aa544
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 922
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441535.27aa573
GET

https://www.bing.com/notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441535.27aa5d2
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736441531416%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736441531417%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736441531416%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736441531417%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 677ffec1d7834879867a7a814bca53e6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Ww1XUBP/A3d248R/lHnRbw7Gf7bpMXfAOs9sHz0V1mo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 7B8921F4E5694AA6B9104842E4FEF0A0 Ref B: LON601060108040 Ref C: 2025-01-09T16:52:17Z
content-length: 0
date: Thu, 09 Jan 2025 16:52:17 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:17 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441537.27aae3b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1274
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1218
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8B214EDAEE914B07AC799774C140CC77 Ref B: LON601060103031 Ref C: 2025-01-09T16:52:17Z
date: Thu, 09 Jan 2025 16:52:17 GMT
set-cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:17 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441537.27aaed0
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441537.27aaee5
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 646b6003549b4c109953315b2aeed716
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 95D997C2825B44FFB677CEABAF07C339 Ref B: LON04EDGE1109 Ref C: 2023-06-03T00:01:02Z
date: Thu, 09 Jan 2025 16:52:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441537.27aaf25
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441537.27aaede
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ID=SERP,5209.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dd809398bf03f0d0c253ac1954d09d4306fdba8847c8dcef0b8b7255bcad031c8JmltdHM9MTczNjM4MDgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06%26psq%3Dmalware%2Bfiles%2Bgithub%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL1ZpcnVzLVNhbXBsZXMvTWFsd2FyZS1TYW1wbGUtU291cmNlcw%26ntb%3D1

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ID=SERP,5209.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dd809398bf03f0d0c253ac1954d09d4306fdba8847c8dcef0b8b7255bcad031c8JmltdHM9MTczNjM4MDgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06%26psq%3Dmalware%2Bfiles%2Bgithub%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL1ZpcnVzLVNhbXBsZXMvTWFsd2FyZS1TYW1wbGUtU291cmNlcw%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac740
GET

https://www.bing.com/ck/a?!&&p=d809398bf03f0d0c253ac1954d09d4306fdba8847c8dcef0b8b7255bcad031c8JmltdHM9MTczNjM4MDgwMA&ptn=3&ver=2&hsh=4&fclid=0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06&psq=malware+files+github&u=a1aHR0cHM6Ly9naXRodWIuY29tL1ZpcnVzLVNhbXBsZXMvTWFsd2FyZS1TYW1wbGUtU291cmNlcw&ntb=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /ck/a?!&&p=d809398bf03f0d0c253ac1954d09d4306fdba8847c8dcef0b8b7255bcad031c8JmltdHM9MTczNjM4MDgwMA&ptn=3&ver=2&hsh=4&fclid=0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06&psq=malware+files+github&u=a1aHR0cHM6Ly9naXRodWIuY29tL1ZpcnVzLVNhbXBsZXMvTWFsd2FyZS1TYW1wbGUtU291cmNlcw&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffec79ad84c46ab0b9e3f4dbe0959
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9fo7LoH2fZE6zH+rNLD76ic43bsBsTK+phD+4GFSNfU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: FCC7450B789343D7989ADBAB93447ABD Ref B: LON601060103031 Ref C: 2025-01-09T16:52:23Z
date: Thu, 09 Jan 2025 16:52:23 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:23 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:23 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac785
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1031
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac746
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac7e0
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac7ed
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:11,%22BC%22:11,%22SE%22:-1,%22TC%22:-1,%22H%22:175,%22BP%22:180,%22CT%22:182,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,4228,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:11,%22BC%22:11,%22SE%22:-1,%22TC%22:-1,%22H%22:175,%22BP%22:180,%22CT%22:182,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,4228,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac7ec
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 351
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac7e1
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=1843F2E6FE8064990467E789FFBE652B

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=1843F2E6FE8064990467E789FFBE652B HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac843
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac7eb
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541756%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541756%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac8ba
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac8e0
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac8ff
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541763%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541763%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A37%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541763%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541763%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A37%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac901
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441541922%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441541922%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 16047
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffec7a3e94eeca906118f418727bb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6YPUDIslm4xSC9wZ2rfUFViwXglCadkumiXEJ6qvwS8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac902
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2220%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2220%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 769
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffec794504d5d8ba60aade7a1a2f6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-oqJY2EbOctRsGei7DD8IsLjrbxc7RBJz2o0/n3YR2DE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffec794504d5d8ba60aade7a1a2f6|AFD:677ffec794504d5d8ba60aade7a1a2f6|2025-01-09T16:52:23.468Z
date: Thu, 09 Jan 2025 16:52:23 GMT
set-cookie: _C_ETH=1; expires=Wed, 08 Jan 2025 16:52:23 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac911
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 998
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffec7188f4dd4bd8a68599bf2caab
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5jmAwRYIvwL6U0/Ke78493zpe0WfY4ARiDD6kmKCbkg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffec7188f4dd4bd8a68599bf2caab|AFD:677ffec7188f4dd4bd8a68599bf2caab|2025-01-09T16:52:23.477Z
date: Thu, 09 Jan 2025 16:52:23 GMT
set-cookie: _C_ETH=1; expires=Wed, 08 Jan 2025 16:52:23 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Fri, 09-Jan-2026 16:52:23 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-09; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac91e
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541997%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A561%2C%22time%22%3A563%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441542073%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541997%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A561%2C%22time%22%3A563%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441542073%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac900
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A563%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441542073%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A563%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441542073%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac9e6
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A564%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441542074%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A564%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441542074%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27ac9f0
GET

https://www.bing.com/images/sbi?mmasync=1&ig=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /images/sbi?mmasync=1&ig=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27aca78
POST

https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27aca8b
POST

https://www.bing.com/rewardsapp/reportActivity?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&IID=SERP.5066&q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/reportActivity?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&IID=SERP.5066&q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 165
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27aca8a
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acab1
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acabb
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffec798a541fbb222b81e6cda4b2f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Uqapf/HHNgczn7rYqpDRtf95swb25iB0SezyruweWG8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A243E4FE7C424C25956A7E527F1150EC Ref B: LON601060104042 Ref C: 2025-01-09T16:52:23Z
date: Thu, 09 Jan 2025 16:52:23 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:23 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2CB42D5D0D4666E328D638320CD96772; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acac2
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ1&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acade
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ0&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acadf
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acae5
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acaef
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acae6
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736441542093%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441542101%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441542101%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441542118%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542135%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542227%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441542353%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542480%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736441542093%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441542101%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441542101%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441542118%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542135%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542227%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441542353%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542480%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acaf1
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542480%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542480%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffec7a846412390f443bf87762b85
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-H5scOZdo0gCwO7JtWoyhxfeVOHuRkUAo2WEDshvPcig='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 2025D2CD8811452483F6E15EED978AD0 Ref B: LON601060104042 Ref C: 2025-01-09T16:52:23Z
date: Thu, 09 Jan 2025 16:52:23 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:23 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:23 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acaf9
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acaf0
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:23 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acafe
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:24 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441543.27acb5c
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 235
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffec80abe4fc2972e3e6e05576651
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZrKKE2swIfCej+vYwl17xpN1JVg2u8tQCOXRDotPtOo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 312C74D9448F4429ABA0C1210FD4A561 Ref B: LON601060104042 Ref C: 2025-01-09T16:52:24Z
date: Thu, 09 Jan 2025 16:52:24 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:24 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441544.27acbfb
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:24 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441544.27ace22
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441544.27acfb5
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.PPT&DATA={%22S%22:229,%22E%22:987,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.PPT&DATA={%22S%22:229,%22E%22:987,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165208
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad03c
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441542599%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22255.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441542601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221088.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441542601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542624%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441542599%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22255.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441542601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221088.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441542601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542624%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad0ac
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad12f
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 18856
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441528&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad19a
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad307
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad39a
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad3f6
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:25 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441545.27ad43f
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441546.27ad4c2
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441546.27ad528
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441546.27ad572
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441546.27ad5be
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441547.27ad9a1
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441547.27ada77
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:27 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441547.27adaba
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441549.27ae43c
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441551.27aeb8b
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441552.27af0fa
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 423
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffed2bca64db9a0ed0cbe0eba8848
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-brGDK1spzJiOcRsrI7L63F/PL5vwmS7P0j1aWXkEP7o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:34 GMT
set-cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441554.27af79a
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22pinned%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22pinned%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441554.27af831
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2377
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441555.27afe03
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 754
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 379
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffed38c1e4937a4f9266002351eac
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rOApb0FJKza04Kafs+1vnjkNKPxT8hMEPC6PwNnFBOw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:36 GMT
set-cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441555.27afe0e
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1791
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 313
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffed4059048e39026b85c8fbef3c8
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-yVwJC1Mtg3/L3rI/zkvapccmI1yXhPTYt/4+PVdJddA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:36 GMT
set-cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441556.27b0037
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malware%20files%20github&cp=18&csr=1&zis=1&msbqf=false&rqry=1&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malware%20files%20github&cp=18&csr=1&zis=1&msbqf=false&rqry=1&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441556.27b0140
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441556.27b0139
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1736441552861%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441552936%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%22%2C%22AsResponseLength%22%3A%22423%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441553047%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%2Cig%3AAFF0BCAB3C064C75AFD44ED4C032E7B9%22%2C%22AnswerInfo%22%3A%22HS%3B20%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441553063%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1736441554615%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A13107%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441554617%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1736441552861%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441552936%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%22%2C%22AsResponseLength%22%3A%22423%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441553047%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%2Cig%3AAFF0BCAB3C064C75AFD44ED4C032E7B9%22%2C%22AnswerInfo%22%3A%22HS%3B20%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441553063%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1736441554615%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A13107%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441554617%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441556.27b0148
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malware%20github&cp=8&csr=1&msbqf=false&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malware%20github&cp=8&csr=1&msbqf=false&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Thu, 09 Jan 2025 16:51:36 GMT
vary: Accept-Encoding
x-eventid: 677ffed4145645deba3b49be07ab3a94
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wz1EvauF5ZwU1o0niriaM5d96HzdFanr0/fLSZKPT5E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Thu, 09 Jan 2025 16:52:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441556.27b0142
set-cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1; Domain=.bing.com; Path=/; Expires=Thu, 09 Jan 2025 18:52:36 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malwaregithub&cp=7&csr=1&msbqf=false&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malwaregithub&cp=7&csr=1&msbqf=false&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b02e1
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1992
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0347
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0353
GET

https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=&ajaxnorecss=1&sid=1843F2E6FE8064990467E789FFBE652B&format=snrjson&jsoncbid=0&ajaxsydconv=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=&ajaxnorecss=1&sid=1843F2E6FE8064990467E789FFBE652B&format=snrjson&jsoncbid=0&ajaxsydconv=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 304
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffed555bc466eb81e478b33101e7f
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-m4xBlohpwFH9syH6HAi8r15XXeLJYpY7rjzIXanDMD8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:37 GMT
set-cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0376
GET

https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441554627%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22379%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441554706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%2Cig%3ABF31598EA3E54D22AD136669A3F846DD%22%2C%22AnswerInfo%22%3A%22AS%3B14%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441554707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1736441555098%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441555113%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22313%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441555245%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%2Cig%3AA503424088CA49BCBF4F9AAF0A83D957%22%2C%22AnswerInfo%22%3A%22SC%3B14%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441555245%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441554627%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22379%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441554706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%2Cig%3ABF31598EA3E54D22AD136669A3F846DD%22%2C%22AnswerInfo%22%3A%22AS%3B14%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441554707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1736441555098%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441555113%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22313%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441555245%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%2Cig%3AA503424088CA49BCBF4F9AAF0A83D957%22%2C%22AnswerInfo%22%3A%22SC%3B14%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441555245%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b03c3
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b03c9
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:380,%22SE%22:-1,%22TC%22:-1,%22H%22:445,%22BP%22:470,%22CT%22:470,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,4146,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:380,%22SE%22:-1,%22TC%22:-1,%22H%22:445,%22BP%22:470,%22CT%22:470,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,4146,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b03ca
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1

Response

HTTP/2.0 200

content-length: 16045
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffed5e8ff47d28aa3539d3ea00f62
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ucgg8noW31mQDQEMmYlOGIkP3NbCyEuIFvhYoxQh+Hs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b050b
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwaregithub&mkt=en-gb&qry=malwaregithub&csr=1&pths=1&rqry=1&zis=1&pf=1&cvid=52BDF5E49C154D29A7E982D531DF9534

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malwaregithub&mkt=en-gb&qry=malwaregithub&csr=1&pths=1&rqry=1&zis=1&pf=1&cvid=52BDF5E49C154D29A7E982D531DF9534 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 771
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffed52c944ff797c13f95db6cb65a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-mhbcEJJepBt0BHztlir96idUmYDK+WmNqlj10KPvb4U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffed52c944ff797c13f95db6cb65a|AFD:677ffed52c944ff797c13f95db6cb65a|2025-01-09T16:52:37.747Z
date: Thu, 09 Jan 2025 16:52:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b050c
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 999
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffed5e73f43e3b3bf717a19683031
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Ebj34ixAZ/5UF4LqOiemyRP3or8dFvg2aMVE3HpUXRI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffed5e73f43e3b3bf717a19683031|AFD:677ffed5e73f43e3b3bf717a19683031|2025-01-09T16:52:37.755Z
date: Thu, 09 Jan 2025 16:52:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Fri, 09-Jan-2026 16:52:37 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-09; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0510
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b050e
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b050f
GET

https://www.bing.com/images/sbi?mmasync=1&ig=52BDF5E49C154D29A7E982D531DF9534&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /images/sbi?mmasync=1&ig=52BDF5E49C154D29A7E982D531DF9534&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0511
POST

https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=52BDF5E49C154D29A7E982D531DF9534

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=52BDF5E49C154D29A7E982D531DF9534 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffed5e566451c9e60acc16dfad14e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-YQbv8ySMsuyKUqFI4Ak/VSqw+zBeamHFKT39B9Jm9dM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 78E92FF82FE7410391C5EBABC37D3455 Ref B: LON601060104040 Ref C: 2025-01-09T16:52:37Z
date: Thu, 09 Jan 2025 16:52:37 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237; domain=.bing.com; expires=Tue, 03-Feb-2026 16:52:37 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0586
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441556144%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556144%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22correlationId%22%3A%22677ffed4145645deba3b49be07ab3a94%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441556203%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffed4145645deba3b49be07ab3a94%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441556203%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Time%22%3A14709%2C%22time%22%3A14711%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441556221%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441556144%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556144%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22correlationId%22%3A%22677ffed4145645deba3b49be07ab3a94%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441556203%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffed4145645deba3b49be07ab3a94%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441556203%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Time%22%3A14709%2C%22time%22%3A14711%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441556221%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0581
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A14711%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441556221%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A14711%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441556221%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0582
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A14712%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441556222%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A14712%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441556222%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0584
POST

https://www.bing.com/rewardsapp/reportActivity?IG=52BDF5E49C154D29A7E982D531DF9534&IID=SERP.5066&q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/reportActivity?IG=52BDF5E49C154D29A7E982D531DF9534&IID=SERP.5066&q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
content-length: 217
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0585
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ1&IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0587
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ0&IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b050d
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b05d8
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b05d9
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441556231%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441556231%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b0583
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441558.27b0692
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=undefined

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441558.27b07d0
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441558.27b0693
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441557.27b05da
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441559.27b0b4e
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.PPT&DATA={%22S%22:512,%22E%22:931,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.PPT&DATA={%22S%22:512,%22E%22:931,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1196
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9E5A86345E1D4BB6AF8C97A65DE2C28D Ref B: LON601060108036 Ref C: 2025-01-09T16:52:40Z
date: Thu, 09 Jan 2025 16:52:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441560.27b0fa8
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441556402%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22255.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441556403%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221088.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441556403%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441556434%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441556627%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441556402%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22255.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441556403%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221088.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441556403%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441556434%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441556627%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 677ffed837ee445f90af1efbe9d30911
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-TDIzmIZpzUdUO/78PqW8fGCU3qY6U1wXPtwbcRGNq0k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 53A9142EDF0F41418C97816E022E499C Ref B: LON601060104060 Ref C: 2025-01-09T16:52:40Z
content-length: 0
date: Thu, 09 Jan 2025 16:52:40 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:52:40 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441560.27b0fb1
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556639%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556698%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556639%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556698%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:52:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441560.27b0fc4
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2583
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Thu, 09 Jan 2025 16:52:12 GMT
vary: Accept-Encoding
x-eventid: 677ffef8a07c4161b5a56e30f2c969ef
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9gAa6TeTjoVWxEAWhE3ZiOszKg12ljou+n5ZR5c0j8w='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Thu, 09 Jan 2025 16:53:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441592.27bc146
set-cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1; Domain=.bing.com; Path=/; Expires=Thu, 09 Jan 2025 18:53:12 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441555476%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555476%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441555962%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555967%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555968%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555971%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441555977%2C%22Name%22%3A14338%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555978%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441555476%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555476%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441555962%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555967%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555968%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555971%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441555977%2C%22Name%22%3A14338%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555978%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441592.27bc383
GET

https://www.bing.com/ck/a?!&&p=0d606a2474a137ac6b0278ead810cb54376e8ec1ef4bd653eb4c65a39ef0d527JmltdHM9MTczNjM4MDgwMA&ptn=3&ver=2&hsh=4&fclid=0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06&psq=malwaregithub&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /ck/a?!&&p=0d606a2474a137ac6b0278ead810cb54376e8ec1ef4bd653eb4c65a39ef0d527JmltdHM9MTczNjM4MDgwMA&ptn=3&ver=2&hsh=4&fclid=0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06&psq=malwaregithub&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc3fd
GET

https://www.bing.com/fd/ls/GLinkPing.aspx?IG=52BDF5E49C154D29A7E982D531DF9534&ID=SERP,5212.1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/GLinkPing.aspx?IG=52BDF5E49C154D29A7E982D531DF9534&ID=SERP,5212.1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc3fe
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1059
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 304
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffef93d914be683d4e0a9f24421f4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-PL+Rxd02pqxYHnYFMfKnU9MiE/IscnNy3E+47UItSRc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:53:13 GMT
set-cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc4a7
GET

https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc542
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc54d
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:42,%22BC%22:269,%22SE%22:-1,%22TC%22:-1,%22H%22:291,%22BP%22:354,%22CT%22:369,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,3390,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:42,%22BC%22:269,%22SE%22:-1,%22TC%22:-1,%22H%22:291,%22BP%22:354,%22CT%22:369,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,3390,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc54c
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc5e6
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwaregithub&mkt=en-gb&qry=malwaregithub&csr=1&pths=1&rqry=1&zis=1&pf=1&cvid=AF665F6AB641472EB7430D8B1EB8759A

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malwaregithub&mkt=en-gb&qry=malwaregithub&csr=1&pths=1&rqry=1&zis=1&pf=1&cvid=AF665F6AB641472EB7430D8B1EB8759A HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc5ed
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441591775%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441591775%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441591783%2C%22Name%22%3A437%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591783%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591784%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441591775%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441591775%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441591783%2C%22Name%22%3A437%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591783%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591784%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc63a
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591784%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591784%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc63b
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc63f
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 769
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffef9b874476faa92cfc29ae72d0e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-NIahzRiv1iakPvfLuft4KEJ7/xxdWWicxllnYDmJLbc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffef9b874476faa92cfc29ae72d0e|AFD:677ffef9b874476faa92cfc29ae72d0e|2025-01-09T16:53:13.551Z
date: Thu, 09 Jan 2025 16:53:13 GMT
set-cookie: _C_ETH=1; expires=Wed, 08 Jan 2025 16:53:13 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc651
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 16045
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 677ffef9ede6499ebe2a1f89471f3e0d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-z6y7hhnvPLS4DboB/X08zZtIDNJ/shx37dxlVxwvFfI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc627
GET

https://www.bing.com/images/sbi?mmasync=1&ig=AF665F6AB641472EB7430D8B1EB8759A&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /images/sbi?mmasync=1&ig=AF665F6AB641472EB7430D8B1EB8759A&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 1001
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 677ffef9997542b4a7e051e809843538
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XgUg4br+9p5jpwgH2xLkoQoc/EFlJ5SZF4x10X/Aw5k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 677ffef9997542b4a7e051e809843538|AFD:677ffef9997542b4a7e051e809843538|2025-01-09T16:53:13.578Z
date: Thu, 09 Jan 2025 16:53:13 GMT
set-cookie: _C_ETH=1; expires=Wed, 08 Jan 2025 16:53:13 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Fri, 09-Jan-2026 16:53:13 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-09; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc664
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591792%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591792%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591797%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591801%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591970%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1002%2C%22time%22%3A1006%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441592164%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591792%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591792%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591797%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591801%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591970%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1002%2C%22time%22%3A1006%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441592164%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc797
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1007%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441592165%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1007%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441592165%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc7a2
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1008%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441592166%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1008%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441592166%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441593.27bc895
POST

https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=AF665F6AB641472EB7430D8B1EB8759A

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=AF665F6AB641472EB7430D8B1EB8759A HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc89f
POST

https://www.bing.com/rewardsapp/reportActivity?IG=AF665F6AB641472EB7430D8B1EB8759A&IID=SERP.5066&q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /rewardsapp/reportActivity?IG=AF665F6AB641472EB7430D8B1EB8759A&IID=SERP.5066&q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
content-length: 217
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8bc
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ0&IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8d4
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?BF=MSJ1&IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8bb
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8d3
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8d7
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%22677ffef8a07c4161b5a56e30f2c969ef%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441592174%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffef8a07c4161b5a56e30f2c969ef%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441592174%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441592205%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592230%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592385%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592424%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441592426%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592650%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%22677ffef8a07c4161b5a56e30f2c969ef%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441592174%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffef8a07c4161b5a56e30f2c969ef%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441592174%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441592205%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592230%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592385%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592424%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441592426%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592650%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 677ffefab6214710ba12500ef43c1453
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZjUGrziK4LPZF/xGZJKFDwNWSnOf9AGQtf/5BmiTU/A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: EB1A0E8AC4A24028AD17142E4D6122DD Ref B: LON601060103031 Ref C: 2025-01-09T16:53:14Z
date: Thu, 09 Jan 2025 16:53:14 GMT
set-cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06; expires=Tue, 03-Feb-2026 16:53:14 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314; domain=.bing.com; expires=Tue, 03-Feb-2026 16:53:14 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8d5
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592650%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592650%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8d6
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441592677%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441592677%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc8e6
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bc93c
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441594.27bccaf
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441596.27bd320
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441596.27bd3b2
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.PPT&DATA={%22S%22:475,%22E%22:1362,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.PPT&DATA={%22S%22:475,%22E%22:1362,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441596.27bd3fa
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441592695%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22644.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441592702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221536.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441592702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592760%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441592695%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22644.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441592702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221536.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441592702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592760%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441596.27bd43d
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 18202
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441596.27bd492
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441596.27bd4e2
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441597.27bdb97
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:24 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441604.27bf951
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441609.27c0c13
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441611.27c1579
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441611.27c15b4
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1478
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441611.27c15e9
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 643
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441611.27c1643
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 712
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441611.27c1682
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441612.27c19c4
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441614.27c2433
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441614.27c247a
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441614.27c24ed
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441614.27c2543
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1160
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441615.27c289f
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441619.27c3a28
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441619.27c3aa0
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441619.27c3ae5
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441619.27c3b01
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 638
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

expires: Sat, 30 Nov 2024 02:29:54 GMT
last-modified: Tue, 24 Sep 2024 06:11:01 GMT
etag: 0x8DCDC5FAA0C3E31
cache-control: public, no-transform, max-age=369661
content-length: 644
content-type: image/gif
content-md5: HGU2zuFG7AoIwp9z9fxz2A==
x-ms-request-id: 2ff3b732-601e-004e-3620-152f75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7361602.1729689441.eeaf154
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Thu, 09 Jan 2025 16:53:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441620.27c3da5
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441620.27c3da4
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 1960
content-type: image/svg+xml
content-md5: lOxVXuFtjjXpIAll7kgzvA==
last-modified: Mon, 15 Aug 2022 17:45:21 GMT
etag: 0x8DA7EE5ED1F56FD
x-ms-request-id: 7c27555a-001e-00bb-2c31-c4a084000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.565cda17.1690899375.255be5ab
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.5d5cda17.1694874810.1afe5694
akamai-grn: 0.b08e1402.1696360426.1b34534
akamai-grn: 0.55281102.1700232259.1839b9d2
akamai-grn: 0.4b281102.1702526738.c0841ccd
akamai-grn: 0.4eba1302.1703096022.4645b734
akamai-grn: 0.4b281102.1704885951.12f50653
cache-control: public, no-transform, max-age=3610975
expires: Thu, 28 Nov 2024 14:34:07 GMT
akamai-grn: 0.98777b5c.1729193472.d5f4202
timing-allow-origin: *
date: Thu, 09 Jan 2025 16:53:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441620.27c3e25
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441621.27c40b7
GET

https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22pinned%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22pinned%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441621.27c4369
POST

https://www.bing.com/fd/ls/ls.gif?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225605.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736441618923,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/ls.gif?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225605.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736441618923,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441624.27c5052
GET

https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:53:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441631.27c7043
GET

https://www.bing.com/rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg

msedge.exe

Remote address:

88.221.135.17:443

Request

GET /rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:54:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441692.27db014
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1061
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Thu, 09 Jan 2025 16:54:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.cd8f655f.1736441692.27db013
POST

https://www.bing.com/fd/ls/ls.gif?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225605.1%22,%22TS%22:1736441620307,%22DU%22:1585,%22THLT%22:281,%22RCLT%22:null,%22MOS%22:27396,%22MOT%22:1585,%22IsMT%22:1,%22VPST%22:779,%22VDT%22:763,%22MaxVPT%22:1585,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/ls.gif?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225605.1%22,%22TS%22:1736441620307,%22DU%22:1585,%22THLT%22:281,%22RCLT%22:null,%22MOS%22:27396,%22MOT%22:1585,%22IsMT%22:1,%22VPST%22:779,%22VDT%22:763,%22MaxVPT%22:1585,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1469
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 622
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 624
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.17:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: MUIDB=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
DNS

17.135.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

17.135.221.88.in-addr.arpa

IN PTR

Response

17.135.221.88.in-addr.arpa

IN PTR

a88-221-135-17deploystaticakamaitechnologiescom
DNS

13.86.106.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.86.106.20.in-addr.arpa

IN PTR

Response
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.218

e86303.dscx.akamaiedge.net

IN A

95.101.143.210

e86303.dscx.akamaiedge.net

IN A

95.101.143.211

e86303.dscx.akamaiedge.net

IN A

95.101.143.201

e86303.dscx.akamaiedge.net

IN A

95.101.143.202

e86303.dscx.akamaiedge.net

IN A

95.101.143.182

e86303.dscx.akamaiedge.net

IN A

95.101.143.212

e86303.dscx.akamaiedge.net

IN A

95.101.143.203

e86303.dscx.akamaiedge.net

IN A

95.101.143.213
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.212

e86303.dscx.akamaiedge.net

IN A

88.221.134.248

e86303.dscx.akamaiedge.net

IN A

95.101.143.218

e86303.dscx.akamaiedge.net

IN A

88.221.134.249

e86303.dscx.akamaiedge.net

IN A

88.221.134.2

e86303.dscx.akamaiedge.net

IN A

95.101.143.213

e86303.dscx.akamaiedge.net

IN A

88.221.134.3

e86303.dscx.akamaiedge.net

IN A

88.221.134.251

e86303.dscx.akamaiedge.net

IN A

95.101.143.219
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=1517850
date: Thu, 09 Jan 2025 16:52:07 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441527.7f1551
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=585146
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1633
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=585000
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1636
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.vUfuC-FPNcPTPzZHubcnBgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OVP.vUfuC-FPNcPTPzZHubcnBgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1638
cache-control: public, max-age=1912294
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1639
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 552
cache-control: public, max-age=584939
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f163c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.qF8nVKmNR7CEvaTVuA0WzwHaDt&w=80&h=80&c=1&vt=10&bgcl=17bfe1&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.qF8nVKmNR7CEvaTVuA0WzwHaDt&w=80&h=80&c=1&vt=10&bgcl=17bfe1&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 712
cache-control: public, max-age=1912229
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f163f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=2177190
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1641
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=585027
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1642
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1967
x-check-cacheable: YES
cache-control: public, max-age=1058619
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1638
GET

https://th.bing.com/th?id=OIP.5jTVe7PM1AVZBOcj5CGRJwHaDL&w=80&h=80&c=1&vt=10&bgcl=fb1fe8&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.5jTVe7PM1AVZBOcj5CGRJwHaDL&w=80&h=80&c=1&vt=10&bgcl=fb1fe8&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1638
cache-control: public, max-age=1912322
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f163a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1967
x-check-cacheable: YES
cache-control: public, max-age=2111049
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1640
GET

https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=2510828
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1648
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7901
x-check-cacheable: YES
cache-control: public, max-age=361884
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1635
GET

https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=585410
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1634
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 797
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f163e
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 962
cache-control: public, max-age=1209576
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1637
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.cJVaUOR7vXPGZNJZZNThkwHaDt&w=80&h=80&c=1&vt=10&bgcl=cae10b&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.cJVaUOR7vXPGZNJZZNThkwHaDt&w=80&h=80&c=1&vt=10&bgcl=cae10b&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1757
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f163b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1502
cache-control: public, max-age=1209515
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f1643
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.eTt4dGm8jQGrDcI2_f5tIwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OVP.eTt4dGm8jQGrDcI2_f5tIwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9659
x-check-cacheable: YES
cache-control: public, max-age=1207661
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f19b4
GET

https://th.bing.com/th?id=OVP.ZGr6YOQKMVZHyV238RnREAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OVP.ZGr6YOQKMVZHyV238RnREAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7308
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f19b2
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0&EXLTT=1
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7298
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:08 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441528.7f19af
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.1P5fh1p15tkKFQFwIJ6jpAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OVP.1P5fh1p15tkKFQFwIJ6jpAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=2321679
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9329
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.2n9zqm271iuwvxr_fyKkuQHaDt&w=80&h=80&c=1&vt=10&bgcl=f15576&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.2n9zqm271iuwvxr_fyKkuQHaDt&w=80&h=80&c=1&vt=10&bgcl=f15576&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=406554
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f932e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1967
x-check-cacheable: YES
cache-control: public, max-age=1457118
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f932f
GET

https://th.bing.com/th?id=OIP.zHbfvb1ggppHG6DcmH8gQAHaD4&w=89&h=108&c=1&bgcl=58c1c2&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.zHbfvb1ggppHG6DcmH8gQAHaD4&w=89&h=108&c=1&bgcl=58c1c2&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 432
x-check-cacheable: YES
cache-control: public, max-age=687096
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9331
GET

https://th.bing.com/th?id=OIP.VhJOuY4oMiEud7DD-BSIdAHaD4&w=89&h=53&c=1&bgcl=4e5e97&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.VhJOuY4oMiEud7DD-BSIdAHaD4&w=89&h=53&c=1&bgcl=4e5e97&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=445202
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9332
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.oZR6xcNsGxk9wyu7559CzwHaD4&w=89&h=53&c=1&bgcl=0572c1&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.oZR6xcNsGxk9wyu7559CzwHaD4&w=89&h=53&c=1&bgcl=0572c1&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=585074
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MEM_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9342
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1386496
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9341
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 552
x-check-cacheable: YES
cache-control: public, max-age=1866706
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9330
GET

https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1160
cache-control: public, max-age=1209563
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f932b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3715
x-check-cacheable: YES
cache-control: public, max-age=438982
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9350
GET

https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5432
x-check-cacheable: YES
cache-control: public, max-age=437623
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9322
GET

https://th.bing.com/th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9717
x-check-cacheable: YES
cache-control: public, max-age=941711
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9351
GET

https://th.bing.com/th?id=OIP.QX46usTkDJ2AhKe2hCJ9lQHaDa&w=89&h=108&c=1&bgcl=7db6eb&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.QX46usTkDJ2AhKe2hCJ9lQHaDa&w=89&h=108&c=1&bgcl=7db6eb&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1557
cache-control: public, max-age=1209563
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9324
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.priyXFgrBoSA1NDJevADjwHaD5&w=89&h=53&c=1&bgcl=74d82f&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.priyXFgrBoSA1NDJevADjwHaD5&w=89&h=53&c=1&bgcl=74d82f&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1837
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f932a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.qxOuNl2KtH_sqiHDbFitbQHaE4&w=89&h=53&c=1&bgcl=ad036b&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.qxOuNl2KtH_sqiHDbFitbQHaE4&w=89&h=53&c=1&bgcl=ad036b&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 740
cache-control: public, max-age=1209578
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f932c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 801
x-check-cacheable: YES
cache-control: public, max-age=2067825
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f933d
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 908
cache-control: public, max-age=1209582
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f933f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.o_FbOQ2wPFOAVADt3fRfFwHaEK&w=80&h=80&c=1&vt=10&bgcl=4a0603&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.o_FbOQ2wPFOAVADt3fRfFwHaEK&w=80&h=80&c=1&vt=10&bgcl=4a0603&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1224
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f9340
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=216&h=115&c=2&o=6&pid=WebQS

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=216&h=115&c=2&o=6&pid=WebQS HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1132
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f934f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.aH1e5Hk95bE7x7i9vXZSowAAAA&w=216&h=115&c=2&o=6&pid=WebQS

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.aH1e5Hk95bE7x7i9vXZSowAAAA&w=216&h=115&c=2&o=6&pid=WebQS HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1497
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:52:37 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441557.7f933e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.cfd7879d-f8d1-4a69-a080-259e93b505fc&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=ODLS.cfd7879d-f8d1-4a69-a080-259e93b505fc&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 685
cache-control: public, max-age=1705348
date: Thu, 09 Jan 2025 16:53:12 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441592.805491
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OADD2.8177802323804_1LGHINVZF4GI3ZBHQO&w=32&h=32&o=6&pid=21.2

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OADD2.8177802323804_1LGHINVZF4GI3ZBHQO&w=32&h=32&o=6&pid=21.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2695
cache-control: public, max-age=1654948
date: Thu, 09 Jan 2025 16:53:12 GMT
x-cache: TCP_HIT from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441592.805490
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.2n9zqm271iuwvxr_fyKkuQHaDt&w=80&h=80&c=1&vt=10&bgcl=a139f1&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.2n9zqm271iuwvxr_fyKkuQHaDt&w=80&h=80&c=1&vt=10&bgcl=a139f1&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1837
cache-control: public, max-age=1209566
date: Thu, 09 Jan 2025 16:53:13 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441593.805664
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.zHbfvb1ggppHG6DcmH8gQAHaD4&w=89&h=108&c=1&bgcl=3536dd&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.zHbfvb1ggppHG6DcmH8gQAHaD4&w=89&h=108&c=1&bgcl=3536dd&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1557
cache-control: public, max-age=1209587
date: Thu, 09 Jan 2025 16:53:13 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441593.805662
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.VhJOuY4oMiEud7DD-BSIdAHaD4&w=89&h=53&c=1&bgcl=410f34&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.VhJOuY4oMiEud7DD-BSIdAHaD4&w=89&h=53&c=1&bgcl=410f34&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1160
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:53:13 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441593.805665
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.oZR6xcNsGxk9wyu7559CzwHaD4&w=89&h=53&c=1&bgcl=48d28f&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OIP.oZR6xcNsGxk9wyu7559CzwHaD4&w=89&h=53&c=1&bgcl=48d28f&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:37.7795059+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=9&RB=0&GB=0&RG=200&RP=6
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165237
cookie: bm_sv=AE3DA0A7EF386FD7C8AC7F3FCD08314B~YAAQzY9lX9DLr0mUAQAAB/v7Sxp431vvRwSSRxCWhkqFQxaBWvxoB3uRai+uyKsXQc9YXrBpkiVR9+2sbZLxZGqxdZ8Gm99tv6Z08QbJCQZ5yrgbAu5Aws+Qit+8dSwTB39Ssfg4cS0i2B0OToCzgXgZ1HX7koQdhFcUw7V5DQF3Dep9/7AnzoGgtclxaPUxx7vnVad7NvwAH7GDH+3QpWqRMy5MxPsWj3EuAyLcJ+c8hP+xGXVbG4neu9t0YQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63872038327&HV=1736441558&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 740
cache-control: public, max-age=1209600
date: Thu, 09 Jan 2025 16:53:13 GMT
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441593.805666
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OM2.91gyUnPV6JeHAw_1727968640&pid=1.7

msedge.exe

Remote address:

95.101.143.218:443

Request

GET /th?id=OM2.91gyUnPV6JeHAw_1727968640&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://www.bing.com/
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:53:13.6018275+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165314
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3390&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63872038327&HV=1736441594&PRVCW=1280&PRVCH=609&AV=14&ADV=14&RB=0&MB=0
range: bytes=0-

Response

HTTP/2.0 206

content-type: video/mp4
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, max-age=2592000
date: Thu, 09 Jan 2025 16:53:40 GMT
content-range: bytes 0-272787/272788
content-length: 272788
x-cache: TCP_MISS from a92-122-54-76.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.4c367a5c.1736441620.80e96d
x-check-cacheable: YES
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5f97b5b-c01e-002e-02f1-176a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=151403
expires: Sat, 11 Jan 2025 10:55:31 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837ca5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: SRCHUSR=DOB=20250109
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b848dd36-301e-003b-4f2a-16a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=61714
expires: Fri, 10 Jan 2025 10:00:42 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837ca6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:34 GMT
etag: 0x8DCDC64A18F365B
content-length: 671
content-type: image/svg+xml
content-md5: 2e0aQjQvN2lVcUGQcPjoGA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 08fd2788-101e-0005-299e-161eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=54042
expires: Fri, 10 Jan 2025 07:52:50 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e1e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

content-length: 1101
content-type: image/svg+xml
content-md5: kc0Rz8ymXPrOlhUyaNcfYw==
last-modified: Fri, 12 Aug 2022 20:45:00 GMT
etag: 0x8DA7CA3867FC831
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: adc41e54-901e-0086-2e09-15d69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.097b1060.1686747743.2aab8902
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.097b1060.1686747764.2aac12e8
akamai-grn: 0.2a7b1060.1687568922.2d70b24a
akamai-grn: 0.3d7b1060.1689052474.2206a8cd
akamai-grn: 0.21aedd58.1689771282.bd10a3b
cache-control: public, no-transform, max-age=5755133
expires: Mon, 17 Mar 2025 07:31:01 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e27
timing-allow-origin: *
GET

https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:25 GMT
etag: 0x8DCDC5EE1BFCC0A
content-length: 282
content-type: image/svg+xml
content-md5: 44eVtjQVTsH/Qca82lTuUg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e9a57e31-701e-001e-2a97-15307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=291913
expires: Mon, 13 Jan 2025 01:57:21 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e28
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

content-length: 964
content-type: image/svg+xml
content-md5: iOPtPdfu4TP3P/udNrBLbw==
last-modified: Mon, 15 Aug 2022 20:49:31 GMT
etag: 0x8DA7EFFA703EB5F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b8d4fb37-c01e-008b-0cf0-081e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.0a7b1060.1686747743.231c1613
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.157b1060.1686747764.1d5c2bc1
akamai-grn: 0.1b7b1060.1687776384.1457d6ce
cache-control: public, no-transform, max-age=10874280
expires: Thu, 15 May 2025 13:30:08 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e29
timing-allow-origin: *
GET

https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:54:00 GMT
etag: 0x8DCDC65AB4005D8
content-length: 1391
content-type: image/svg+xml
content-md5: YgWAZX6KRbSnuEULjaXNMg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a41a454b-e01e-0054-5833-16001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=192857
expires: Sat, 11 Jan 2025 22:26:25 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e2a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:39:27 GMT
etag: 0x8DA7EE519EF54EF
akamai-grn: 0.19fd4817.1699775190.19e2dda6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 726
content-type: image/svg+xml
content-md5: ZgHkolq4RyA+EBWzJRSxbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d46b8e76-f01e-0020-517e-0a9bf6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1efd4817.1701123842.3b4e7f5b
cache-control: public, no-transform, max-age=8671803
expires: Sun, 20 Apr 2025 01:42:11 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e2b
timing-allow-origin: *
GET

https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

content-length: 1111
content-type: image/svg+xml
content-md5: wEyINKyRgCGG5s5neuSonQ==
last-modified: Mon, 15 Aug 2022 17:43:38 GMT
etag: 0x8DA7EE5AFDCD0E6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b64d6f1d-301e-0026-47c0-9e523e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b69f3617.1734277877.1be94e0c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=11850518
expires: Mon, 26 May 2025 20:40:46 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e3e
timing-allow-origin: *
GET

https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:39 GMT
etag: 0x8DCDC650FC3D927
content-length: 3791
content-type: image/jpeg
content-md5: KZpHmi9/HzDQlUXKjMXRYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: caf5029c-101e-0063-5c90-15acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=155197
expires: Sat, 11 Jan 2025 11:58:45 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e3f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:48 GMT
etag: 0x8DCDC5EEFB0049C
content-length: 6817
content-type: image/jpeg
content-md5: DEHuMbBOl4tIgtF2kPA6Og==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 42a58b94-c01e-0048-0d59-17d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=70381
expires: Fri, 10 Jan 2025 12:25:09 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e41
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:31 GMT
etag: 0x8DCDC664D1860E2
akamai-grn: 0.47367a5c.1734529678.8f109
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3814
content-type: image/jpeg
content-md5: KBVwYR+JIZqXDyWJ+YoJ2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ec8f7ea-901e-0072-119f-199bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=333690
expires: Mon, 13 Jan 2025 13:33:38 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e46
timing-allow-origin: *
GET

https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C424AE8
content-length: 5387
content-type: image/jpeg
content-md5: adFid0+JT/i5IDMON2t6Yg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f55db75-401e-0016-1dc2-172b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=52039
expires: Fri, 10 Jan 2025 07:19:27 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e40
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:55 GMT
etag: 0x8DCDC63FB5BC9CB
content-length: 4547
content-type: image/jpeg
content-md5: eu9Mz25HuboDg2XNPR9Wkw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ffe763-201e-0024-1c98-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=56724
expires: Fri, 10 Jan 2025 08:37:32 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e44
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:56 GMT
etag: 0x8DCDC65F09D13C1
content-length: 5944
content-type: image/jpeg
content-md5: 9ucNopg0mtlCFfC0podQNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ab6448f5-c01e-0025-6b21-187223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=61828
expires: Fri, 10 Jan 2025 10:02:36 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e45
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:43:17 GMT
etag: 0x8DCDC642C51AEC8
content-length: 4934
content-type: image/jpeg
content-md5: /aLOrgZ5YRk35ucfcBo2qw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: eb80deab-601e-0023-48af-16855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=140950
expires: Sat, 11 Jan 2025 08:01:18 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e43
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:51 GMT
etag: 0x8DCDC65ED9B19A0
content-length: 4409
content-type: image/jpeg
content-md5: qYoIvbmbhCLJ3J1v3ZOHww==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0123ab47-601e-0001-11da-15eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=238386
expires: Sun, 12 Jan 2025 11:05:14 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e42
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:12 GMT
etag: 0x8DCDC63E1AC19C2
content-length: 324
content-type: text/css
content-encoding: br
content-md5: zul1ioyI5qjKzvVMsqd8eQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 78028e9b-b01e-0021-58f1-1687a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=257324
expires: Sun, 12 Jan 2025 16:20:52 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e6f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC86967FA2A4
content-length: 326
content-type: text/css; charset=utf-8
content-encoding: br
content-md5: yxQVEL8D2yYKzOkWuxDcBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 373b1a6c-101e-0005-29d9-1e1eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=403396
expires: Tue, 14 Jan 2025 08:55:24 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e74
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:10:08 GMT
etag: 0x8DCDC67EC841DCF
content-length: 1343
content-type: text/css
content-encoding: br
content-md5: DnViWNsgH/Vlo3SrH5gEzg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: af431a55-e01e-0032-6214-1ab240000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=187324
expires: Sat, 11 Jan 2025 20:54:12 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e75
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4228&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:08.5145605+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-09
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:40:29 GMT
etag: 0x8DCEC880F396E3D
content-length: 269
content-type: text/css
content-encoding: br
content-md5: Twb1SQrgn66TMkCHmLv8IQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5c783b07-601e-000a-2332-1ff319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=230570
expires: Sun, 12 Jan 2025 08:54:58 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441528.837e73
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=0EC5DE9D4DA76ECD1EBFCBF24C996F06
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=E4F423E6DB264875AFF3E27410381380&dmnchg=1
cookie: ak_bmsc=8FA256775FC0B2FDB2CFBF2A90A7453A~000000000000000000000000000000~YAAQzY9lX4vIr0mUAQAAdfz6SxpSNNJ4IvFt892HraAp7nzeUpeRDt2IBwqG2urg2XgB0SMu5th7Pe6vwU0WoB6VVC68ZxyzpZkeNNfd7NDY5uIYVdiNf/4Rt21qfK57PxbL5nQ/Th/S6qcqLFrEIjNPij08r3I8kXKSCu7XEepQGgqCbCnoWhu4ErQbJzHJQYrvEPXMYt/RiZPRfVsqzZKITh0hsRaEsm+dY3AFD9MDH+A31hEBdXSQUR8szvWb0bD7wFytF7/kx6wMipUMxr+iKmykXoNaUVOZJut8DcOvnTJwFUa8/7jaH3ogYzw3DwOC/YVhF1RtS5DAh80SwYhvQuuq1zK9cdT0h1s8/dlTJOxThrMI5gI6c2K7KzD4BH1RVYFYL0fg
cookie: SRCHUSR=DOB=20250109&T=1736441527000
cookie: _Rwho=u=d&ts=2025-01-09
cookie: ipv6=hit=1736445128557&t=4
cookie: BCP=AD=1&AL=1&SM=1
cookie: MSPTC=wUCl14QLr48asrQGktxxLCIy1fDIgpPf77wVySCOwO0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-09T16:52:23.4978987+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1843F2E6FE8064990467E789FFBE652B&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=250109165223
cookie: _EDGE_S=F=1&SID=1843F2E6FE8064990467E789FFBE652B&mkt=en-gb
cookie: bm_sv=2C4E56CA470FDF064774B09A15A126B5~YAAQzY9lX9/Jr0mUAQAALG/7SxryUntJYMcnBNf5vl6P3kD2VzU9l4LunFk4szuXmatt0bdU+9fmHuKViSVNcGnywMZwlv8S+tTm84zRcbdMlsOBb05haAIQZXHefFXNxcqcnptLv4LzH/4JdMODjhsXayLmd7j7sH9HvgD1/EIu4G1OCnZJck/0C3Kt0biozrdmrJXwYU4n9bgiPn+uRRD0pgbB5ynhNhTrHLo31/nPVFGQlJn1eDyaIquyrw==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4146&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63872038327&HV=1736441544&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:30 GMT
etag: 0x8DCDC6026A54D4B
content-length: 1130
content-type: image/svg+xml
content-md5: FNy6o5g3lRToAoQvWVNRRg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c7a15ead-901e-0014-3bce-1429f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=58385
expires: Fri, 10 Jan 2025 09:05:42 GMT
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.34367a5c.1736441557.83e86e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/sSDuJFmlSA7dm5E7PBgSSDVPlns.br.css

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/sSDuJFmlSA7dm5E7PBgSSDVPlns.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 7603
content-type: text/css
content-encoding: br
content-md5: NunjkbkXLGNYQTjuWlSMVA==
last-modified: Wed, 08 Jan 2025 08:28:07 GMT
etag: 0x8DD2FBE60FB8F5D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd694637-801e-0044-50f4-6136fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.2cb01302.1736408488.d2dcde6c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=348761
expires: Mon, 13 Jan 2025 17:44:48 GMT
date: Thu, 09 Jan 2025 16:52:07 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441527.2f7fc30
timing-allow-origin: *
GET

https://r.bing.com/rp/U6ozRLRanAQTt22qZDWCWxYnh5g.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/U6ozRLRanAQTt22qZDWCWxYnh5g.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2441
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cHQ92lu+amPs3PeU3KnDRQ==
last-modified: Tue, 07 Jan 2025 15:00:41 GMT
etag: 0x8DD2F2C0E312948
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ef7fcf8f-601e-0023-562b-61855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1736273572.6698adc3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=262342
expires: Sun, 12 Jan 2025 17:44:30 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fca2
timing-allow-origin: *
GET

https://r.bing.com/rp/CBYihxJekbyAlLiT2TGCv3XcxBA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/CBYihxJekbyAlLiT2TGCv3XcxBA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:55:43 GMT
etag: 0x8DD0492810643B3
content-type: text/javascript; charset=utf-8
content-md5: 2IO5S7s0tim307PiM027GA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ec062b71-401e-0059-148c-3eef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8872
vary: Accept-Encoding
cache-control: public, no-transform, max-age=48915
expires: Fri, 10 Jan 2025 06:27:23 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fca3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:02 GMT
etag: 0x8DCE8C28AC2EAB8
content-length: 2634
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YP0IUbsZfddh5LfrNKc0vw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 27aa3268-301e-0074-5e0d-236cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b8901002.1731409690.944a9f97
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=228343
expires: Sun, 12 Jan 2025 08:17:51 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcaa
timing-allow-origin: *
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:42 GMT
etag: 0x8DCE8C30DC01669
content-type: text/javascript; charset=utf-8
content-md5: e7f/zlZuzAgnEk3uqGLnHQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 88ed3102-e01e-0076-31fe-1a6e2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 264
cache-control: public, no-transform, max-age=104499
expires: Fri, 10 Jan 2025 21:53:47 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcac
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
content-length: 395
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bJNwzHWywBuWP28bX2mBGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 34450cb7-001e-0011-4af1-15dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=239730
expires: Sun, 12 Jan 2025 11:27:38 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcae
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/co2z1JDFb7enoIoCaLuo-NbJJjE.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/co2z1JDFb7enoIoCaLuo-NbJJjE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:51 GMT
etag: 0x8DCE8C3132785D7
content-length: 5065
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zen1RFa4GLG9w/XJIRfohw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4527fc94-701e-001e-76de-1a307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=68133
expires: Fri, 10 Jan 2025 11:47:41 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcaf
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
content-type: text/javascript; charset=utf-8
content-md5: l5PXwpOyUFdqY44wmnrCag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b84f6350-c01e-0025-5774-157223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 467
cache-control: public, no-transform, max-age=129156
expires: Sat, 11 Jan 2025 04:44:44 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcb2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
content-length: 714
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=143210
expires: Sat, 11 Jan 2025 08:38:58 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcb3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 16 Dec 2024 11:02:51 GMT
etag: 0x8DD1DC12F478770
content-length: 1301
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wHo5MKy9/uYqMA18Fd80/A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c29dc5cc-301e-0074-11e3-4f6cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.2f367a5c.1734384147.3969fb4
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=375216
expires: Tue, 14 Jan 2025 01:05:44 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcad
timing-allow-origin: *
GET

https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:32 GMT
etag: 0x8DCE8C29C4714A6
content-type: text/javascript; charset=utf-8
content-md5: yBOhuH8WUdZCzcrV/Ken2A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ad5aae0c-101e-0063-06fe-36acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 65739
cache-control: public, no-transform, max-age=95429
expires: Fri, 10 Jan 2025 19:22:37 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcb0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d52007ef-d01e-0031-380a-16b147000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=223339
expires: Sun, 12 Jan 2025 06:54:27 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcbd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
content-length: 308
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf18684d-701e-0078-63bc-188227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=156060
expires: Sat, 11 Jan 2025 12:13:08 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcc0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2956844-201e-002f-2721-186baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=66892
expires: Fri, 10 Jan 2025 11:27:00 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcab
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 16 Dec 2024 04:25:34 GMT
etag: 0x8DD1D89AF04AAB6
content-length: 69606
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ad+ATQX4spqIJ4t9WC3SeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 47eff3ad-c01e-0025-7ee1-4f7223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.96777b5c.1734374742.1383f16f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=148469
expires: Sat, 11 Jan 2025 10:06:37 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcb1
timing-allow-origin: *
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
content-length: 156
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2bded04a-801e-004f-156e-172e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=218760
expires: Sun, 12 Jan 2025 05:38:08 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcbe
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
content-type: text/javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca734619-801e-006d-1b17-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
cache-control: public, no-transform, max-age=324672
expires: Mon, 13 Jan 2025 11:03:20 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcbf
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cbc4fcef-801e-004f-35b8-162e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=58218
expires: Fri, 10 Jan 2025 09:02:26 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcc7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b418c73-801e-0022-3518-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=182699
expires: Sat, 11 Jan 2025 19:37:07 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fccc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:27 GMT
etag: 0x8DCE8C34C6E86D0
content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5WRb79OLEOB99g79FkaKhA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 02bb506f-801e-006d-5ade-1a40be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=113192
expires: Sat, 11 Jan 2025 00:18:40 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcd2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-type: text/javascript; charset=utf-8
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 35b61dc9-601e-006c-20ac-164143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 660
cache-control: public, no-transform, max-age=180400
expires: Sat, 11 Jan 2025 18:58:48 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcd3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 538
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Fri, 20 Dec 2024 06:44:39 GMT
x-eventid: 67699f25d7ce4e1eb1ae757ab32f86ae
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E080
x-as-suppresssetcookie: 1
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=302009
expires: Mon, 13 Jan 2025 04:45:37 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcd7
timing-allow-origin: *
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6927f078-601e-0067-1379-1e5937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=146278
expires: Sat, 11 Jan 2025 09:30:06 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fce0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9Z2GyyGvsKSVNrmOMrTfcv8z_yQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/9Z2GyyGvsKSVNrmOMrTfcv8z_yQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 7017
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bglrfusHszJbBVCKCoDnQg==
last-modified: Tue, 07 Jan 2025 05:55:18 GMT
etag: 0x8DD2EDFDDA09D23
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0e4c43bf-601e-004e-672b-612f75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.be777b5c.1736273572.663d32a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=262409
expires: Sun, 12 Jan 2025 17:45:37 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fce1
timing-allow-origin: *
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
akamai-grn: 0.a6777b5c.1733990718.f42cdf9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e49a919d-b01e-0021-56c5-1787a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=311638
expires: Mon, 13 Jan 2025 07:26:06 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fce6
timing-allow-origin: *
GET

https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:36 GMT
etag: 0x8DCE8C30A28A766
content-length: 1707
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MkbY3tM5BoIJgMyWXEttiw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e3c807ce-a01e-0053-0ade-1af69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1731632077.1360387
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=356912
expires: Mon, 13 Jan 2025 20:00:40 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fce7
timing-allow-origin: *
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
content-length: 626
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 942ab205-401e-0070-59f5-179954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=362796
expires: Mon, 13 Jan 2025 21:38:44 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fce8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:36 GMT
etag: 0x8DCDC5F9B563C48
content-type: text/javascript; charset=utf-8
content-md5: 10AmaEgXjFITcl8HP2hwyQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d7ecb45b-501e-0064-120b-1b5a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 194
cache-control: public, no-transform, max-age=240832
expires: Sun, 12 Jan 2025 11:46:00 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fce9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:36 GMT
etag: 0x8DCDC633D5EAA6A
content-length: 282
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ZsrYRIS4X28M0gd5bb2Heg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81189a7e-d01e-0057-6fda-15031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=145291
expires: Sat, 11 Jan 2025 09:13:39 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcea
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
content-type: text/javascript; charset=utf-8
content-md5: fr82fvtvcsicFIwsSPlj7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6e14cefd-b01e-006e-72f4-1543b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 487
cache-control: public, no-transform, max-age=97528
expires: Fri, 10 Jan 2025 19:57:36 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fceb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:41:33 GMT
x-eventid: 66faba418ff64f95a20a7bcac2f77389
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E06C
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+d/lq33XRzjmEnOtvgMieSzqAskX/8JsMFx2gVqKsws='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=314721
expires: Mon, 13 Jan 2025 08:17:29 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcec
timing-allow-origin: *
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
akamai-grn: 0.b2777b5c.1734035311.2ef762
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 55c1cc9e-e01e-0039-732a-16aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=71499
expires: Fri, 10 Jan 2025 12:43:47 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcee
timing-allow-origin: *
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
content-length: 375
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 40b94707-101e-0027-33eb-1470d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=70767
expires: Fri, 10 Jan 2025 12:31:35 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcef
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
content-length: 490
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3vstlq/a5ZcE98e8La1vPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ff7c48-201e-0024-6697-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=312702
expires: Mon, 13 Jan 2025 07:43:50 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-length: 386
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f7b32df-801e-006d-2071-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=134082
expires: Sat, 11 Jan 2025 06:06:50 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-type: text/javascript; charset=utf-8
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce25302a-c01e-002e-0401-156a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 481
cache-control: public, no-transform, max-age=351295
expires: Mon, 13 Jan 2025 18:27:03 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 301
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: /MCTrIONqIe2D2cwQ7LPew==
last-modified: Mon, 06 Jan 2025 11:48:20 GMT
etag: 0x8DD2E480496E67B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e53c58d4-901e-001f-7e09-613180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.9d777b5c.1736288320.9758093
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=247427
expires: Sun, 12 Jan 2025 13:35:55 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf5
timing-allow-origin: *
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:47 GMT
etag: 0x8DCE8C2817D87DF
akamai-grn: 0.521a1202.1736115571.fed6064d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 12101
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 63v18faN7ozJ98XstK/S+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5b969ee1-c01e-000c-54e0-1a0461000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=106065
expires: Fri, 10 Jan 2025 22:19:53 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf6
timing-allow-origin: *
GET

https://r.bing.com/rp/GDN-v4JlRmxm6_5Ct26g04rqmnQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/GDN-v4JlRmxm6_5Ct26g04rqmnQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:16 GMT
etag: 0x8DCE8C26ED294B5
akamai-grn: 0.cd8f655f.1736248639.38018d3
content-length: 65123
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ImVBVQpRkRw3Uhb3GEk/ZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ecfd2e8-701e-0015-5bde-1a2809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=178534
expires: Sat, 11 Jan 2025 18:27:42 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:13 GMT
etag: 0x8DCE8C2D89FAB3C
content-type: text/javascript; charset=utf-8
content-md5: G9Suce+Oaa1LX/2Nx9LctQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 221f2fc7-501e-006f-3c09-1b4244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 19997
vary: Accept-Encoding
akamai-grn: 0.a5777b5c.1730384105.107752ae
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=160103
expires: Sat, 11 Jan 2025 13:20:31 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf8
timing-allow-origin: *
GET

https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:17 GMT
etag: 0x8DCE8C2DB362309
akamai-grn: 0.96777b5c.1731627830.77d33bc
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: qFAs4wCMzQBOlKg9KBk6eA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ed530f4-c01e-006a-33fe-1ab63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3450
vary: Accept-Encoding
cache-control: public, no-transform, max-age=416086
expires: Tue, 14 Jan 2025 12:26:54 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf9
timing-allow-origin: *
GET

https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:06 GMT
etag: 0x8DCDC5E23EBB645
content-length: 791
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rqa21C4TqvhBKaqsPZN5dA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 62fe1384-101e-0005-3f0f-181eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=64138
expires: Fri, 10 Jan 2025 10:41:06 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcfa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
content-length: 585
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 150042bc-501e-0002-6231-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=50121
expires: Fri, 10 Jan 2025 06:47:29 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcfc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 533
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: iXmM/0iacAzJj5a4uiRhcw==
last-modified: Fri, 03 Jan 2025 18:42:51 GMT
etag: 0x8DD2C266DC050CA
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a7d240d9-d01e-0075-4275-5e6d2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=374849
expires: Tue, 14 Jan 2025 00:59:37 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcfd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/U1NbN7mcTwDlpQXJqx6swENhLWc.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/U1NbN7mcTwDlpQXJqx6swENhLWc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:58:32 GMT
etag: 0x8DCDC5DEBC36F3E
content-length: 163
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ntZPQ0NwSl+Oa0DwbVn/yQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f39e518-601e-006c-24dc-164143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=155459
expires: Sat, 11 Jan 2025 12:03:07 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcfe
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 12:21:13 GMT
etag: 0x8DCDC9361C2A9CB
content-length: 305
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: U36iFcyu8u4qPEEyCl6EBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8e0dc95f-701e-0015-74c6-152809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=278662
expires: Sun, 12 Jan 2025 22:16:30 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcff
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:13 GMT
etag: 0x8DCDC5D2D7EB1BF
content-length: 320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b1a93f5f-601e-0067-0cc7-175937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=186958
expires: Sat, 11 Jan 2025 20:48:06 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd00
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 96271d35-101e-002c-405a-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=47996
expires: Fri, 10 Jan 2025 06:12:04 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd01
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 248
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: gzip
last-modified: Fri, 20 Dec 2024 06:44:41 GMT
x-eventid: 676b57d50bd047c6b5cd7cc97aeb8073
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E0AC
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WvxxHvAyivQBEpxKwJ888XdS8lmGb2wV5D9QLGTXlnc='; base-uri 'self';
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cache-control: public, max-age=123066
expires: Sat, 11 Jan 2025 03:03:14 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd03
timing-allow-origin: *
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
content-length: 174
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +jWBJey2nJqR+pG7G7E28A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 875f5454-e01e-001b-80bd-15c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=266345
expires: Sun, 12 Jan 2025 18:51:13 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fced
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:25:50 GMT
etag: 0x8DCDC61BC3A6D83
content-length: 218
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Nxjfu3FuQxhf33rq+sYskQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: daa30136-501e-0002-3699-18e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=216057
expires: Sun, 12 Jan 2025 04:53:05 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcf3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:27:18 GMT
etag: 0x8DCDC61F0CC0460
content-length: 402
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Lz38kBt2jGO2Pvu96TRnIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 55e264dc-e01e-0039-0135-16aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=8222
expires: Thu, 09 Jan 2025 19:09:10 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fcfb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
content-type: text/javascript; charset=utf-8
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 448b9b60-901e-0014-7637-1629f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 205
cache-control: public, no-transform, max-age=355189
expires: Mon, 13 Jan 2025 19:31:57 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd0c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
content-type: text/javascript; charset=utf-8
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e86ad052-701e-0051-48da-16f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1828
vary: Accept-Encoding
cache-control: public, no-transform, max-age=190356
expires: Sat, 11 Jan 2025 21:44:44 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd0d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 23 Dec 2024 09:08:42 GMT
etag: 0x8DD23316609C95F
content-length: 1228
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGZmFvLovaV+vrOPPwbS7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 601ec1cb-b01e-006e-470b-5e43b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1735941355.2af0dac2
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=307335
expires: Mon, 13 Jan 2025 06:14:23 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd0e
timing-allow-origin: *
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
akamai-grn: 0.521a1202.1735642027.881ec71b
content-type: text/javascript; charset=utf-8
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c5bd5a5d-501e-0064-2a4c-155a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 632
cache-control: public, no-transform, max-age=105101
expires: Fri, 10 Jan 2025 22:03:49 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd0f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 25 Dec 2024 10:47:01 GMT
etag: 0x8DD24D176A0510A
content-length: 2059
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: HxxeWmLbbUeUU8XtzzROdA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 442f1300-d01e-0057-0b0b-5e031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.90777b5c.1735945637.70896f9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=318044
expires: Mon, 13 Jan 2025 09:12:52 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd10
timing-allow-origin: *
GET

https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:33 GMT
etag: 0x8DCEC88590A49A7
content-type: text/javascript; charset=utf-8
content-md5: ADAJbopPIaunlKI/GZphBw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 63cd0002-201e-0006-680e-371de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1702
cache-control: public, no-transform, max-age=160192
expires: Sat, 11 Jan 2025 13:22:00 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd11
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:12 GMT
etag: 0x8DCE8C26CBEA77D
content-type: text/javascript; charset=utf-8
content-md5: NwHEJrwNKfNaWOfUurgsUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6355ddd8-501e-0002-1efe-36e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1913
cache-control: public, no-transform, max-age=154168
expires: Sat, 11 Jan 2025 11:41:36 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd12
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:47 GMT
etag: 0x8DCE8C2C92E361F
content-type: text/javascript; charset=utf-8
content-md5: oCgEakDIKvDIYdA4zfrHhQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 03ed9972-901e-005b-1bfe-36edec000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1937
cache-control: public, no-transform, max-age=78979
expires: Fri, 10 Jan 2025 14:48:27 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd13
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
akamai-grn: 0.ad8f655f.1734114627.ea92b6c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a9070a5-501e-0020-2ef1-17865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=79165
expires: Fri, 10 Jan 2025 14:51:33 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd14
timing-allow-origin: *
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
akamai-grn: 0.4b367a5c.1734510047.c5277cc
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 92
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b826b2dc-201e-0024-251c-1573de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=72721
expires: Fri, 10 Jan 2025 13:04:09 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd15
timing-allow-origin: *
GET

https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 04:13:15 GMT
etag: 0x8DD08507D665276
content-length: 955
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Kk0u9e/SalHwM0LSYxaS+g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a67788bb-101e-0063-1eab-3aacb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1732053803.7ae27a55
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=314464
expires: Mon, 13 Jan 2025 08:13:12 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd16
timing-allow-origin: *
GET

https://r.bing.com/rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 25 Dec 2024 10:47:01 GMT
etag: 0x8DD24D176C8BA41
content-length: 2931
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: boJho9/dRbdiRsm7aBhA/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 305a5264-a01e-0035-5c0b-5e44c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1735943246.8664d89
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=307353
expires: Mon, 13 Jan 2025 06:14:41 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd17
timing-allow-origin: *
GET

https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:24 GMT
etag: 0x8DCE8C34A2EADC0
akamai-grn: 0.86777b5c.1734594844.eba247b
content-length: 2391
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: UYaER6ThZGEud/Muajg45w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 02bb88ce-801e-006d-6dde-1a40be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=290444
expires: Mon, 13 Jan 2025 01:32:52 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd18
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 23 Dec 2024 09:08:43 GMT
etag: 0x8DD2331661F49C1
content-length: 11666
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: b3MnZ0xA07I002VvYczIQQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 50ba17c0-f01e-002d-5d0b-5e6950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1735941355.e49ad2c6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=307751
expires: Mon, 13 Jan 2025 06:21:19 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd19
timing-allow-origin: *
GET

https://r.bing.com/rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 09 Dec 2024 12:46:23 GMT
etag: 0x8DD184F7CB91EEC
content-length: 489
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L9Hi8L0edLojA1c18kZUVA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efd1a7bc-f01e-004b-5abe-4adb0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4eba1302.1733821287.fe99365
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=167864
expires: Sat, 11 Jan 2025 15:29:52 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd1a
timing-allow-origin: *
GET

https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: 0OgEsUc5afhLPnQZRYj75Q==
last-modified: Fri, 22 Nov 2024 10:55:37 GMT
etag: 0x8DD0AE432F16745
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 244ffc14-601e-0023-4634-3d855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2310
cache-control: public, no-transform, max-age=203596
expires: Sun, 12 Jan 2025 01:25:24 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd1b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:07 GMT
etag: 0x8DCDC629CF7A282
content-length: 172
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TLwZhqYro/p02/6N++ZW5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c41191e3-201e-0006-43ea-181de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=126962
expires: Sat, 11 Jan 2025 04:08:10 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd1c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 04 Nov 2024 04:21:32 GMT
etag: 0x8DCFC8829FC5441
content-type: text/javascript; charset=utf-8
content-md5: Db92/67CtFF0jljsKqPMeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 970268eb-501e-0002-421c-2fe86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 482
cache-control: public, no-transform, max-age=115999
expires: Sat, 11 Jan 2025 01:05:27 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd1d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:23 GMT
etag: 0x8DCE8C3263B07E9
content-type: text/javascript; charset=utf-8
content-md5: 80z3xDtWBrHD/WXVZ9HXMQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1dc2465b-c01e-0007-0808-1b1c15000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 887
vary: Accept-Encoding
akamai-grn: 0.7d6e5668.1731852432.ac30a5d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=69332
expires: Fri, 10 Jan 2025 12:07:40 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd1e
timing-allow-origin: *
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
content-length: 792
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b3b09a98-601e-0001-234c-19eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=200542
expires: Sun, 12 Jan 2025 00:34:30 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd1f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:37:29 GMT
etag: 0x8DCEC87A3ED1870
content-type: text/javascript; charset=utf-8
content-md5: F/FfhRxYlnuZTsg2+6i7VA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e2167499-b01e-006e-04b5-2643b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1336
cache-control: public, no-transform, max-age=140508
expires: Sat, 11 Jan 2025 07:53:56 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd31
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:01 GMT
etag: 0x8DCE8C3193D5444
content-type: text/javascript; charset=utf-8
content-md5: K6mYdssyGKO2Fe2fyESYTg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f577b309-d01e-0018-19fe-36c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8536
cache-control: public, no-transform, max-age=87825
expires: Fri, 10 Jan 2025 17:15:53 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd33
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:30:41 GMT
etag: 0x8DCEC86B0CE8A0B
akamai-grn: 0.2a367a5c.1735259301.4f352fd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 15JqyZBsCgkATXocOIdHMw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19c13b40-c01e-006a-573c-24b63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 365
cache-control: public, no-transform, max-age=106166
expires: Fri, 10 Jan 2025 22:21:34 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd34
timing-allow-origin: *
GET

https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
content-length: 245
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1ace1fd1-f01e-000f-063c-170766000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=364012
expires: Mon, 13 Jan 2025 21:59:00 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd32
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:08 GMT
etag: 0x8DCDC5E250561B1
content-length: 476
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dIetyGvEY3rWVcsphG5z6g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5164213-c01e-0048-32a8-14d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=285130
expires: Mon, 13 Jan 2025 00:04:18 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd35
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:16:07 GMT
etag: 0x8DCDC6060BC5610
content-length: 247
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: pDodX6p5WFhmpgGbyxGATg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b6061857-f01e-0026-5fe5-187124000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=52156
expires: Fri, 10 Jan 2025 07:21:24 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd37
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:01 GMT
etag: 0x8DCDC5F3F15CCC5
akamai-grn: 0.87221002.1735330575.3a55d800
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 304
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PX2MCYqpUzo58j8uZ/WgUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 04108e64-601e-000a-1875-17f319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=103803
expires: Fri, 10 Jan 2025 21:42:11 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd38
timing-allow-origin: *
GET

https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:08:12 GMT
etag: 0x8DCDC67A73161B2
content-type: text/javascript; charset=utf-8
content-md5: rEFXJrf0kyk8MofTblrrHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 15e28938-101e-0063-550e-16acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 517
cache-control: public, no-transform, max-age=424558
expires: Tue, 14 Jan 2025 14:48:06 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd39
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 06 Dec 2024 21:14:03 GMT
etag: 0x8DD163AE97BF649
content-length: 318
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CPKqpyd3O29Qao9K5FGPzQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bbcea579-c01e-0043-446a-48c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b9777b5c.1733564233.1a4d93c1
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=224481
expires: Sun, 12 Jan 2025 07:13:29 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd3a
timing-allow-origin: *
GET

https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:57 GMT
etag: 0x8DCE8C2CF400D7F
content-length: 2625
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DTDL0ta8Z4w5qdHa9ZUG/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 847aa716-d01e-0057-53de-1a031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=103695
expires: Fri, 10 Jan 2025 21:40:23 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd3d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IzifzVeZAFUPAOVXA0p1w_tvqEA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/IzifzVeZAFUPAOVXA0p1w_tvqEA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
content-length: 1076
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 507fdf57-601e-0067-5912-165937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=29457
expires: Fri, 10 Jan 2025 01:03:05 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd40
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:24:23 GMT
etag: 0x8DCEC85CF372642
akamai-grn: 0.97901002.1733993781.1e000b3b
content-type: text/javascript; charset=utf-8
content-md5: PkxdhPHrMXZXxfqaK/YI3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0891fdf4-501e-0009-18fe-36f01e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1067
cache-control: public, no-transform, max-age=205092
expires: Sun, 12 Jan 2025 01:50:20 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd42
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:28 GMT
etag: 0x8DCE8C305642E82
akamai-grn: 0.43367a5c.1734866422.12e6f377
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1453
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: o0P31pAM8ZjqucLAMWUkZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 87018ea0-e01e-005f-5e2d-23186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=227387
expires: Sun, 12 Jan 2025 08:01:55 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd30
timing-allow-origin: *
GET

https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:30 GMT
etag: 0x8DCDC5D13CD0771
content-length: 310
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L5ADL4PV6f4x84onM+3pfQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f330063-901e-0072-7fe6-159bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124116
expires: Sat, 11 Jan 2025 03:20:44 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd36
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:23 GMT
etag: 0x8DCDC66D6FEC879
content-length: 1092
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: v56DnyZo0+Ho77B8f6GoyA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a08c9759-401e-0034-262f-174538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=70785
expires: Fri, 10 Jan 2025 12:31:53 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd3b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 13 Dec 2024 07:56:08 GMT
etag: 0x8DD1B4B9A365000
content-length: 474
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: p/3mO7vALd9wD5esEzLGZw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f8018f31-b01e-002a-1085-4d9fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=346166
expires: Mon, 13 Jan 2025 17:01:34 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd41
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:04:52 GMT
etag: 0x8DCDC672FE75D26
content-type: text/javascript; charset=utf-8
content-md5: JYNnUW1D/Qe7hGsFi8+mBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 85f60ed7-801e-0044-1392-1636fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 437
cache-control: public, no-transform, max-age=155445
expires: Sat, 11 Jan 2025 12:02:53 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd3c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:33 GMT
etag: 0x8DD04929EE8EC69
content-type: text/javascript; charset=utf-8
content-md5: IYJzFG4gYZ14vnQdqTao+A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f577b370-d01e-0018-6efe-36c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1268
cache-control: public, no-transform, max-age=265216
expires: Sun, 12 Jan 2025 18:32:24 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd3e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:39:05 GMT
etag: 0x8DCEC87DD067940
content-length: 658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hmcBay1BgAVA4sBe4FzXJg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ec2b6955-201e-006b-38cc-1eb7c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=298971
expires: Mon, 13 Jan 2025 03:54:59 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7fd3f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 06:47:11 GMT
etag: 0x8DCE82E33DB4289
akamai-grn: 0.cc8f655f.1734740173.ad8400b
content-length: 263
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kSd0hTdqYlIKxD09mZrqMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19451da4-501e-0046-6040-1a3406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=353282
expires: Mon, 13 Jan 2025 19:00:10 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7feab
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:09 GMT
etag: 0x8DCDC67C959D1C6
content-length: 230
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e8o72fCkQwkU95GMyH4alQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f85c7cb3-d01e-0013-4acc-17df71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=410809
expires: Tue, 14 Jan 2025 10:58:57 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7feb6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:27 GMT
etag: 0x8DD04929B4990FB
content-length: 3910
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PtU28jG6dGjHkVaL3KCYNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d0661e89-601e-0001-5ebb-36eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=83589
expires: Fri, 10 Jan 2025 16:05:17 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f7ff10
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 06 Dec 2024 06:22:02 GMT
etag: 0x8DD15BE4C6397FE
content-length: 26625
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: XepiajoIzA8mdkJ+Qn60Zw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3e7e202c-d01e-0018-5612-48c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b9777b5c.1733529362.1959f94b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=220206
expires: Sun, 12 Jan 2025 06:02:14 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f80041
timing-allow-origin: *
GET

https://r.bing.com/rp/GCbWiaQCG_woyBLA9wB3Yh8a1jY.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/GCbWiaQCG_woyBLA9wB3Yh8a1jY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: l7aM6sVN/Blp57y2x3od6Q==
last-modified: Wed, 08 Jan 2025 08:29:31 GMT
etag: 0x8DD2FBE92E5EAD1
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a999328d-901e-001f-0729-623180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 13112
vary: Accept-Encoding
cache-control: public, no-transform, max-age=371256
expires: Mon, 13 Jan 2025 23:59:44 GMT
date: Thu, 09 Jan 2025 16:52:08 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441528.2f80044
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/YelbEmIR9E54rYl4ZRg76rPKz3Q.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/YelbEmIR9E54rYl4ZRg76rPKz3Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 21 Nov 2024 17:02:55 GMT
etag: 0x8DD0A4E57D80B90
content-length: 6764
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Xap81V4RtEj8TcfeaqPClA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9356dc7e-801e-0029-2885-3e9cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.98777b5c.1732464490.957aad0
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=183689
expires: Sat, 11 Jan 2025 19:53:40 GMT
date: Thu, 09 Jan 2025 16:52:11 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441531.2f80c64
timing-allow-origin: *
GET

https://r.bing.com/rp/cD-VOAGiLxuv3XXo37JO9cObcPg.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/cD-VOAGiLxuv3XXo37JO9cObcPg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:06 GMT
etag: 0x8DCDC63DDE1E3BE
content-length: 857
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 2l02yysuup9QfnZinhglJw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4260ba2e-101e-0068-44a6-14b4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=374025
expires: Tue, 14 Jan 2025 00:46:22 GMT
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441557.2f86558
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

msedge.exe

Remote address:

95.101.143.212:443

Request

GET /rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:21 GMT
etag: 0x8DCE8C3014FD967
content-length: 4656
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 04jjFZu5YZ+50YtQ9rT+Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f50e5572-b01e-004c-5be7-312d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731630724.1b1a6367
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=70337
expires: Fri, 10 Jan 2025 12:24:54 GMT
date: Thu, 09 Jan 2025 16:52:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.35367a5c.1736441557.2f8655a
timing-allow-origin: *
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

2.19.252.146

a1851.dscg2.akamai.net

IN A

2.19.252.134
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingaotak

msedge.exe

Remote address:

2.19.252.146:443

Request

OPTIONS /api/report?cat=bingaotak HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://r.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 504 Gateway Time-out

Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 280
Expires: Thu, 09 Jan 2025 16:52:28 GMT
Date: Thu, 09 Jan 2025 16:52:28 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.86f91302.1736441528.4184ae7c
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingaotak

msedge.exe

Remote address:

2.19.252.146:443

Request

OPTIONS /api/report?cat=bingaotak HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://r.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 500 Internal Server Error

Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 387
Expires: Thu, 09 Jan 2025 16:54:55 GMT
Date: Thu, 09 Jan 2025 16:54:55 GMT
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.86f91302.1736441648.418572b2
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
DNS

login.microsoftonline.com

msedge.exe

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.trafficmanager.net

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.2

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.75

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.64

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.71

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.31.69

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.0

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.31.73

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.159.73
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d

msedge.exe

Remote address:

20.190.159.2:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 595715e2-edf9-407a-b41a-95ffef345e01
x-ms-ests-server: 2.1.19683.6 - WEULR1 ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+dub2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-2m4C4g8dSbLJ_wFlHNknsA' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; img-src 'self' data: https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.ATQAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA0AA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFe-r6b8xLCsjC7E_hrMNc4Ajt9X2ULISyAGZoQy3yYAaZNEzctFlcGOq-I7BYlmUBxqksS2Ul0sQyFcAYZvbgb6y_DGiP2q1_k0Fyo4QNOpDkgAA; expires=Sat, 08-Feb-2025 16:52:08 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=AiM0aJGbyOFMiWezi5lhmqSCeMQLAQAAALj1Ed8OAAAA; expires=Sat, 08-Feb-2025 16:52:08 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: esctx=PAQABBwEAAADW6jl31mB3T7ugrWTT8pFewgPCwj7b9EDwcfXLydDRM1yxGrWzorXLH2jlZIeq2TYHWfhoFAzna0oM26j0amT5jP6Y12ff7ROlmtC2W7ECUKeicpsr5r1loGjkjYmrY3JaDV9J8nt8f9wZfebZvzBkVVbzjUAfUjL_bHUB7BCR6_B_2Qea4aFMdbyjVFzQj7kgAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
set-cookie: stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
date: Thu, 09 Jan 2025 16:52:07 GMT
content-length: 696
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d

msedge.exe

Remote address:

20.190.159.2:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: buid=1.ATQAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA0AA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFe-r6b8xLCsjC7E_hrMNc4Ajt9X2ULISyAGZoQy3yYAaZNEzctFlcGOq-I7BYlmUBxqksS2Ul0sQyFcAYZvbgb6y_DGiP2q1_k0Fyo4QNOpDkgAA
cookie: fpc=AiM0aJGbyOFMiWezi5lhmqSCeMQLAQAAALj1Ed8OAAAA
cookie: esctx=PAQABBwEAAADW6jl31mB3T7ugrWTT8pFewgPCwj7b9EDwcfXLydDRM1yxGrWzorXLH2jlZIeq2TYHWfhoFAzna0oM26j0amT5jP6Y12ff7ROlmtC2W7ECUKeicpsr5r1loGjkjYmrY3JaDV9J8nt8f9wZfebZvzBkVVbzjUAfUjL_bHUB7BCR6_B_2Qea4aFMdbyjVFzQj7kgAA
cookie: x-ms-gateway-slice=estsfd
cookie: stsservicecookie=estsfd

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 04e0b612-bd20-43c7-b275-c2d611563d00
x-ms-ests-server: 2.1.19683.6 - NEULR1 ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+dub2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-yVDP1KjvBzutb9-sIM5l0w' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; img-src 'self' data: https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.ATQAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA0AA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFeyKxpKo7K1c2w9iyyh4JphMJY_poAcY7hTrNAoimeK4funAtfva9GZN7TFFIn6qGY6OEdno2npFgYC1SR9AoQA6LSRQRZj-Kpb29qiOTEbKIgAA; expires=Sat, 08-Feb-2025 16:52:23 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=AiM0aJGbyOFMiWezi5lhmqSCeMQLAgAAALj1Ed8OAAAA; expires=Sat, 08-Feb-2025 16:52:23 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
date: Thu, 09 Jan 2025 16:52:22 GMT
content-length: 702
DNS

218.143.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

218.143.101.95.in-addr.arpa

IN PTR

Response

218.143.101.95.in-addr.arpa

IN PTR

a95-101-143-218deploystaticakamaitechnologiescom
DNS

212.143.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

212.143.101.95.in-addr.arpa

IN PTR

Response

212.143.101.95.in-addr.arpa

IN PTR

a95-101-143-212deploystaticakamaitechnologiescom
DNS

2.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.159.190.20.in-addr.arpa

IN PTR

Response
DNS

146.252.19.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.252.19.2.in-addr.arpa

IN PTR

Response

146.252.19.2.in-addr.arpa

IN PTR

a2-19-252-146deploystaticakamaitechnologiescom
DNS

68.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

68.32.126.40.in-addr.arpa

IN PTR

Response
DNS

237.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.197.79.204.in-addr.arpa

IN PTR

Response
DNS

97.17.167.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.17.167.52.in-addr.arpa

IN PTR

Response
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Virus-Samples/Malware-Sample-Sources

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:18 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3527c1db059702fd3da17b2be3724257"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.299844638.1736441538; Path=/; Domain=github.com; Expires=Fri, 09 Jan 2026 16:52:18 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 09 Jan 2026 16:52:18 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: F5A5:2254DA:294AF:2EAF1:677FFEC2
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: F5A5:2254DA:295A0:2EC10:677FFEC3
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/hovercards/citation/sidebar_partial?tree_name=main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/hovercards/citation/sidebar_partial?tree_name=main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F5A5:2254DA:295A0:2EC0F:677FFEC2
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F5A5:2254DA:295A0:2EC11:677FFEC3
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/latest-commit/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/latest-commit/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"6ec5c01c8ea3a7798ad88f0f24f8c668"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 77
x-github-request-id: F5A5:2254DA:295A7:2EC19:677FFEC3
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"57dd3ff551f8b3d10b3856a048bab63c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: F5A5:2254DA:295A9:2EC1C:677FFEC3
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/tree-commit-info/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/tree-commit-info/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"22bc945de2790aca617aa5a11de57e77"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 421
x-github-request-id: F5A5:2254DA:295A7:2EC1B:677FFEC3
GET

https://github.com/Virus-Samples/Malware-Sample-Sources/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Virus-Samples/Malware-Sample-Sources/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:19 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"02e2b092dfbaf66cdecc4986665a53d3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 417
x-github-request-id: F5A5:2254DA:295A7:2EC18:677FFEC3
GET

https://github.com/Da2dalus/The-MALWARE-Repo

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:40 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"d17a4fa541724314ffb852f255cc2484"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F5A5:2254DA:2A4DC:2FD57:677FFEC3
GET

https://github.com/Da2dalus/The-MALWARE-Repo/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: F5A5:2254DA:2A5BB:2FE49:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F5A5:2254DA:2A5BB:2FE48:677FFED8
GET

https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F5A5:2254DA:2A5BB:2FE4A:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/contributors_list?count=2&current_repository=The-MALWARE-Repo&items_to_show=2

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/contributors_list?count=2&current_repository=The-MALWARE-Repo&items_to_show=2 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:32 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=604800, public
etag: W/"c75e05794d72230a695e880f1a6c83a4"
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-type: application/manifest+json; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
content-length: 474
x-github-request-id: F5A5:2254DA:2A5D1:2FE6A:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"5b31a9834d671bf0910962f13fd3875e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-html-safe: 2f0d17968a878926e3dcea8d3f571b18816035f3ca7ad0533100068dc49a2074
content-length: 501
x-github-request-id: F5A5:2254DA:2A5BD:2FE4B:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"57dd3ff551f8b3d10b3856a048bab63c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: F5A5:2254DA:2A5C1:2FE56:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"adc2c0d060742993a54f31416bc951e3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 79
x-github-request-id: F5A5:2254DA:2A5C1:2FE52:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ced17b2112827c8d5577d524acbe58b5"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 632
x-github-request-id: F5A5:2254DA:2A5C1:2FE4F:677FFED9
GET

https://github.com/manifest.json

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /manifest.json HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"07da86d5c2d3c431a0aa2221ab777c22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1218
x-github-request-id: F5A5:2254DA:2A5C1:2FE54:677FFED9
GET

https://github.com/Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Dz7eiZ6r5EiyvY70sGig9cQC0Q3srkiE4Tvn%2FX0GPyvFWhfSaeFYspfu%2BD%2BiZe%2F4BpUpVD2UTPCBCaen2uL121gbbaiZoxDjZQz5CTkanJBvpkjxoRvvL12yO3SzFVKBuBC5ML2RiqUCqaFdb2lPCOGJt4XcROhODfjmQftI4scIMZxGQMVXH7l3aL%2FutcydgjHerwwxcbUuKDUk%2FLNjZkjsZ8fgxJVh2JgIWZMQU5s7ri8dWmS1%2Btap2t5orPePC3Q5i4zeu5SIXpVubwNdcA%3D%3D--FvzwTRSZ%2BmY0KZJD--ILJi7Q2OPkwESVkHW2KiJw%3D%3D
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Thu, 09 Jan 2025 16:52:52 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master
cache-control: max-age=0, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F5A5:2254DA:2ACAA:30653:677FFED9
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR

Response
DNS

60.153.16.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

60.153.16.2.in-addr.arpa

IN PTR

Response

60.153.16.2.in-addr.arpa

IN PTR

a2-16-153-60deploystaticakamaitechnologiescom
DNS

github.githubassets.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.githubassets.com

IN A

Response

github.githubassets.com

IN A

185.199.108.154

github.githubassets.com

IN A

185.199.109.154

github.githubassets.com

IN A

185.199.110.154

github.githubassets.com

IN A

185.199.111.154
DNS

avatars.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

avatars.githubusercontent.com

IN A

Response

avatars.githubusercontent.com

IN A

185.199.109.133

avatars.githubusercontent.com

IN A

185.199.110.133

avatars.githubusercontent.com

IN A

185.199.111.133

avatars.githubusercontent.com

IN A

185.199.108.133
GET

https://github.githubassets.com/assets/light-0cfd1fd8509e.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/light-0cfd1fd8509e.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 20 Nov 2024 21:24:18 GMT
etag: "0x8DD09A9B15EC064"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 3084282
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 141, 57384
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2c76cd4f3bc0df4f3dfac8152c4aeefc48b61f7b
content-length: 6899
GET

https://github.githubassets.com/assets/dark-d782f59290e2.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/dark-d782f59290e2.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 11 Dec 2024 17:38:33 GMT
etag: "0x8DD1A0AA2CE9848"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2432156
x-served-by: cache-iad-kcgs7200156-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 9, 54350
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9c1bc3f8f39008131c3164af3b189956545434d4
content-length: 2591
GET

https://github.githubassets.com/assets/primer-primitives-953961b66e63.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/primer-primitives-953961b66e63.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 17 Dec 2024 18:43:31 GMT
etag: "0x8DD1ECAB43210B5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1790620
x-served-by: cache-iad-kjyo7100094-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 37701
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 65d03d33951481e9aacef96e8e01ed816e4b2c68
content-length: 39148
GET

https://github.githubassets.com/assets/primer-4430d3c2c150.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/primer-4430d3c2c150.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 20 Nov 2024 21:24:16 GMT
etag: "0x8DD09A9B01484BC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 3084279
x-served-by: cache-iad-kiad7000027-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 139, 57606
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e49ebfadac9ae5fb382ba07cf8b1385fe6d6f50b
content-length: 6985
GET

https://github.githubassets.com/assets/global-7e1d0e4dee6a.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/global-7e1d0e4dee6a.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 13 Dec 2024 19:44:51 GMT
etag: "0x8DD1BAE9C74ED39"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1980566
x-served-by: cache-iad-kcgs7200070-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 26, 43541
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 19ce467afc77fe7b28aa3797cba1320b1ed422d0
content-length: 21280
GET

https://github.githubassets.com/assets/github-e72829f5538b.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/github-e72829f5538b.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 07 Jan 2025 15:45:18 GMT
etag: "0x8DD2F3249B6FBDC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 158656
x-served-by: cache-iad-kiad7000112-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 5416
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 43fb12a7b07e764a4677f3417e0f8e9eeecf1ab5
content-length: 5135
GET

https://github.githubassets.com/assets/repository-197a21528ff0.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/repository-197a21528ff0.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 07 Jan 2025 18:55:10 GMT
etag: "0x8DD2F4CCFE46572"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 151359
x-served-by: cache-iad-kjyo7100100-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 45, 6479
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 03a56e779965dd96d3212b228c11dd3551b995a1
content-length: 38093
GET

https://github.githubassets.com/assets/primer-react.d209d02dc41225aeedb7.module.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/primer-react.d209d02dc41225aeedb7.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:17 GMT
etag: "0x8DCC5ED35736954"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 6395145
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 32, 41814
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 110bd297a959e28d9d45feebc013557d855aa1ab
content-length: 479
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 07 Jan 2025 16:36:07 GMT
etag: "0x8DD2F3962ADA373"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 155137
x-served-by: cache-iad-kcgs7200086-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 66, 4275
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a9a57d61ae254bc933c1d20a4e002862870645b6
content-length: 5158
GET

https://github.githubassets.com/assets/code-730cb3192afb.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/code-730cb3192afb.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 08 Jan 2025 23:30:08 GMT
etag: "0x8DD303C63769B97"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 60825
x-served-by: cache-iad-kjyo7100041-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 44, 3178
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 92e32d883b8326e06707c6f748bcdcd6fad2386d
content-length: 21285
GET

https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-691189ea6f17.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_ref-selector_RefSelector_tsx-691189ea6f17.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 08 Jan 2025 16:46:38 GMT
etag: "0x8DD30040549205D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68075
x-served-by: cache-iad-kjyo7100041-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 2207
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 80b1f94eabaaeb27f97b428eeed6a5179b68d47d
content-length: 6372
GET

https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-503c34-318866ed3f00.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-503c34-318866ed3f00.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 08 Jan 2025 05:43:03 GMT
etag: "0x8DD2FA7520BE09C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68075
x-served-by: cache-iad-kiad7000123-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 2171
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9de570b0e5d54cfb1e81a753c5bb0d9c7c3a5080
content-length: 20151
GET

https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-012d79-7ec25b51d23f.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-012d79-7ec25b51d23f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 08 Jan 2025 15:56:52 GMT
etag: "0x8DD2FFD11DA0478"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68074
x-served-by: cache-iad-kiad7000097-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 1943
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ec2a9143204e38731a43cbf9029c4e1d810a5d06
content-length: 10433
GET

https://github.githubassets.com/assets/repos-overview-f21e385995b2.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/repos-overview-f21e385995b2.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 08 Jan 2025 16:46:36 GMT
etag: "0x8DD3004041EE7C3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68074
x-served-by: cache-iad-kjyo7100059-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 43, 1923
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: be9bf491160067b3d1bc6aef3235653eb188fc2d
content-length: 15190
GET

https://github.githubassets.com/assets/repos-overview.9cc263aa0716ce801059.module.css

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/repos-overview.9cc263aa0716ce801059.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 22 Oct 2024 14:40:08 GMT
etag: "0x8DCF2A76D2FB21D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 4435511
x-served-by: cache-iad-kiad7000028-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 29443
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 35f0541b8e74d0df1cd2aea1e67a0b2ec2fdd3e9
content-length: 222
GET

https://github.githubassets.com/assets/wp-runtime-c928ca8c0253.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/wp-runtime-c928ca8c0253.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 09 Jan 2025 12:26:56 GMT
etag: "0x8DD30A8E81E5966"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 14612
x-served-by: cache-iad-kiad7000102-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 7, 1439
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 48c879b6437ec10f1ae3d0dfb726f4cd48738785
content-length: 14061
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 20:13:06 GMT
etag: "0x8DD1FA062B76FEE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1831177
x-served-by: cache-iad-kjyo7100051-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 40106
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8b98244450a802d554edfbe4c5cb2bba670eaa9b
content-length: 4964
GET

https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500E579D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59128
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 52e21d55a4fe2da7eef976ee7cd871a2c7b4532b
content-length: 3918
GET

https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-71291b73d826.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_failbot_failbot_ts-71291b73d826.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 18:22:05 GMT
etag: "0x8DD187E625ACB6B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2647536
x-served-by: cache-iad-kiad7000085-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 60773
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2c7249fed105cc747bdd3b8fe0f9cdb3ffa02fdd
content-length: 4645
GET

https://github.githubassets.com/assets/environment-7b93e0f0c8ff.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/environment-7b93e0f0c8ff.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500CD2AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100040-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59019
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 44b46fdc762f963e33e3648042cf8a44051a44cd
content-length: 5756
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FBFE222"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 58905
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 488091ddfab118f71c1d6f0b02a21a7c769e9239
content-length: 4848
GET

https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:36 GMT
etag: "0x8DD0D5EFC4A53FF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 3205605
x-served-by: cache-iad-kiad7000134-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 56750
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 384b80d752d8bfeb7a87c9dc223f2f453a87decd
content-length: 735
GET

https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E029647C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 58765
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d4c5e349a2e924784548c4a86c7747f6b87188dd
content-length: 3080
GET

https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F8D41"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 6681898
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 42466, 55275
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f97fd1e9fb67731009dc3643ed45a03b02c6d2ed
content-length: 3284
GET

https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 06 Jan 2025 21:21:01 GMT
etag: "0x8DD2E98058305E1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 143747
x-served-by: cache-iad-kiad7000087-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 129, 6450
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 32c0e95dfa23a0d1e2c22c1ec6db14921b039b77
content-length: 3634
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 09:56:04 GMT
etag: "0x8DD1900DC86F5C7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2525696
x-served-by: cache-iad-kcgs7200058-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 57825
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dd5fb1b08f5fff4a911d9efa119a69d660d3e06a
content-length: 3407
GET

https://github.githubassets.com/assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602F3D8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000100-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 39256
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f70f17ed560184e94e5f2253907c23b24ba6c170
content-length: 19397
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F3F7D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 5740726
x-served-by: cache-iad-kcgs7200153-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 22219, 55577
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 67a6c67a461a172f22b030a33a38ddc7d203a9c3
content-length: 3816
GET

https://github.githubassets.com/assets/github-elements-f991cfab5105.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/github-elements-f991cfab5105.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:40 GMT
etag: "0x8DD02B44F3EF886"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kcgs7200145-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59294
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e7c17676c9b3d623960f26e7a33dabe44fb43c2a
content-length: 4851
GET

https://github.githubassets.com/assets/element-registry-3b5362d3d402.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/element-registry-3b5362d3d402.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 19:56:20 GMT
etag: "0x8DD1954B7817C15"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1831177
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 39918
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 214bd2a5e292b9e4438adcc3eb72cafcee170d63
content-length: 3683
GET

https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 06 Jan 2025 17:39:03 GMT
etag: "0x8DD2E79035A5926"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 246406
x-served-by: cache-iad-kiad7000156-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 9645
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aa4543753cd722399d9e9509cc51c728432a15f2
content-length: 7898
GET

https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B44FAF168F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000037-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59199
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 91c4a9013221c3e2501ceeb9788a56749b6fd94d
content-length: 2385
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:52 GMT
etag: "0x8DD0D5F05CBAB3B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 3205604
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 57704
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8c1681ec61b3e9817951e50a7d9834f39019cde6
content-length: 6786
GET

https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500C5DFD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000164-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59026
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 60e4dc7d6ea8cf09f70d1d9765d20e5a2cb5211e
content-length: 4311
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:24:30 GMT
etag: "0x8DD2051FF28CC62"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1790621
x-served-by: cache-iad-kjyo7100035-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 37551
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5d50454adeb5e7899f072db0497fefd3e55424a0
content-length: 27463
GET

https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:27 GMT
etag: "0x8DD0D665E0F9ED8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kcgs7200078-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59138
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5f584f32fd8482cd693e88386972f48b25be5758
content-length: 5379
GET

https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:24:25 GMT
etag: "0x8DD2051FC564485"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1790620
x-served-by: cache-iad-kjyo7100112-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 37264
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4bcb09ca8ab110cc8a264997af1577fe75d5e91d
content-length: 9522
GET

https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:53 GMT
etag: "0x8DD0D5F064BBD59"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 3205596
x-served-by: cache-iad-kiad7000150-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 32000
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 633b7477daec72a74946e3a208c8a9bae97cc87f
content-length: 4975
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:00 GMT
etag: "0x8DD1A31D010928E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2057562
x-served-by: cache-iad-kiad7000113-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 61, 32258
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d1cb6e9cbc7cfe8df1e557e131f101492ed113a0
content-length: 4986
GET

https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:15 GMT
etag: "0x8DCB7D5A25F63A1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 4410237
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 7891, 39899
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ef2f7c9762fb70e3471216d73f0720d52ec755fc
content-length: 3888
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 22:25:52 GMT
etag: "0x8DD207C18FC3FA9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1774136
x-served-by: cache-iad-kjyo7100114-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 92, 39603
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9ba85cbcd50795171f0870616933035ecdf1ffec
content-length: 60145
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 19 Nov 2024 17:47:26 GMT
etag: "0x8DD08C23B22EDF8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 4384951
x-served-by: cache-iad-kiad7000141-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 56515
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a4cfa89a8cf143ec1df800d2a1ca97849cd69460
content-length: 4143
GET

https://github.githubassets.com/assets/behaviors-a6abce982f3f.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/behaviors-a6abce982f3f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:11 GMT
etag: "0x8DD15445D10CB59"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kcgs7200049-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 59138
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 66055d1e69a28bf23038c893fd22f8e97d932a65
content-length: 3027
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:27 GMT
etag: "0x8DD0D5EF6E1B53E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 3205604
x-served-by: cache-iad-kcgs7200138-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 57355
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 01a11963c5677619a54fb791858a816f2ed58f5b
content-length: 3083
GET

https://github.githubassets.com/assets/notifications-global-cfcd9f4f0f23.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/notifications-global-cfcd9f4f0f23.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:17 GMT
etag: "0x8DD1969F1BFDB43"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2567214
x-served-by: cache-iad-kjyo7100119-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 63, 58547
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 465bf010fae208b37712f5da5b94073b9aec9b5e
content-length: 6141
GET

https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 16:12:32 GMT
etag: "0x8DCED342CC2D5FC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 5042957
x-served-by: cache-iad-kcgs7200039-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 59, 56026
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 55888118d2d2f9cf11be732f83a1c54c50f3ff79
content-length: 3363
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-70450e-eecf0d50276f.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-70450e-eecf0d50276f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD15446030C279"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 60314
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1c260420ed754f3af6db82b6b5c5c9cd0fac6a4b
content-length: 18635
GET

https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 17:45:32 GMT
etag: "0x8DD1879474B8D64"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2567214
x-served-by: cache-iad-kcgs7200057-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 63, 58690
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4a3db44d1df16283dc64357a1b1fa689ad21ac01
content-length: 4452
GET

https://github.githubassets.com/assets/codespaces-a493a4b9528f.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/codespaces-a493a4b9528f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Sat, 16 Nov 2024 19:35:21 GMT
etag: "0x8DD0675CF86BAD9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761777
x-served-by: cache-iad-kiad7000054-IAD, cache-lcy-eglc8600079-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 37166
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 138574c2ee44035da424b1e815b34d80e63d9c4b
content-length: 4341
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FC02FE8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761777
x-served-by: cache-iad-kiad7000022-IAD, cache-lcy-eglc8600079-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 34916
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3313f672884ef5815b2e272801042eb244f010ba
content-length: 3500
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:27 GMT
etag: "0x8DD1969F7D55965"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2567214
x-served-by: cache-iad-kcgs7200176-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 35370
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fe32c819d4712d99f9de3fe1a67858f2a45267bf
content-length: 16144
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FC3AE69"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761777
x-served-by: cache-iad-kcgs7200159-IAD, cache-lcy-eglc8600079-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 38341
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aafab475a583549475957fc6c7759ad743ee7ee7
content-length: 6126
GET

https://github.githubassets.com/assets/repositories-f3093651fb0e.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/repositories-f3093651fb0e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:07 GMT
etag: "0x8DD15445A24BD36"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761777
x-served-by: cache-iad-kcgs7200068-IAD, cache-lcy-eglc8600079-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 33010
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b7f5dbc677ca8edbeb7c4da98a4c5e0c83660d2e
content-length: 5491
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-26cce2010167.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-26cce2010167.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD154460870CCD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100114-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 62280
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ae1c657d0ca0765bc71d076b3feab972f8be1185
content-length: 7079
GET

https://github.githubassets.com/assets/code-menu-b5f092ec4b30.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/code-menu-b5f092ec4b30.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FBEF8D2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kiad7000052-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 62695
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f0ec519cd9912f49e39940a4090bf65c2b62ea51
content-length: 9716
GET

https://github.githubassets.com/assets/primer-react-7d737072203b.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/primer-react-7d737072203b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Dec 2024 20:21:05 GMT
etag: "0x8DD1E0F2B7976DE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68074
x-served-by: cache-iad-kiad7000141-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 2473
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ce61126d433467e8f726918ec22f651d46c440b7
content-length: 5400
GET

https://github.githubassets.com/assets/react-core-85b0640cddc8.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/react-core-85b0640cddc8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C817F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100132-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 62169
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 48640ab36c5bd08181545e2bfe98956304faf6ed
content-length: 5120
GET

https://github.githubassets.com/assets/react-lib-2131e17288a8.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/react-lib-2131e17288a8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 06 Jan 2025 18:18:46 GMT
etag: "0x8DD2E7E8F968F65"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68079
x-served-by: cache-iad-kcgs7200159-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 3429
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8e1d4ae38942b200133b51fbe764703c80cee701
content-length: 110455
GET

https://github.githubassets.com/assets/octicons-react-611691cca2f6.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/octicons-react-611691cca2f6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 08 Jan 2025 15:56:23 GMT
etag: "0x8DD2FFD004EB49F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 79348
x-served-by: cache-iad-kiad7000030-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 3833
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: be03aeffd9d7ececcec48574c260e3a2fea19331
content-length: 40979
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:01 GMT
etag: "0x8DD1A31D0950C44"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2057562
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 57, 27450
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c2e54c6d7c8c2faae8e5beb047612e3a3d819fa8
content-length: 3489
GET

https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:27 GMT
etag: "0x8DD0D665E7C17D4"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761777
x-served-by: cache-iad-kcgs7200094-IAD, cache-lcy-eglc8600079-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 36307
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8eed207ab546229be0ad05a26ee3a3a2d2f859eb
content-length: 2646
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E029647C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kcgs7200065-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 35198
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5f11f09d7094f54dd91d9631692195f41044f9e9
content-length: 3412
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:29 GMT
etag: "0x8DD1969F8C0ACAB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2567214
x-served-by: cache-iad-kjyo7100053-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 71, 39812
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 60519ff465dce831c9ce762f1780cb1be66bd2f7
content-length: 3123
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu-b1dd2eefd368.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/notifications-subscriptions-menu-b1dd2eefd368.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 02 Jan 2025 20:28:06 GMT
etag: "0x8DD2B6BF6F1A756"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 250162
x-served-by: cache-iad-kiad7000106-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 9268
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c2544ff075883353e8949b369f6b7833d63c2513
content-length: 5865
GET

https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-fecaee5fb732.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_ui-commands_ui-commands_ts-fecaee5fb732.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:52 GMT
etag: "0x8DD0327DE7A8BE3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761792
x-served-by: cache-iad-kiad7000107-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 39306
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 95e77ebe3176a7df13b84770aa450aae7a16ac1a
content-length: 8037
GET

https://github.githubassets.com/assets/keyboard-shortcuts-dialog-958cae8ecd6c.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/keyboard-shortcuts-dialog-958cae8ecd6c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:38 GMT
etag: "0x8DD02B44DEAF90D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100051-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 64088
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 52c7e0610136f3d08705a8c9ed8881608071278e
content-length: 54804
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 07 Jan 2025 20:44:44 GMT
etag: "0x8DD2F5C1DF89D77"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 86580
x-served-by: cache-iad-kiad7000074-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 4246
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: da44b689c2a239d18980bc676ea7e24228ca3282
content-length: 90082
GET

https://github.githubassets.com/assets/sessions-5d6426bbf16a.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/sessions-5d6426bbf16a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E025E5FB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761793
x-served-by: cache-iad-kcgs7200172-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 61883
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 413bc744d1553a2a1b39d743049fc0722be45a29
content-length: 3077
GET

https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b89b98661809.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_dompurify_dist_purify_js-b89b98661809.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 21:15:04 GMT
etag: "0x8DD2072354FAB0D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 68079
x-served-by: cache-iad-kiad7000049-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 3370
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ad113021c2a999cf16687638d9d8371a7c3c9652
content-length: 6240
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-843b41414e0e.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-843b41414e0e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C33B7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761278
x-served-by: cache-iad-kjyo7100030-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 51057
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d7ee7ee4bf3c78d5abecaeb97b916d54e8d51017
content-length: 5246
GET

https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-9002b0-881da98a8b00.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-9002b0-881da98a8b00.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 13:29:36 GMT
etag: "0x8DD185586577B2A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2577037
x-served-by: cache-iad-kcgs7200178-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 55238
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3e1b2fbf79a5eeb3a0f15c52b1d1cd595639e4b4
content-length: 6212
GET

https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-a7926fdcecf7.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-a7926fdcecf7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:22 GMT
etag: "0x8DD0D665B346AD3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 2761278
x-served-by: cache-iad-kiad7000020-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 50859
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5786af1efc432752dcefc14ce97e7a397f2e084a
content-length: 4152
GET

https://github.githubassets.com/assets/ui_packages_paths_index_ts-c223e79a3369.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_paths_index_ts-c223e79a3369.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 15:00:11 GMT
etag: "0x8DD203DD5F27E62"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:18 GMT
age: 1802625
x-served-by: cache-iad-kiad7000167-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 23772
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3d537d845389a1a7bcc5297e6911ab6af25e54c1
content-length: 5296
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:00 GMT
etag: "0x8DD1A31D05E5B2D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 2057569
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 41905
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f1ff328516372e960c016ece9b5499fbaec2eb0e
content-length: 7760
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:06 GMT
etag: "0x8DD154459929787"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 2761793
x-served-by: cache-iad-kiad7000145-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 52262
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ab53e53ff707413903c57f025e28b28b11826ac7
content-length: 4066
GET

https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:32 GMT
etag: "0x8DD02B44A573252"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 2761793
x-served-by: cache-iad-kcgs7200111-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 55281
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 94fff5bd7fa562bc9478a24986f353cbfe3c0672
content-length: 543
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3C55516"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831177
x-served-by: cache-iad-kiad7000044-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 35580
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c88e67801705506ab5517a511e1bd99fec4d4b69
content-length: 6323
GET

https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:33 GMT
etag: "0x8DD162AEA51054B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1399857
x-served-by: cache-iad-kiad7000077-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 3836
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0ce4f0afb15adb31d5caff1f84e63fde076f5155
content-length: 7440
GET

https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:20 GMT
etag: "0x8DD0327CB20BA64"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100077-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 52523
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d21c4b6009bf3091bdf3a05cd2288bb938af2adf
content-length: 5382
GET

https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:01 GMT
etag: "0x8DD1A31D08393AD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 2057569
x-served-by: cache-iad-kjyo7100056-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 39173
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b860372e394b19b73565caf4baaecd21377f0e6d
content-length: 4436
GET

https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 12 Dec 2024 15:17:53 GMT
etag: "0x8DD1AC026545DBA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831177
x-served-by: cache-iad-kiad7000126-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 3876
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c1bb56d69694267ed70432e534e04876c1046d61
content-length: 16643
GET

https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:21 GMT
etag: "0x8DD162AE37E62AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831178
x-served-by: cache-iad-kjyo7100125-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 36908
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ce726b145769752a089b0a06734343126b589b80
content-length: 2920
GET

https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BCFA12"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831178
x-served-by: cache-iad-kcgs7200085-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 36987
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: be4ef87b642b16ccf1d5cfc704ab9d5ddb13ea41
content-length: 3165
GET

https://github.githubassets.com/assets/chunk-ui_packages_markdown-accessiblity-table-element_element-entry_ts-c97f49322396.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_markdown-accessiblity-table-element_element-entry_ts-c97f49322396.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BCAC48"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831149
x-served-by: cache-iad-kcgs7200144-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 4, 7284
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2700c23b7f5e161dd9dcbacfdc3fcc79cd01c598
content-length: 525
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BAD98C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831177
x-served-by: cache-iad-kiad7000114-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 35524
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 86581ca847b802ae551ace0fd798f24c985eb00a
content-length: 5020
GET

https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 13:39:03 GMT
etag: "0x8DD1F695643DD5B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1385558
x-served-by: cache-iad-kcgs7200121-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 3785
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d0a18cc30049b088b0b577e4ebc594220f110ba3
content-length: 2523
GET

https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BC3790"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 1831178
x-served-by: cache-iad-kiad7000163-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 37328
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 519b0295c4148232b53429f239118dec9727067e
content-length: 2790
GET

https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-c502e32b8685.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-c502e32b8685.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Dec 2024 20:21:02 GMT
etag: "0x8DD1E0F29A9A44C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 68075
x-served-by: cache-iad-kjyo7100023-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 1787
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 41fb25f883bf482056a638cb0a6e48d604dd11bf
content-length: 5069
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:32 GMT
etag: "0x8DD02B44AD10969"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
age: 2761793
x-served-by: cache-iad-kjyo7100146-IAD, cache-lcy-eglc8600079-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 53571
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 53d6475c2bbc197d1054003a9e9b73ce7e1c155a
content-length: 9421
GET

https://avatars.githubusercontent.com/u/74565485?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/74565485?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "78cf05f46a21802f2f6a54479a08572c98c1e21289fc9bfc1ec92694b2be9762"
last-modified: Sat, 06 Feb 2021 00:25:32 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: C27E:5A399:95B56A:C86F45:67744376
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
via: 1.1 varnish
x-served-by: cache-lon420086-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736441540.927002,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: a37d43d021ad1bfc8317e440269a30c80101b1d0
expires: Thu, 09 Jan 2025 16:57:19 GMT
source-age: 768844
vary: Authorization,Accept-Encoding
content-length: 1703
GET

https://avatars.githubusercontent.com/u/63458929?s=64&v=4

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/63458929?s=64&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "e25efc2f3c542a995df70f85198b7fd6184be4700ec9756e00c0a8fd9e7a124c"
last-modified: Mon, 22 Dec 2014 15:51:20 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 2212:0866:628B62:82E1ED:677410E2
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:41 GMT
via: 1.1 varnish
x-served-by: cache-lon420086-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736441562.607016,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 7db56ac47305afb4775fc8e2845edd518f0d5c99
expires: Thu, 09 Jan 2025 16:57:41 GMT
source-age: 781814
vary: Authorization,Accept-Encoding
content-length: 1505
GET

https://avatars.githubusercontent.com/u/123590232?s=64&v=4

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/123590232?s=64&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "1d9f1acf397d81e762e9ede9d36dd95eb2e889d8dc41c4f240aa17ffcd5ff02f"
last-modified: Thu, 20 Jul 2023 19:54:24 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 77D0:1DE703:7854A:A7344:677CE77A
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:41 GMT
via: 1.1 varnish
x-served-by: cache-lon420086-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736441562.614220,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: c031a3ec17f7a9af9cd56b45bf56f7f1c90738f5
expires: Thu, 09 Jan 2025 16:57:41 GMT
source-age: 202591
vary: Authorization,Accept-Encoding
content-length: 1266
GET

https://avatars.githubusercontent.com/u/63458929?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/63458929?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "e25efc2f3c542a995df70f85198b7fd6184be4700ec9756e00c0a8fd9e7a124c"
last-modified: Mon, 22 Dec 2014 15:51:20 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: BD86:34933:84D586:B26E97:67735A73
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:41 GMT
via: 1.1 varnish
x-served-by: cache-lon420086-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736441562.672992,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: c814db0492b16cf7e40f9b0c5ae23c5b2cadc1b2
expires: Thu, 09 Jan 2025 16:57:41 GMT
source-age: 828518
vary: Authorization,Accept-Encoding
content-length: 1505
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.220

s3-w.us-east-1.amazonaws.com

IN A

52.216.50.209

s3-w.us-east-1.amazonaws.com

IN A

54.231.226.185

s3-w.us-east-1.amazonaws.com

IN A

52.217.203.169

s3-w.us-east-1.amazonaws.com

IN A

52.217.122.65

s3-w.us-east-1.amazonaws.com

IN A

3.5.2.158

s3-w.us-east-1.amazonaws.com

IN A

16.182.34.97

s3-w.us-east-1.amazonaws.com

IN A

52.216.105.235
DNS

user-images.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.108.133

user-images.githubusercontent.com

IN A

185.199.111.133

user-images.githubusercontent.com

IN A

185.199.110.133

user-images.githubusercontent.com

IN A

185.199.109.133
DNS

camo.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

camo.githubusercontent.com

IN A

Response

camo.githubusercontent.com

IN A

185.199.111.133

camo.githubusercontent.com

IN A

185.199.110.133

camo.githubusercontent.com

IN A

185.199.108.133

camo.githubusercontent.com

IN A

185.199.109.133
DNS

raw.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A

Response

raw.githubusercontent.com

IN A

185.199.108.133

raw.githubusercontent.com

IN A

185.199.109.133

raw.githubusercontent.com

IN A

185.199.111.133

raw.githubusercontent.com

IN A

185.199.110.133
GET

https://raw.githubusercontent.com/Virus-Samples/Malware-Sample-Sources/main/contrib/VirusSamples-logo.png

msedge.exe

Remote address:

185.199.108.133:443

Request

GET /Virus-Samples/Malware-Sample-Sources/main/contrib/VirusSamples-logo.png HTTP/2.0
host: raw.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: image/png
etag: W/"df523cfc674ff634f7886057c930f9284df96b9cd34dd379a8518917534d1897"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: FEE0:20E71C:612E:7627:677FFEC2
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:19 GMT
via: 1.1 varnish
x-served-by: cache-lon420119-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1736441539.936629,VS0,VE162
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 1870bbc6f2bbeafc0d022becad0e7c21e276cf01
expires: Thu, 09 Jan 2025 16:57:19 GMT
source-age: 0
content-length: 15301
GET

https://camo.githubusercontent.com/189e1a8e9862603201351d113865516d39d176f820ab4bc69e437e4822c8324c/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f72657175657374732d77656c636f6d652d627269676874677265656e2e7376673f7374796c653d726f756e64

msedge.exe

Remote address:

185.199.111.133:443

Request

GET /189e1a8e9862603201351d113865516d39d176f820ab4bc69e437e4822c8324c/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f72657175657374732d77656c636f6d652d627269676874677265656e2e7376673f7374796c653d726f756e64 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=432000, s-maxage=432000
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: image/svg+xml;charset=utf-8
last-modified: Wed, 08 Jan 2025 04:01:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
server: github.com
x-github-request-id: 6D93:179056:92BBE:BAA77:677F1085
accept-ranges: bytes
age: 60983
date: Thu, 09 Jan 2025 16:52:18 GMT
via: 1.1 varnish
x-served-by: cache-lon4247-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736441539.937258,VS0,VE1
x-fastly-request-id: ee20c97dbbda90dc477104acc1168d16dd5350b5
timing-allow-origin: https://github.com
content-length: 1150
GET

https://camo.githubusercontent.com/79ab5e679dcd659d9c278b2a2ff6913f724c31be0e1a3a9c6c10cd442557f8bd/687474703a2f2f686974732e6477796c2e636f6d2f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e737667

msedge.exe

Remote address:

185.199.111.133:443

Request

GET /79ab5e679dcd659d9c278b2a2ff6913f724c31be0e1a3a9c6c10cd442557f8bd/687474703a2f2f686974732e6477796c2e636f6d2f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e737667 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=2592000, s-maxage=2592000
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: image/svg+xml;charset=utf-8
expires: Fri, 24 Jan 2025 13:19:25 GMT
last-modified: Wed, 25 Dec 2024 13:19:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
server: github.com
x-github-request-id: F458:5A399:AF8DF5:EABC1F:6775C399
accept-ranges: bytes
age: 670445
date: Thu, 09 Jan 2025 16:52:18 GMT
via: 1.1 varnish
x-served-by: cache-lon4247-LON
x-cache: HIT
x-cache-hits: 0
x-timer: S1736441539.937233,VS0,VE1
x-fastly-request-id: 95c1b7caf7890e9257987831914dbe26f84301a3
timing-allow-origin: https://github.com
content-length: 2905
GET

https://camo.githubusercontent.com/4208eee1fcfabecf89cd3efb76ff8b6a73dfcd759204a418916f3d0cc7538fe5/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f73746172732f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e7376673f7374796c653d736f6369616c266c6162656c3d53746172266d61784167653d32353932303030

msedge.exe

Remote address:

185.199.111.133:443

Request

GET /4208eee1fcfabecf89cd3efb76ff8b6a73dfcd759204a418916f3d0cc7538fe5/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f73746172732f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e7376673f7374796c653d736f6369616c266c6162656c3d53746172266d61784167653d32353932303030 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 504

cache-control: no-cache, no-store, private, must-revalidate
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: text/plain; charset=utf-8
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
server: github.com
x-github-request-id: C936:519B9:6D5D:8247:677FFEBD
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:23 GMT
via: 1.1 varnish
x-served-by: cache-lon4247-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1736441539.937233,VS0,VE4091
x-fastly-request-id: 76fc5402d042105acedf9113d4082475c0317bdd
timing-allow-origin: https://github.com
content-length: 24
DNS

154.108.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

154.108.199.185.in-addr.arpa

IN PTR

Response

154.108.199.185.in-addr.arpa

IN PTR

cdn-185-199-108-154githubcom
DNS

133.109.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.109.199.185.in-addr.arpa

IN PTR

Response

133.109.199.185.in-addr.arpa

IN PTR

cdn-185-199-109-133githubcom
DNS

133.108.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.108.199.185.in-addr.arpa

IN PTR

Response

133.108.199.185.in-addr.arpa

IN PTR

cdn-185-199-108-133githubcom
DNS

133.111.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.111.199.185.in-addr.arpa

IN PTR

Response

133.111.199.185.in-addr.arpa

IN PTR

cdn-185-199-111-133githubcom
DNS

56.163.245.4.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.163.245.4.in-addr.arpa

IN PTR

Response
DNS

241.42.69.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

241.42.69.40.in-addr.arpa

IN PTR

Response
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1083
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Virus-Samples/Malware-Sample-Sources
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 09 Jan 2025 16:52:23 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736445143
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C1BF:24C788:1B295:1EBF7:677FFEC7
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1674
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 09 Jan 2025 16:52:41 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736445161
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C1BF:24C788:1BB38:1F5B1:677FFEC7
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 275
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 09 Jan 2025 16:52:51 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736445171
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C1BF:24C788:1BF89:1FAAF:677FFED9
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 294
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Thu, 09 Jan 2025 16:53:12 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1736445192
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C1BF:24C788:1C921:205A1:677FFEE3
DNS

210.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.156.26.20.in-addr.arpa

IN PTR

Response
DNS

tse1.mm.bing.net

msedge.exe

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.27.10

ax-0001.ax-msedge.net

IN A

150.171.28.10
DNS

tse1.mm.bing.net

msedge.exe

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.28.10

ax-0001.ax-msedge.net

IN A

150.171.27.10
GET

https://tse1.mm.bing.net/th?&id=OVP.vUfuC-FPNcPTPzZHubcnBgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.27.10:443

Request

GET /th?&id=OVP.vUfuC-FPNcPTPzZHubcnBgHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 5563
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D59642E58088483AB86D67B50B8ABF8C Ref B: LON601060106011 Ref C: 2025-01-09T16:52:31Z
date: Thu, 09 Jan 2025 16:52:30 GMT
GET

https://tse1.mm.bing.net/th?&id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.27.10:443

Request

GET /th?&id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 6218
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6470FE29DC404E4A8BA3D3A11A3C7B9C Ref B: LON601060106011 Ref C: 2025-01-09T16:53:40Z
date: Thu, 09 Jan 2025 16:53:39 GMT
DNS

10.27.171.150.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.27.171.150.in-addr.arpa

IN PTR

Response
DNS

collector.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.114.22
GET

https://github.githubassets.com/favicons/favicon.svg

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /favicons/favicon.svg HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
content-md5: bYAvaN8MCaSZfP0o7q/Z/w==
last-modified: Wed, 14 Aug 2024 19:18:58 GMT
etag: "0x8DCBC95F2647EDF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:41 GMT
age: 177
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600048-LCY
x-cache: HIT, HIT
x-cache-hits: 1250203, 6
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 99b85a25ebcf032a9560a8339f05e9de6460c633
content-length: 959
GET

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /assets/apple-touch-icon-144x144-b882e354c005.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: image/png
content-md5: YDrNCDxuYozaAYS2sPzvIQ==
last-modified: Wed, 14 Aug 2024 19:49:39 GMT
etag: "0x8DCBC9A3C0EF02F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:41 GMT
age: 2357625
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600048-LCY
x-cache: HIT, HIT
x-cache-hits: 381, 16333
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 60ced7c770c6a6d825655e268e330f06cbaf8370
content-length: 14426
GET

https://github.githubassets.com/favicons/favicon.png

msedge.exe

Remote address:

185.199.108.154:443

Request

GET /favicons/favicon.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
content-md5: NG4JRxNi8pB1EKMYEhKc0g==
last-modified: Wed, 14 Aug 2024 19:18:46 GMT
etag: "0x8DCBC95EB57AC96"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Jan 2025 16:52:41 GMT
age: 124
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600048-LCY
x-cache: HIT, HIT
x-cache-hits: 3627102, 4
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 01e265a5d33d2f4c46a6de6953251c38314e48c2
content-length: 958
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1041
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 09 Jan 2025 16:52:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002891
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: D188:12437E:5A69E:6E95C:677FFED9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1320
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 09 Jan 2025 16:52:41 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003882
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: D188:12437E:5A69E:6E95B:677FFED9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1364
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Thu, 09 Jan 2025 16:52:49 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003695
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: D188:12437E:5B673:6FCDF:677FFED9
DNS

22.114.82.140.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.114.82.140.in-addr.arpa

IN PTR

Response

22.114.82.140.in-addr.arpa

IN PTR

lb-140-82-114-22-iadgithubcom
DNS

codeload.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

codeload.github.com

IN A

Response

codeload.github.com

IN A

20.26.156.216
GET

https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master

msedge.exe

Remote address:

20.26.156.216:443

Request

GET /Da2dalus/The-MALWARE-Repo/zip/refs/heads/master HTTP/2.0
host: codeload.github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.299844638.1736441538
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

access-control-allow-origin: https://render.githubusercontent.com
content-disposition: attachment; filename=The-MALWARE-Repo-master.zip
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/zip
cross-origin-resource-policy: cross-origin
etag: W/"c78eabe799ca0e23e77f67470f9246428233eb97f9aed155e647cd52729d1523"
strict-transport-security: max-age=31536000
vary: Authorization,Accept-Encoding,Origin
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
date: Thu, 09 Jan 2025 16:52:52 GMT
x-github-request-id: D7E6:315C9D:0760:192C:677FFEE4
DNS

22.49.80.91.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.49.80.91.in-addr.arpa

IN PTR

Response
DNS

216.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

216.156.26.20.in-addr.arpa

IN PTR

Response
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.178

e86303.dscx.akamaiedge.net

IN A

95.101.143.184

e86303.dscx.akamaiedge.net

IN A

88.221.135.58

e86303.dscx.akamaiedge.net

IN A

88.221.135.51

e86303.dscx.akamaiedge.net

IN A

95.101.143.185

e86303.dscx.akamaiedge.net

IN A

95.101.143.35

e86303.dscx.akamaiedge.net

IN A

95.101.143.177

e86303.dscx.akamaiedge.net

IN A

88.221.135.56

e86303.dscx.akamaiedge.net

IN A

95.101.143.34
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.201

e86303.dscx.akamaiedge.net

IN A

88.221.134.2

e86303.dscx.akamaiedge.net

IN A

95.101.143.211

e86303.dscx.akamaiedge.net

IN A

95.101.143.195

e86303.dscx.akamaiedge.net

IN A

88.221.134.248

e86303.dscx.akamaiedge.net

IN A

95.101.143.203

e86303.dscx.akamaiedge.net

IN A

88.221.134.3

e86303.dscx.akamaiedge.net

IN A

95.101.143.202

e86303.dscx.akamaiedge.net

IN A

95.101.143.182
DNS

11.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.227.111.52.in-addr.arpa

IN PTR

Response
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

2.18.190.203

a1851.dscg2.akamai.net

IN A

2.18.190.212
DNS

203.190.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

203.190.18.2.in-addr.arpa

IN PTR

Response

203.190.18.2.in-addr.arpa

IN PTR

a2-18-190-203deploystaticakamaitechnologiescom
DNS

mknwkmvasksae.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

mknwkmvasksae.co.uk

IN A

Response
DNS

ocmtvxpnbxtsl.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ocmtvxpnbxtsl.info

IN A

Response
DNS

prhvsdciuqhgl.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

prhvsdciuqhgl.com

IN A

Response
DNS

pwwoeokgcflpn.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

pwwoeokgcflpn.net

IN A

Response
DNS

qmrqbtwbvxyde.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qmrqbtwbvxyde.biz

IN A

Response
DNS

ywetmqycfnsys.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ywetmqycfnsys.ru

IN A

Response
DNS

ywetmqycfnsys.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ywetmqycfnsys.ru

IN A

Response
DNS

mbyhfysivwxmr.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

mbyhfysivwxmr.org

IN A

Response
DNS

mbyhfysivwxmr.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

mbyhfysivwxmr.org

IN A

Response
DNS

booeahtbekfqs.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

booeahtbekfqs.co.uk

IN A

Response
DNS

osjrspnhutkeb.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

osjrspnhutkeb.info

IN A

Response
DNS

osjrspnhutkeb.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

osjrspnhutkeb.info

IN A

Response
DNS

dyindxadibyco.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

dyindxadibyco.com

IN A

Response
DNS

qddbvgtjykepn.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qddbvgtjykepn.net

IN A

Response
DNS

fqsxqouchxlth.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

fqsxqouchxlth.biz

IN A

Response
DNS

sunljwoixhqhp.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

sunljwoixhqhp.ru

IN A

Response
DNS

dsogggygfqjmp.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

dsogggygfqjmp.org

IN A

Response
DNS

eijidouhvooig.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

eijidouhvooig.co.uk

IN A

Response
DNS

fkyqtwtfenvep.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

fkyqtwtfenvep.info

IN A

Response
DNS

gatsqfpgulbap.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

gatsqfpgulbap.com

IN A

Response
DNS

husawnahieppw.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

husawnahieppw.net

IN A

Response
DNS

iknctvviyculn.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

iknctvviyculn.biz

IN A

Response
DNS

jmdkkeughbchp.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jmdkkeughbchp.ru

IN A

Response
DNS

jmdkkeughbchp.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jmdkkeughbchp.ru

IN A

Response
DNS

kcxmhmqhxyhdp.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

kcxmhmqhxyhdp.org

IN A

Response
DNS

kcxmhmqhxyhdp.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

kcxmhmqhxyhdp.org

IN A

Response
DNS

tngkgeigwdxan.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

tngkgeigwdxan.co.uk

IN A

Response
DNS

hrbxyjsjqhuvv.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

hrbxyjsjqhuvv.info

IN A

Response
DNS

hrbxyjsjqhuvv.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

hrbxyjsjqhuvv.info

IN A

Response
DNS

uiqfoovfqusnp.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

uiqfoovfqusnp.com

IN A

Response
DNS

imlshtgikypjo.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

imlshtgikypjo.net

IN A

Response
DNS

vvkghlltvhhtc.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

vvkghlltvhhtc.biz

IN A

Response
DNS

jaftaqvwplepk.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jaftaqvwplepk.ru

IN A

Response
DNS

jaftaqvwplepk.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jaftaqvwplepk.ru

IN A

Response
DNS

wqubpvyspychl.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

wqubpvyspychl.org

IN A

Response
DNS

kupoibjvjdydk.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

kupoibjvjdydk.co.uk

IN A

Response
DNS

xjqwatiywggvn.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

xjqwatiywggvn.info

IN A

Response
DNS

xjqwatiywggvn.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

xjqwatiywggvn.info

IN A

Response
DNS

yylywyutqytjn.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

yylywyutqytjn.com

IN A

Response
DNS

yebrievxqxbjp.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

yebrievxqxbjp.net

IN A

Response
DNS

atvtfjiskqowg.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

atvtfjiskqowg.biz

IN A

Response
DNS

atvtfjiskqowg.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

atvtfjiskqowg.biz

IN A

Response
DNS

arusbblmvkppn.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

arusbblmvkppn.ru

IN A

Response
DNS

arusbblmvkppn.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

arusbblmvkppn.ru

IN A

Response
DNS

bhpuxgxhpdddn.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

bhpuxgxhpdddn.org

IN A

Response
DNS

bmfnjlylpckdw.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

bmfnjlylpckdw.co.uk

IN A

Response
DNS

ccapgqlgjuxqn.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ccapgqlgjuxqn.info

IN A

Response
DNS

mgmqhtslehota.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

mgmqhtslehota.com

IN A

Response
DNS

akheacmruqthy.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

akheacmruqthy.net

IN A

Response
DNS

oxwbuegwvsxus.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

oxwbuegwvsxus.biz

IN A

Response
DNS

ccronmadmcdib.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ccronmadmcdib.ru

IN A

Response
DNS

ccronmadmcdib.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ccronmadmcdib.ru

IN A

Response
DNS

ooqmibvydlxno.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ooqmibvydlxno.org

IN A

Response
DNS

cslabjpftudbn.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

cslabjpftudbn.co.uk

IN A

Response
DNS

qgbwvljkuwhoo.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qgbwvljkuwhoo.info

IN A

Response
DNS

qgbwvljkuwhoo.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qgbwvljkuwhoo.info

IN A

Response
DNS

ekvkotdqlgmcw.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ekvkotdqlgmcw.com

IN A

Response
DNS

qcwdbjspekfhw.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qcwdbjspekfhw.net

IN A

Response
DNS

qcwdbjspekfhw.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qcwdbjspekfhw.net

IN A

Response
DNS

rrrfxroquikdn.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

rrrfxroquikdn.biz

IN A

Response
DNS

sthnotgbvvoip.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

sthnotgbvvoip.ru

IN A

Response
DNS

tjcplcccmttep.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

tjcplcccmttep.org

IN A

Response
DNS

tjcplcccmttep.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

tjcplcccmttep.org

IN A

Response
DNS

skbycqvddoobw.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

skbycqvddoobw.co.uk

IN A

Response
DNS

tavbyyretmtwn.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

tavbyyretmtwn.info

IN A

Response
DNS

ucljpbjouaxcw.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ucljpbjouaxcw.com

IN A

Response
DNS

vrglmjfplxdxw.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

vrglmjfplxdxw.net

IN A

Response
DNS

vuqowfsxiutgs.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

vuqowfsxiutgs.biz

IN A

Response
DNS

jwravkdbmqdxb.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jwravkdbmqdxb.ru

IN A

Response
DNS

jwravkdbmqdxb.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jwravkdbmqdxb.ru

IN A

Response
DNS

wpbjfvnqjcldc.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

wpbjfvnqjcldc.org

IN A

Response
DNS

krcuebxtnxuub.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

krcuebxtnxuub.co.uk

IN A

Response
DNS

awuinakaxjpia.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

awuinakaxjpia.info

IN A

Response
DNS

nyvtmfudcfyai.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

nyvtmfudcfyai.com

IN A

Response
DNS

brfdvqfsyqhfc.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

brfdvqfsyqhfc.net

IN A

Response
DNS

otgouvpvdmqwb.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

otgouvpvdmqwb.biz

IN A

Response
DNS

eebhxuwpaycqe.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

eebhxuwpaycqe.ru

IN A

Response
DNS

eebhxuwpaycqe.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

eebhxuwpaycqe.ru

IN A

Response
DNS

frcloajkehvee.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

frcloajkehvee.org

IN A

Response
DNS

fylcglribgtnn.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

fylcglribgtnn.co.uk

IN A

Response
DNS

gmmgwqedfonbe.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

gmmgwqedfonbe.info

IN A

Response
DNS

igfboporpnxsa.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

igfboporpnxsa.com

IN A

Response
DNS

jtgffubmtvrga.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jtgffubmtvrga.net

IN A

Response
DNS

jbpvwgjkquppc.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

jbpvwgjkquppc.biz

IN A

Response
DNS

koqanlvfudjds.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

koqanlvfudjds.ru

IN A

Response
DNS

koqanlvfudjds.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

koqanlvfudjds.ru

IN A

Response
DNS

onwuxudgjtnjh.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

onwuxudgjtnjh.org

IN A

Response
DNS

cpxgwdwmwjswg.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

cpxgwdwmwjswg.co.uk

IN A

Response
DNS

qfhfllxfiqabh.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

qfhfllxfiqabh.info

IN A

Response
DNS

ehiqktrlvgfop.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

ehiqktrlvgfop.com

IN A

Response

88.221.135.17:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

224.0kB
729.3kB
877
1119

HTTP Request

GET https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&oit=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware%2520files%25&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=5ee92e4f871443a984853956a3cb6e49&oit=4&cp=16&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware%2520files&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=f9ee678947114d979192326195e94f7d&oit=4&cp=15&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware%2520fil&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=3d60d97c55c3430d83368fd32019a7a6&oit=4&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware%2520fi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=794bb2098a3b447d93d59212165691f7&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware%2520f&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=24909c54ecab41a0a788dcdc0d432299&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware%2520&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=470df0f683ef454fb0f4ab3fb3e085ef&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware%252&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=71b21f1b912845b88edc3467cb8ebeac&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware%25&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=0792ffd40bb34a81af490437bfab72d8&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=7a5fb9cffe97459e9f95380fabf6d66b&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malwar&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=42d207234f374e24a6a689d52a1c6d85&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malwarw&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a60b0069b501401f96bb2d9aed9331d2&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malwar&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a23a52a4921a4dac8c431bbf525df702&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=e9985928002647c6b49b58f19fa7973d&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=83183ccf2dee4ae5990637dfcdae4347&oit=1&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+f&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=b66dbb1c10c64841acf89018813e8af7&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+fi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=e07a58a98d2f46a48b67b003dc12438d&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+fil&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=ef3a49eb634d4a66829776abc3fa93cb&oit=4&cp=11&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware+file&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=39c16052bd804486b1bed2627f21d088&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+files&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=a88cc0a21ca641c1b2cf8cb03292900a&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=6b1dbe41c20e4f0ab40b9cf503735922&oit=4&cp=14&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+g&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=45db69da07bc47239a05b996dea8d397&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+gi&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=d4506189829f4552b13fc48c4588a6eb&oit=4&cp=16&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+git&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=c56cdf85fc3c40ebac7d34e12fb90f78&oit=4&cp=17&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+gith&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=dd394a17136a4340aeae468f19245aac&oit=4&cp=18&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+githu&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=0258f06f0ddf441585907fae93057311&oit=4&cp=19&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware+files+github&language=en-US&pt=EdgBox&cvid=f1daf03997f34db7a7b3d345a73cc625&ig=b99de4087ade40e09dbe4bf1d650b9ab&oit=4&cp=20&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C3%3A2%2C2%3A3%2C4%3A4%2C5%3A5%2C6%3A6%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:349,%22SE%22:-1,%22TC%22:-1,%22H%22:418,%22BP%22:446,%22CT%22:451,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,4228,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

GET https://www.bing.com/rp/-EIZevjHcUrHpzs-pSkHp48FtP0.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250109

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=1843F2E6FE8064990467E789FFBE652B

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441526657%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.35%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441526657%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526672%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526674%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526676%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526678%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526679%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A497%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441526685%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441526906%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441526909%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2220%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1082%2C%22time%22%3A1085%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441527076%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1085%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441527076%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1086%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441527077%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&IID=SERP.5066&q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736441527110%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441527123%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441527123%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441527142%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441527142%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527175%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527249%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441527376%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527490%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527490%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441527515%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441527516%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527520%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.PPT&DATA={%22S%22:545,%22E%22:1395,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441527554%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22693.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441527555%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221562.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441527555%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441527587%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/notifications/handle?action=1&nid=63245&view=BottomBanner_NoTitleRejectBtn&vertical=serp

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736441531416%2C%22Name%22%3A%22AllowAll%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1736441531417%2C%22Name%22%3A%22BnpClick%22%2C%22FID%22%3A%22Bnp%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ID=SERP,5209.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dd809398bf03f0d0c253ac1954d09d4306fdba8847c8dcef0b8b7255bcad031c8JmltdHM9MTczNjM4MDgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06%26psq%3Dmalware%2Bfiles%2Bgithub%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL1ZpcnVzLVNhbXBsZXMvTWFsd2FyZS1TYW1wbGUtU291cmNlcw%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=d809398bf03f0d0c253ac1954d09d4306fdba8847c8dcef0b8b7255bcad031c8JmltdHM9MTczNjM4MDgwMA&ptn=3&ver=2&hsh=4&fclid=0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06&psq=malware+files+github&u=a1aHR0cHM6Ly9naXRodWIuY29tL1ZpcnVzLVNhbXBsZXMvTWFsd2FyZS1TYW1wbGUtU291cmNlcw&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:11,%22BC%22:11,%22SE%22:-1,%22TC%22:-1,%22H%22:175,%22BP%22:180,%22CT%22:182,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,4228,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=1843F2E6FE8064990467E789FFBE652B

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541738%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541756%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541763%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541763%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A37%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441541766%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1736441541922%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2220%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441541997%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A561%2C%22time%22%3A563%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441542073%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A563%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441542073%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A564%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441542074%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&IID=SERP.5066&q=malware+files+github&cvid=f1daf03997f34db7a7b3d345a73cc625&aqs=edge..69i57.5966j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptu%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoptd%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1736441542093%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441542101%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffeb7a5de4d1aa3b484710b4d0c0e%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441542101%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441542118%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542135%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542227%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441542353%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542480%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542480%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441542502%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542507%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.PPT&DATA={%22S%22:229,%22E%22:987,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441542599%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22255.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441542601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221088.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441542601%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441542624%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22pinned%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malware%20files%20github&cp=18&csr=1&zis=1&msbqf=false&rqry=1&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1736441552861%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441552936%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%22%2C%22AsResponseLength%22%3A%22423%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441553047%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20files%20github%2Cig%3AAFF0BCAB3C064C75AFD44ED4C032E7B9%22%2C%22AnswerInfo%22%3A%22HS%3B20%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441553063%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1736441554615%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A13107%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441554617%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malware%20github&cp=8&csr=1&msbqf=false&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malware+files+github&mkt=en-gb&qry=malwaregithub&cp=7&csr=1&msbqf=false&pths=1&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=&ajaxnorecss=1&sid=1843F2E6FE8064990467E789FFBE652B&format=snrjson&jsoncbid=0&ajaxsydconv=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&CID=0EC5DE9D4DA76ECD1EBFCBF24C996F06&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441554627%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22379%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441554706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%20github%2Ci%3A1%2Cig%3ABF31598EA3E54D22AD136669A3F846DD%22%2C%22AnswerInfo%22%3A%22AS%3B14%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441554707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1736441555098%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1736441555113%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22313%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1736441555245%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwaregithub%2Ci%3A2%2Cig%3AA503424088CA49BCBF4F9AAF0A83D957%22%2C%22AnswerInfo%22%3A%22SC%3B14%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1736441555245%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:6,%22BC%22:380,%22SE%22:-1,%22TC%22:-1,%22H%22:445,%22BP%22:470,%22CT%22:470,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,4146,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwaregithub&mkt=en-gb&qry=malwaregithub&csr=1&pths=1&rqry=1&zis=1&pf=1&cvid=52BDF5E49C154D29A7E982D531DF9534

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=52BDF5E49C154D29A7E982D531DF9534&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=52BDF5E49C154D29A7E982D531DF9534

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441556144%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556144%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22correlationId%22%3A%22677ffed4145645deba3b49be07ab3a94%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441556203%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffed4145645deba3b49be07ab3a94%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441556203%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Time%22%3A14709%2C%22time%22%3A14711%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441556221%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A14711%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441556221%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A14712%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441556222%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=52BDF5E49C154D29A7E982D531DF9534&IID=SERP.5066&q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441556231%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556377%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556395%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&Type=Event.PPT&DATA={%22S%22:512,%22E%22:931,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441556402%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22255.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441556403%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221088.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441556403%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441556434%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441556627%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441556639%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441556698%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=52BDF5E49C154D29A7E982D531DF9534&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441555476%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555476%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441555962%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555967%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555968%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555971%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441555977%2C%22Name%22%3A14338%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441555978%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=0d606a2474a137ac6b0278ead810cb54376e8ec1ef4bd653eb4c65a39ef0d527JmltdHM9MTczNjM4MDgwMA&ptn=3&ver=2&hsh=4&fclid=0ec5de9d-4da7-6ecd-1ebf-cbf24c996f06&psq=malwaregithub&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

HTTP Request

GET https://www.bing.com/fd/ls/GLinkPing.aspx?IG=52BDF5E49C154D29A7E982D531DF9534&ID=SERP,5212.1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/search?q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C6%3A2%2C2%3A3%2C3%3A4%2C4%3A5%2C5%3A6%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:42,%22BC%22:269,%22SE%22:-1,%22TC%22:-1,%22H%22:291,%22BP%22:354,%22CT%22:369,%22IL%22:7},%22ad%22:[-1,-1,1263,609,1263,3390,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwaregithub&mkt=en-gb&qry=malwaregithub&csr=1&pths=1&rqry=1&zis=1&pf=1&cvid=AF665F6AB641472EB7430D8B1EB8759A

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441591775%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1736441591775%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1736441591783%2C%22Name%22%3A437%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591783%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591784%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591784%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2213%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=AF665F6AB641472EB7430D8B1EB8759A&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591792%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591792%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591797%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591801%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441591970%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1002%2C%22time%22%3A1006%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1736441592164%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1007%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441592165%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1008%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1736441592166%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52634278&IID=SERP.5056&IG=AF665F6AB641472EB7430D8B1EB8759A

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=AF665F6AB641472EB7430D8B1EB8759A&IID=SERP.5066&q=malwaregithub&qs=n&form=QBRE&sp=-1&lq=0&pq=malwaregithub&sc=7-13&sk=&cvid=D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%22677ffef8a07c4161b5a56e30f2c969ef%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441592174%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%22677ffef8a07c4161b5a56e30f2c969ef%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1736441592174%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1736441592205%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592230%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592385%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592424%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1736441592426%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592650%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592650%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1736441592672%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1736441592677%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1843F2E6FE8064990467E789FFBE652B&clientsid=1843F2E6FE8064990467E789FFBE652B

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592682%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.PPT&DATA={%22S%22:475,%22E%22:1362,%22T%22:0,%22I%22:0,%22N%22:{},%22M%22:{}}&P=SERP&DA=DUBE01

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1736441592695%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22644.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1736441592702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221536.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1736441592702%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1736441592760%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22scroll%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.Pinhead%22,%22FID%22:%22CI%22,%22Name%22:%22pinned%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225605.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1736441618923,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Request

GET https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=AF665F6AB641472EB7430D8B1EB8759A&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225605.1%22,%22TS%22:1736441620307,%22DU%22:1585,%22THLT%22:281,%22RCLT%22:null,%22MOS%22:27396,%22MOT%22:1585,%22IsMT%22:1,%22VPST%22:779,%22VDT%22:763,%22MaxVPT%22:1585,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204
95.101.143.218:443

https://th.bing.com/th?id=OM2.91gyUnPV6JeHAw_1727968640&pid=1.7

tls, http2

msedge.exe

22.6kB
419.4kB
236
373

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&o=6&pid=AdsPlus

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.vUfuC-FPNcPTPzZHubcnBgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.qF8nVKmNR7CEvaTVuA0WzwHaDt&w=80&h=80&c=1&vt=10&bgcl=17bfe1&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5jTVe7PM1AVZBOcj5CGRJwHaDL&w=80&h=80&c=1&vt=10&bgcl=fb1fe8&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.f1c3c940-f693-4413-9dc5-d864d245d75f&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.cJVaUOR7vXPGZNJZZNThkwHaDt&w=80&h=80&c=1&vt=10&bgcl=cae10b&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.eTt4dGm8jQGrDcI2_f5tIwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.ZGr6YOQKMVZHyV238RnREAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.1P5fh1p15tkKFQFwIJ6jpAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OIP.2n9zqm271iuwvxr_fyKkuQHaDt&w=80&h=80&c=1&vt=10&bgcl=f15576&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.zHbfvb1ggppHG6DcmH8gQAHaD4&w=89&h=108&c=1&bgcl=58c1c2&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.VhJOuY4oMiEud7DD-BSIdAHaD4&w=89&h=53&c=1&bgcl=4e5e97&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.oZR6xcNsGxk9wyu7559CzwHaD4&w=89&h=53&c=1&bgcl=0572c1&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.0862691d-d336-4271-86e3-a9b93747919c&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.0b86ad3c-69cc-4f70-a96d-caa41a871722&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.QX46usTkDJ2AhKe2hCJ9lQHaDa&w=89&h=108&c=1&bgcl=7db6eb&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.priyXFgrBoSA1NDJevADjwHaD5&w=89&h=53&c=1&bgcl=74d82f&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.qxOuNl2KtH_sqiHDbFitbQHaE4&w=89&h=53&c=1&bgcl=ad036b&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.8d7e29b6-55d7-4bf4-857d-86d3835bd61e&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.o_FbOQ2wPFOAVADt3fRfFwHaEK&w=80&h=80&c=1&vt=10&bgcl=4a0603&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=216&h=115&c=2&o=6&pid=WebQS

HTTP Request

GET https://th.bing.com/th?id=OIP.aH1e5Hk95bE7x7i9vXZSowAAAA&w=216&h=115&c=2&o=6&pid=WebQS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.cfd7879d-f8d1-4a69-a080-259e93b505fc&w=32&h=32&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=OADD2.8177802323804_1LGHINVZF4GI3ZBHQO&w=32&h=32&o=6&pid=21.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.2n9zqm271iuwvxr_fyKkuQHaDt&w=80&h=80&c=1&vt=10&bgcl=a139f1&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.zHbfvb1ggppHG6DcmH8gQAHaD4&w=89&h=108&c=1&bgcl=3536dd&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.VhJOuY4oMiEud7DD-BSIdAHaD4&w=89&h=53&c=1&bgcl=410f34&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OIP.oZR6xcNsGxk9wyu7559CzwHaD4&w=89&h=53&c=1&bgcl=48d28f&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OM2.91gyUnPV6JeHAw_1727968640&pid=1.7

HTTP Response

206
95.101.143.212:443

https://r.bing.com/rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg

tls, http2

msedge.exe

8.7kB
73.3kB
79
97

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

HTTP Request

GET https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

HTTP Request

GET https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

HTTP Request

GET https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

HTTP Request

GET https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

HTTP Request

GET https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

HTTP Request

GET https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

HTTP Request

GET https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

HTTP Request

GET https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

HTTP Request

GET https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

HTTP Request

GET https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

HTTP Request

GET https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

HTTP Request

GET https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

HTTP Request

GET https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

HTTP Request

GET https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

HTTP Request

GET https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

HTTP Request

GET https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

HTTP Request

GET https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/Ll45oNo-LVRzvmmVkEAg5KXudfA.svg

HTTP Response

200
95.101.143.212:443

https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

tls, http2

msedge.exe

22.8kB
494.9kB
306
397

HTTP Request

GET https://r.bing.com/rp/sSDuJFmlSA7dm5E7PBgSSDVPlns.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/U6ozRLRanAQTt22qZDWCWxYnh5g.br.js

HTTP Request

GET https://r.bing.com/rp/CBYihxJekbyAlLiT2TGCv3XcxBA.br.js

HTTP Request

GET https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

HTTP Request

GET https://r.bing.com/rp/co2z1JDFb7enoIoCaLuo-NbJJjE.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

HTTP Request

GET https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

HTTP Request

GET https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/9Z2GyyGvsKSVNrmOMrTfcv8z_yQ.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/TA5w4JZB_Bofmi4E2NA9kDEyusQ.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/GDN-v4JlRmxm6_5Ct26g04rqmnQ.br.js

HTTP Request

GET https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

HTTP Request

GET https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

HTTP Request

GET https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

HTTP Request

GET https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

HTTP Request

GET https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

HTTP Request

GET https://r.bing.com/rp/U1NbN7mcTwDlpQXJqx6swENhLWc.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js

HTTP Request

GET https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

HTTP Request

GET https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js

HTTP Request

GET https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

HTTP Request

GET https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

HTTP Request

GET https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

HTTP Request

GET https://r.bing.com/rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js

HTTP Request

GET https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

HTTP Request

GET https://r.bing.com/rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js

HTTP Request

GET https://r.bing.com/rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js

HTTP Request

GET https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

HTTP Request

GET https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

HTTP Request

GET https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Request

GET https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

HTTP Request

GET https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

HTTP Request

GET https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

HTTP Request

GET https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

HTTP Request

GET https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

HTTP Request

GET https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

HTTP Request

GET https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

HTTP Request

GET https://r.bing.com/rp/IzifzVeZAFUPAOVXA0p1w_tvqEA.br.js

HTTP Request

GET https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

HTTP Request

GET https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

HTTP Request

GET https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

HTTP Request

GET https://r.bing.com/rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js

HTTP Request

GET https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

HTTP Request

GET https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

HTTP Request

GET https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js

HTTP Request

GET https://r.bing.com/rp/GCbWiaQCG_woyBLA9wB3Yh8a1jY.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/YelbEmIR9E54rYl4ZRg76rPKz3Q.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/cD-VOAGiLxuv3XXo37JO9cObcPg.br.js

HTTP Request

GET https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

HTTP Response

200

HTTP Response

200
95.101.143.218:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
2.19.252.146:443

https://aefd.nelreports.net/api/report?cat=bingaotak

tls, http

msedge.exe

2.2kB
6.8kB
15
15

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingaotak

HTTP Response

504

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingaotak

HTTP Response

500
20.190.159.2:443

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d

tls, http2

msedge.exe

3.7kB
9.9kB
19
20

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d

HTTP Response

200

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=9f23e9c7-94bd-4494-85e5-97041b66660a&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22D2FE8E9EDEBC4AEEA5FF9C8E01C9D9F7%22%7d

HTTP Response

200
20.26.156.215:443

https://github.com/Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip

tls, http2

msedge.exe

8.9kB
197.0kB
119
190

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources

HTTP Response

200

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/security/overall-count

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/hovercards/citation/sidebar_partial?tree_name=main

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/used_by_list

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/latest-commit/main

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/refs?type=branch

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/tree-commit-info/main

HTTP Request

GET https://github.com/Virus-Samples/Malware-Sample-Sources/branch-and-tag-count

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/security/overall-count

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/contributors_list?count=2&current_repository=The-MALWARE-Repo&items_to_show=2

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/refs?type=branch

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/branch-and-tag-count

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://github.com/manifest.json

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/archive/refs/heads/master.zip

HTTP Response

302
20.26.156.215:443

github.com

tls

msedge.exe

1.1kB
4.0kB
11
8
185.199.108.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.108.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.108.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.108.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.108.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.108.154:443

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

tls, http2

msedge.exe

36.8kB
1.0MB
574
847

HTTP Request

GET https://github.githubassets.com/assets/light-0cfd1fd8509e.css

HTTP Request

GET https://github.githubassets.com/assets/dark-d782f59290e2.css

HTTP Request

GET https://github.githubassets.com/assets/primer-primitives-953961b66e63.css

HTTP Request

GET https://github.githubassets.com/assets/primer-4430d3c2c150.css

HTTP Request

GET https://github.githubassets.com/assets/global-7e1d0e4dee6a.css

HTTP Request

GET https://github.githubassets.com/assets/github-e72829f5538b.css

HTTP Request

GET https://github.githubassets.com/assets/repository-197a21528ff0.css

HTTP Request

GET https://github.githubassets.com/assets/primer-react.d209d02dc41225aeedb7.module.css

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

HTTP Request

GET https://github.githubassets.com/assets/code-730cb3192afb.css

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-691189ea6f17.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-503c34-318866ed3f00.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-012d79-7ec25b51d23f.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview-f21e385995b2.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview.9cc263aa0716ce801059.module.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-c928ca8c0253.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-71291b73d826.js

HTTP Request

GET https://github.githubassets.com/assets/environment-7b93e0f0c8ff.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js

HTTP Request

GET https://github.githubassets.com/assets/github-elements-f991cfab5105.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-3b5362d3d402.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js

HTTP Request

GET https://github.githubassets.com/assets/behaviors-a6abce982f3f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-global-cfcd9f4f0f23.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-70450e-eecf0d50276f.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js

HTTP Request

GET https://github.githubassets.com/assets/codespaces-a493a4b9528f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js

HTTP Request

GET https://github.githubassets.com/assets/repositories-f3093651fb0e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-26cce2010167.js

HTTP Request

GET https://github.githubassets.com/assets/code-menu-b5f092ec4b30.js

HTTP Request

GET https://github.githubassets.com/assets/primer-react-7d737072203b.js

HTTP Request

GET https://github.githubassets.com/assets/react-core-85b0640cddc8.js

HTTP Request

GET https://github.githubassets.com/assets/react-lib-2131e17288a8.js

HTTP Request

GET https://github.githubassets.com/assets/octicons-react-611691cca2f6.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu-b1dd2eefd368.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-fecaee5fb732.js

HTTP Request

GET https://github.githubassets.com/assets/keyboard-shortcuts-dialog-958cae8ecd6c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js

HTTP Request

GET https://github.githubassets.com/assets/sessions-5d6426bbf16a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b89b98661809.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-843b41414e0e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-9002b0-881da98a8b00.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-a7926fdcecf7.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_paths_index_ts-c223e79a3369.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_markdown-accessiblity-table-element_element-entry_ts-c97f49322396.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-c502e32b8685.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

HTTP Response

200
185.199.109.133:443

https://avatars.githubusercontent.com/u/63458929?v=4&size=40

tls, http2

msedge.exe

2.5kB
13.4kB
25
31

HTTP Request

GET https://avatars.githubusercontent.com/u/74565485?v=4&size=40

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/63458929?s=64&v=4

HTTP Request

GET https://avatars.githubusercontent.com/u/123590232?s=64&v=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/63458929?v=4&size=40

HTTP Response

200
185.199.108.133:443

https://raw.githubusercontent.com/Virus-Samples/Malware-Sample-Sources/main/contrib/VirusSamples-logo.png

tls, http2

msedge.exe

2.1kB
21.8kB
21
29

HTTP Request

GET https://raw.githubusercontent.com/Virus-Samples/Malware-Sample-Sources/main/contrib/VirusSamples-logo.png

HTTP Response

200
185.199.111.133:443

camo.githubusercontent.com

tls

msedge.exe

989 B
4.8kB
9
10
185.199.111.133:443

https://camo.githubusercontent.com/4208eee1fcfabecf89cd3efb76ff8b6a73dfcd759204a418916f3d0cc7538fe5/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f73746172732f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e7376673f7374796c653d736f6369616c266c6162656c3d53746172266d61784167653d32353932303030

tls, http2

msedge.exe

2.7kB
10.7kB
21
26

HTTP Request

GET https://camo.githubusercontent.com/189e1a8e9862603201351d113865516d39d176f820ab4bc69e437e4822c8324c/68747470733a2f2f696d672e736869656c64732e696f2f62616467652f72657175657374732d77656c636f6d652d627269676874677265656e2e7376673f7374796c653d726f756e64

HTTP Request

GET https://camo.githubusercontent.com/79ab5e679dcd659d9c278b2a2ff6913f724c31be0e1a3a9c6c10cd442557f8bd/687474703a2f2f686974732e6477796c2e636f6d2f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e737667

HTTP Request

GET https://camo.githubusercontent.com/4208eee1fcfabecf89cd3efb76ff8b6a73dfcd759204a418916f3d0cc7538fe5/68747470733a2f2f696d672e736869656c64732e696f2f6769746875622f73746172732f56697275732d53616d706c65732f4d616c776172652d53616d706c652d536f75726365732e7376673f7374796c653d736f6369616c266c6162656c3d53746172266d61784167653d32353932303030

HTTP Response

200

HTTP Response

200

HTTP Response

504
185.199.111.133:443

camo.githubusercontent.com

tls

msedge.exe

989 B
4.8kB
9
10
95.101.143.218:443

th.bing.com

tls, http2

msedge.exe

1.0kB
946 B
8
8
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

6.5kB
9.3kB
31
34

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
150.171.27.10:443

https://tse1.mm.bing.net/th?&id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&pid=1.7&rs=1

tls, http2

msedge.exe

2.9kB
20.8kB
25
34

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.vUfuC-FPNcPTPzZHubcnBgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.2z-jpDSVV1bwE3GY4p6WNwHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200
185.199.108.154:443

https://github.githubassets.com/favicons/favicon.png

tls, http2

msedge.exe

2.6kB
24.7kB
29
33

HTTP Request

GET https://github.githubassets.com/favicons/favicon.svg

HTTP Request

GET https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/favicons/favicon.png

HTTP Response

200
140.82.114.22:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

6.3kB
7.0kB
25
26

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204
140.82.114.22:443

collector.github.com

tls

msedge.exe

1.0kB
4.6kB
10
8
20.26.156.216:443

https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master

tls, http2

msedge.exe

3.9MB
218.1MB
83751
156135

HTTP Request

GET https://codeload.github.com/Da2dalus/The-MALWARE-Repo/zip/refs/heads/master

HTTP Response

200
2.18.190.203:443

aefd.nelreports.net

tls

msedge.exe

1.1kB
953 B
8
9
184.164.136.134:80

{34184A33-0407-212E-3320-09040709E2C2}.exe

260 B
5

8.8.8.8:53

241.150.49.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

241.150.49.20.in-addr.arpa
8.8.8.8:53

google.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

google.com

DNS Response

142.250.180.14
8.8.8.8:53

google.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

google.com

DNS Response

142.250.180.14
8.8.8.8:53

136.32.126.40.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

136.32.126.40.in-addr.arpa
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

95.221.229.192.in-addr.arpa
224.0.0.251:5353

393 B
6
8.8.8.8:53

17.135.221.88.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

17.135.221.88.in-addr.arpa
8.8.8.8:53

13.86.106.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

13.86.106.20.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.143.218

95.101.143.210

95.101.143.211

95.101.143.201

95.101.143.202

95.101.143.182

95.101.143.212

95.101.143.203

95.101.143.213
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

95.101.143.212

88.221.134.248

95.101.143.218

88.221.134.249

88.221.134.2

95.101.143.213

88.221.134.3

88.221.134.251

95.101.143.219
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

65 B
174 B
1
1

DNS Request

aefd.nelreports.net

DNS Response

2.19.252.146

2.19.252.134
8.8.8.8:53

login.microsoftonline.com

dns

msedge.exe

71 B
314 B
1
1

DNS Request

login.microsoftonline.com

DNS Response

20.190.159.2

20.190.159.75

20.190.159.64

20.190.159.71

40.126.31.69

20.190.159.0

40.126.31.73

20.190.159.73
8.8.8.8:53

218.143.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

218.143.101.95.in-addr.arpa
8.8.8.8:53

212.143.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

212.143.101.95.in-addr.arpa
8.8.8.8:53

2.159.190.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

2.159.190.20.in-addr.arpa
8.8.8.8:53

146.252.19.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

146.252.19.2.in-addr.arpa
8.8.8.8:53

68.32.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

68.32.126.40.in-addr.arpa
8.8.8.8:53

237.197.79.204.in-addr.arpa

dns

73 B
143 B
1
1

DNS Request

237.197.79.204.in-addr.arpa
8.8.8.8:53

97.17.167.52.in-addr.arpa

dns

71 B
145 B
1
1

DNS Request

97.17.167.52.in-addr.arpa
8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

215.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

215.156.26.20.in-addr.arpa
8.8.8.8:53

60.153.16.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

60.153.16.2.in-addr.arpa
8.8.8.8:53

github.githubassets.com

dns

msedge.exe

69 B
133 B
1
1

DNS Request

github.githubassets.com

DNS Response

185.199.108.154

185.199.109.154

185.199.110.154

185.199.111.154
8.8.8.8:53

avatars.githubusercontent.com

dns

msedge.exe

75 B
139 B
1
1

DNS Request

avatars.githubusercontent.com

DNS Response

185.199.109.133

185.199.110.133

185.199.111.133

185.199.108.133
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

75 B
253 B
1
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

3.5.27.220

52.216.50.209

54.231.226.185

52.217.203.169

52.217.122.65

3.5.2.158

16.182.34.97

52.216.105.235
8.8.8.8:53

user-images.githubusercontent.com

dns

msedge.exe

79 B
143 B
1
1

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.108.133

185.199.111.133

185.199.110.133

185.199.109.133
8.8.8.8:53

camo.githubusercontent.com

dns

msedge.exe

72 B
136 B
1
1

DNS Request

camo.githubusercontent.com

DNS Response

185.199.111.133

185.199.110.133

185.199.108.133

185.199.109.133
8.8.8.8:53

raw.githubusercontent.com

dns

msedge.exe

71 B
135 B
1
1

DNS Request

raw.githubusercontent.com

DNS Response

185.199.108.133

185.199.109.133

185.199.111.133

185.199.110.133
8.8.8.8:53

154.108.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

154.108.199.185.in-addr.arpa
8.8.8.8:53

133.109.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.109.199.185.in-addr.arpa
8.8.8.8:53

133.108.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.108.199.185.in-addr.arpa
8.8.8.8:53

133.111.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.111.199.185.in-addr.arpa
8.8.8.8:53

56.163.245.4.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

56.163.245.4.in-addr.arpa
8.8.8.8:53

241.42.69.40.in-addr.arpa

dns

71 B
145 B
1
1

DNS Request

241.42.69.40.in-addr.arpa
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

210.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

210.156.26.20.in-addr.arpa
8.8.8.8:53

tse1.mm.bing.net

dns

msedge.exe

124 B
340 B
2
2

DNS Request

tse1.mm.bing.net

DNS Response

150.171.27.10

150.171.28.10

DNS Request

tse1.mm.bing.net

DNS Response

150.171.28.10

150.171.27.10
8.8.8.8:53

10.27.171.150.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

10.27.171.150.in-addr.arpa
8.8.8.8:53

collector.github.com

dns

msedge.exe

66 B
115 B
1
1

DNS Request

collector.github.com

DNS Response

140.82.114.22
8.8.8.8:53

22.114.82.140.in-addr.arpa

dns

72 B
117 B
1
1

DNS Request

22.114.82.140.in-addr.arpa
8.8.8.8:53

codeload.github.com

dns

msedge.exe

65 B
81 B
1
1

DNS Request

codeload.github.com

DNS Response

20.26.156.216
8.8.8.8:53

22.49.80.91.in-addr.arpa

dns

70 B
145 B
1
1

DNS Request

22.49.80.91.in-addr.arpa
8.8.8.8:53

216.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

216.156.26.20.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.143.178

95.101.143.184

88.221.135.58

88.221.135.51

95.101.143.185

95.101.143.35

95.101.143.177

88.221.135.56

95.101.143.34
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

95.101.143.201

88.221.134.2

95.101.143.211

95.101.143.195

88.221.134.248

95.101.143.203

88.221.134.3

95.101.143.202

95.101.143.182
8.8.8.8:53

11.227.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

11.227.111.52.in-addr.arpa
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

65 B
174 B
1
1

DNS Request

aefd.nelreports.net

DNS Response

2.18.190.203

2.18.190.212
2.18.190.203:443

aefd.nelreports.net

https

msedge.exe

2.2kB
5.6kB
10
13
8.8.8.8:53

203.190.18.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

203.190.18.2.in-addr.arpa
8.8.8.8:53

mknwkmvasksae.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

mknwkmvasksae.co.uk
8.8.8.8:53

ocmtvxpnbxtsl.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

ocmtvxpnbxtsl.info
8.8.8.8:53

prhvsdciuqhgl.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

prhvsdciuqhgl.com
8.8.8.8:53

pwwoeokgcflpn.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

pwwoeokgcflpn.net
8.8.8.8:53

qmrqbtwbvxyde.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

qmrqbtwbvxyde.biz
8.8.8.8:53

ywetmqycfnsys.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

ywetmqycfnsys.ru

DNS Request

ywetmqycfnsys.ru
8.8.8.8:53

mbyhfysivwxmr.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
290 B
2
2

DNS Request

mbyhfysivwxmr.org

DNS Request

mbyhfysivwxmr.org
8.8.8.8:53

booeahtbekfqs.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

booeahtbekfqs.co.uk
8.8.8.8:53

osjrspnhutkeb.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

128 B
286 B
2
2

DNS Request

osjrspnhutkeb.info

DNS Request

osjrspnhutkeb.info
8.8.8.8:53

dyindxadibyco.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

dyindxadibyco.com
8.8.8.8:53

qddbvgtjykepn.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

qddbvgtjykepn.net
8.8.8.8:53

fqsxqouchxlth.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

fqsxqouchxlth.biz
8.8.8.8:53

sunljwoixhqhp.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

62 B
123 B
1
1

DNS Request

sunljwoixhqhp.ru
8.8.8.8:53

dsogggygfqjmp.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

dsogggygfqjmp.org
8.8.8.8:53

eijidouhvooig.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

eijidouhvooig.co.uk
8.8.8.8:53

fkyqtwtfenvep.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

fkyqtwtfenvep.info
8.8.8.8:53

gatsqfpgulbap.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

gatsqfpgulbap.com
8.8.8.8:53

husawnahieppw.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

husawnahieppw.net
8.8.8.8:53

iknctvviyculn.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

iknctvviyculn.biz
8.8.8.8:53

jmdkkeughbchp.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

jmdkkeughbchp.ru

DNS Request

jmdkkeughbchp.ru
8.8.8.8:53

kcxmhmqhxyhdp.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
290 B
2
2

DNS Request

kcxmhmqhxyhdp.org

DNS Request

kcxmhmqhxyhdp.org
8.8.8.8:53

tngkgeigwdxan.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

tngkgeigwdxan.co.uk
8.8.8.8:53

hrbxyjsjqhuvv.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

128 B
286 B
2
2

DNS Request

hrbxyjsjqhuvv.info

DNS Request

hrbxyjsjqhuvv.info
8.8.8.8:53

uiqfoovfqusnp.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

uiqfoovfqusnp.com
8.8.8.8:53

imlshtgikypjo.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

imlshtgikypjo.net
8.8.8.8:53

vvkghlltvhhtc.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

vvkghlltvhhtc.biz
8.8.8.8:53

jaftaqvwplepk.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

jaftaqvwplepk.ru

DNS Request

jaftaqvwplepk.ru
8.8.8.8:53

wqubpvyspychl.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

wqubpvyspychl.org
8.8.8.8:53

kupoibjvjdydk.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

kupoibjvjdydk.co.uk
8.8.8.8:53

xjqwatiywggvn.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

128 B
286 B
2
2

DNS Request

xjqwatiywggvn.info

DNS Request

xjqwatiywggvn.info
8.8.8.8:53

yylywyutqytjn.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

yylywyutqytjn.com
8.8.8.8:53

yebrievxqxbjp.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

yebrievxqxbjp.net
8.8.8.8:53

atvtfjiskqowg.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
250 B
2
2

DNS Request

atvtfjiskqowg.biz

DNS Request

atvtfjiskqowg.biz
8.8.8.8:53

arusbblmvkppn.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

arusbblmvkppn.ru

DNS Request

arusbblmvkppn.ru
8.8.8.8:53

bhpuxgxhpdddn.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

bhpuxgxhpdddn.org
8.8.8.8:53

bmfnjlylpckdw.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

bmfnjlylpckdw.co.uk
8.8.8.8:53

ccapgqlgjuxqn.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

ccapgqlgjuxqn.info
8.8.8.8:53

mgmqhtslehota.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

mgmqhtslehota.com
8.8.8.8:53

akheacmruqthy.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

akheacmruqthy.net
8.8.8.8:53

oxwbuegwvsxus.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

oxwbuegwvsxus.biz
8.8.8.8:53

ccronmadmcdib.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

ccronmadmcdib.ru

DNS Request

ccronmadmcdib.ru
8.8.8.8:53

ooqmibvydlxno.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

ooqmibvydlxno.org
8.8.8.8:53

cslabjpftudbn.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

cslabjpftudbn.co.uk
8.8.8.8:53

qgbwvljkuwhoo.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

128 B
286 B
2
2

DNS Request

qgbwvljkuwhoo.info

DNS Request

qgbwvljkuwhoo.info
8.8.8.8:53

ekvkotdqlgmcw.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

ekvkotdqlgmcw.com
8.8.8.8:53

qcwdbjspekfhw.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
272 B
2
2

DNS Request

qcwdbjspekfhw.net

DNS Request

qcwdbjspekfhw.net
8.8.8.8:53

rrrfxroquikdn.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

rrrfxroquikdn.biz
8.8.8.8:53

sthnotgbvvoip.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

62 B
123 B
1
1

DNS Request

sthnotgbvvoip.ru
8.8.8.8:53

tjcplcccmttep.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
290 B
2
2

DNS Request

tjcplcccmttep.org

DNS Request

tjcplcccmttep.org
8.8.8.8:53

skbycqvddoobw.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

skbycqvddoobw.co.uk
8.8.8.8:53

tavbyyretmtwn.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

tavbyyretmtwn.info
8.8.8.8:53

ucljpbjouaxcw.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

ucljpbjouaxcw.com
8.8.8.8:53

vrglmjfplxdxw.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

vrglmjfplxdxw.net
8.8.8.8:53

vuqowfsxiutgs.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

vuqowfsxiutgs.biz
8.8.8.8:53

jwravkdbmqdxb.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

jwravkdbmqdxb.ru

DNS Request

jwravkdbmqdxb.ru
8.8.8.8:53

wpbjfvnqjcldc.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

wpbjfvnqjcldc.org
8.8.8.8:53

krcuebxtnxuub.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

krcuebxtnxuub.co.uk
8.8.8.8:53

awuinakaxjpia.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

awuinakaxjpia.info
8.8.8.8:53

nyvtmfudcfyai.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

nyvtmfudcfyai.com
8.8.8.8:53

brfdvqfsyqhfc.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

brfdvqfsyqhfc.net
8.8.8.8:53

otgouvpvdmqwb.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

otgouvpvdmqwb.biz
8.8.8.8:53

eebhxuwpaycqe.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

eebhxuwpaycqe.ru

DNS Request

eebhxuwpaycqe.ru
8.8.8.8:53

frcloajkehvee.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

frcloajkehvee.org
8.8.8.8:53

fylcglribgtnn.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

fylcglribgtnn.co.uk
8.8.8.8:53

gmmgwqedfonbe.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

gmmgwqedfonbe.info
8.8.8.8:53

igfboporpnxsa.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

igfboporpnxsa.com
8.8.8.8:53

jtgffubmtvrga.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

jtgffubmtvrga.net
8.8.8.8:53

jbpvwgjkquppc.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
125 B
1
1

DNS Request

jbpvwgjkquppc.biz
8.8.8.8:53

koqanlvfudjds.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

koqanlvfudjds.ru

DNS Request

koqanlvfudjds.ru
8.8.8.8:53

onwuxudgjtnjh.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

onwuxudgjtnjh.org
8.8.8.8:53

cpxgwdwmwjswg.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

cpxgwdwmwjswg.co.uk
8.8.8.8:53

qfhfllxfiqabh.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

64 B
143 B
1
1

DNS Request

qfhfllxfiqabh.info
8.8.8.8:53

ehiqktrlvgfop.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

ehiqktrlvgfop.com

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
e55832d7cd7e868a2c087c4c73678018

SHA1
ed7a2f6d6437e907218ffba9128802eaf414a0eb

SHA256
a4d7777b980ec53de3a70aca8fb25b77e9b53187e7d2f0fa1a729ee9a35da574

SHA512
897fdebf1a9269a1bf1e3a791f6ee9ab7c24c9d75eeff65ac9599764e1c8585784e1837ba5321d90af0b004af121b2206081a6fb1b1ad571a0051ee33d3f5c5f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
c2d9eeb3fdd75834f0ac3f9767de8d6f

SHA1
4d16a7e82190f8490a00008bd53d85fb92e379b0

SHA256
1e5efb5f1d78a4cc269cb116307e9d767fc5ad8a18e6cf95c81c61d7b1da5c66

SHA512
d92f995f9e096ecc0a7b8b4aca336aeef0e7b919fe7fe008169f0b87da84d018971ba5728141557d42a0fc562a25191bd85e0d7354c401b09e8b62cdc44b6dcd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
47KB

MD5
9f96d459817e54de2e5c9733a9bbb010

SHA1
afbadc759b65670865c10b31b34ca3c3e000cd31

SHA256
51b37ee622ba3e2210a8175ecd99d26d3a3a9e991368d0efbb705f21ff9ac609

SHA512
aa2514018ef2e39ebde92125f5cc6fb7f778f2ab3c35d4ec3a075578fda41a76dbd7239fe2ea61533fb3262c04739c6500d1497c006f511aa3142bb2696d2307

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
67KB

MD5
69df804d05f8b29a88278b7d582dd279

SHA1
d9560905612cf656d5dd0e741172fb4cd9c60688

SHA256
b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608

SHA512
0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
64KB

MD5
d6b36c7d4b06f140f860ddc91a4c659c

SHA1
ccf16571637b8d3e4c9423688c5bd06167bfb9e9

SHA256
34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92

SHA512
2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
19KB

MD5
2e86a72f4e82614cd4842950d2e0a716

SHA1
d7b4ee0c9af735d098bff474632fc2c0113e0b9c

SHA256
c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f

SHA512
7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
63KB

MD5
226541550a51911c375216f718493f65

SHA1
f6e608468401f9384cabdef45ca19e2afacc84bd

SHA256
caecff4179910ce0ff470f9fa9eb4349e8fb717fa1432cf19987450a4e1ef4a5

SHA512
2947b309f15e0e321beb9506861883fde8391c6f6140178c7e6ee7750d6418266360c335477cae0b067a6a6d86935ec5f7acdfdacc9edffa8b04ec71be210516

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

Filesize
26KB

MD5
5dea626a3a08cc0f2676427e427eb467

SHA1
ad21ac31d0bbdee76eb909484277421630ea2dbd

SHA256
b19581c0e86b74b904a2b3a418040957a12e9b5ae6a8de07787d8bb0e4324ed6

SHA512
118016178abe2c714636232edc1e289a37442cc12914b5e067396803aa321ceaec3bcfd4684def47a95274bb0efd72ca6b2d7bc27bb93467984b84bc57931fcc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
f0e02bb20960d5229bd7413be5529b40

SHA1
9c675f7041e11cd59102e60f60fd190aad3882bd

SHA256
22c0ded830580a889749143f988072f1f79a46becb4fca98803563cf09b15d7e

SHA512
40d8b682f2121d479ca666af965c1a21c5b8ff91f99b884bf824d217db0ed3c7359cfdf0a77a204ceac6c90272f870abe8acf3817b01efc9c0c47a8770e7376e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
27e22871cb346264c7289bcd9f112226

SHA1
273efe2a0452b7453e7f85b19ad1468d27c2ebff

SHA256
b9bbab46e028e8be9e5b9893298d58a1fe95351baf6015e0937e8f9acef8898c

SHA512
ed18d6cd43c27e2cc2fafd0e08c592372246007c10e534ffa4a8ad0c0963e7013e8a5e885cafb3018e40bea16c0d62a532f4f209d5631632dc5e429b2e4e6a32

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
1e940e2bb47568267c4b162ef7c23db0

SHA1
4e0a416334b91b8d078a635f55bf9988ced3a97f

SHA256
6091fe9acbbcf6bc6949b0307f91bd768f0308eb59c9408a7b530e5740251c7b

SHA512
72ca5384ad91adab82b67ff5d6c9d9d15a82bd4fac738ddfd4968c1b83f38a94d7dd6d6f446277305e20cd1f473d40dff2c0a5b16d2ce77903ca31b10d56b4fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
f60f237529435f4743d93859dde66a02

SHA1
0abfc03d1c135a4312319b869826cf82fcc5ffb2

SHA256
02aa094171e4e3967958eebb5fe7b665ebfc993a2703972e7025a93f10fc812d

SHA512
247d5488168494c9201a8e03cac7bd1a5d2f566876e390673be077248f34fe13b9be11ab20274fa7dc38a25223e815d655bc9b194df14a67ca37730d0c83ec92

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
6ee2858feca247017ae8997fc4c779cc

SHA1
cd5b5c79adb1dd19505e54c69c8359b69940facc

SHA256
fd906006128725dcad527ab5962fba0d20a7cf4cdf990a22ad00a89220e2b0dc

SHA512
88bf21cbb468ceb320e197169c38d34f741d7e3c5e5f0d79fd8dec768ca27906e45d5d669b6464e063f59297fd9cd7a47a3ab8f6cdd284332cbba447b54dafc2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
1eea21c41320c0aac7371b727ba861ca

SHA1
34dd167acd274a7b80a1d33de0a5fb506d49e64c

SHA256
ceda950709e3bce82b16a10bb1fb3cfe63d225cfc7c3085350c2417e4eb0d130

SHA512
e388d2b5236d2be07e05d45dac3eedb0dbe574fd57aac3ca00fedfa8a8c0dc5baee90014acbcd76c8e29b697c055c2f7104d175b8336ee8f4d1c5974c7729dd4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
59d47257acdc60fba740b86b01908aee

SHA1
bfa244acaa255d27e8713c32818208cd62107df4

SHA256
45b780645853bc6120140be7761f0429cdfc0883cbc3649fdda31ecad213d169

SHA512
87d4738a38f40e7542e0aa98f49c8d89cc7f40254c570194acf9573ea571c255862697d44fd05a1092f5597ede230c3b4a3d813d86970715b8cdbfcf4939a3cf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
19139ed2adef65acbc5ef7d2268a915f

SHA1
492b9c7489ba26062813c95a981cddef09d61388

SHA256
cb8a727dd1f295942909ba1d595a3a29f4731ee25cdfb27f9f0ded1cd09a5d42

SHA512
b7f4b7c3affb969624cd788f845a88a453c772e428866a03bc80d20d720c681d8b5eb21f016da15454310b47471bd2d1482d9ad2f7ba624332eb2433c006428c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
a0f573c056d7bfbdac9a5225a21edb0b

SHA1
045b087d6d64ebdda6c1c62f0deaa7bf0c8a9fcb

SHA256
88efbecdaa7a02c95327cc0e4dfa3109d84c71ca220580cc15a67c82db3b81ac

SHA512
e03b88fa90fcd954ec1a51f664ef1a8ea4e94f542e92f44e9d791372d1b3abdbb95deb3d33d5409c9bbba5582506cd16779702293ba237a6e27efbe7f8c76eea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
6e07e4ff11d934d629a29ae17cd1f516

SHA1
2ce1d993ecb95e45b45d4f807c70ec01d2a93304

SHA256
4d848bbf9071ba332ca731158efc3458582bd4292539b62c16a339e3e1bec7cf

SHA512
20bb7e5e17a741390d929506b7799aa9020e022d7d877f774656b0bbd40dafade937ce476abb52d2ede35103432b710f93db25d05a8861b91baae1a60fa24739

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
1d88de092cf9fc4fcd0470d80fcb68d1

SHA1
4d2699fb5f52192089cae70a4e4673983fd4e4ca

SHA256
491c9aec2d0153927276fc513c2bc5562685ca20ddba5f1b4c7bc60df3bc7c18

SHA512
a3a75e1d31abc759280a3f150421303c8de65ccd66b96bcb6bf28c5a3669473daddcd546f30204be37fee22778c6807dd4fd449319ed0d23ae4217509e7304ea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
b8470709ef7997d02bb210d7cd776f2b

SHA1
c04e99a7940966c005b834b96a5f362920d707a1

SHA256
407120793c45db472e9839b59a279fea606abc968aee9dc85c3ed4f009311687

SHA512
50db3e3ed37dbc2551c6b9fbb6efd88769e6e1d6cffe8174ced0d5caa93ddae65effa03b59f763ebfaf3a47a8554ec4040461e22925df36c2d8fbd59fef62707

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
852f44a4d0d1a403ce4709f101ed5e6b

SHA1
0562c741af60da611a43efb7492713eae52e4f80

SHA256
76405291f80478496634c443c8cee5ca18ba114010281eb10cc72845f4c2831f

SHA512
68a5d868c8a0f8ae79173a572152548f498fbed355314b24bc92055e70d67890794a8e154cd68c94ce4bdd01871d87713f051cbc6838df3fd951ca102a90f47e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
5c897314ae002897ea28affb5c8a7e4e

SHA1
bea727c390549fa322f97269215720e41f055ccf

SHA256
7273e22f4b1cd87798b383d1901381b9d100a7fcc008ecc4fd699986335023b6

SHA512
65e0ed9937eeac7d2e8a0d9bd9f1f2a8812312aff35c76c8d51747ffb49d999a599660585ec3bdf4aef2e94d7d453efa30d6d5f24c4a0476cc20ea42df3612f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
9b2d8cd1d82ad52e996a1558df1bcb69

SHA1
777eaefd6f50133768144280161a2ec2899064b4

SHA256
42e86a043a744827b731c227283f774bd78e82394a0f9022072c4c776a5d90c9

SHA512
6c4aebb909c187ad65c5b43769c47695e6074265531ac252ab4d944dab899c43d546ca68f488292fffd4ca7238b5a56e278b60b2eb63a334befda8d4c5ba8c99

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe580ed0.TMP

Filesize
536B

MD5
a8341c62f15ae7138949e74cdfc11a45

SHA1
2f05cac5ff70a9a901e03771fe2a949218bbd683

SHA256
a319d994ca2311c52a40b4bd54395761bdd2ff241249952969a0d7f1708ca85c

SHA512
e042902ddf82034ab1671e303731da4fb14f82775f4e15b727e280d5436c315627203f5dcc2a7e952fdc0f2db63d0764fdfd7e9fb09aa77b1e691033ad9d1faa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
b0c6f5331e08d41ef75c97efdaff370c

SHA1
948786da91f16d350a53fd6f87696db624504fec

SHA256
09e9bb79c21410634dba5fac44d460c7b18d70fc2b11d51b114fcdde091be5ed

SHA512
67659259b280fe977628192ad52fb531fdf7f1bd806eeed22232db5519e3e1544441104c0ba309e5b17d655e81159f97cb8392af1f6b03d080be251913a96447

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
c7b37c906cafd5661e35288948f5cbc9

SHA1
e40ae0cbb62d1b5edeade95fc7e8d7029a5952fd

SHA256
caf090be429b3e639fff7dc08835724163eac8a55b074764de577e17e944f6b5

SHA512
18f7f8af0a6078dddffe2aab58dfb490e08b5019db1cd40c3aef1fd8d0099284e1447737f7b795491f2a9091c71f965988e8b50df0065d23f1882ba3430a6abc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Media Player\CurrentDatabase_400.wmdb

Filesize
896KB

MD5
c84bd102ae301472324e06c5df404285

SHA1
5104a400664fc95984d38ebb964f6c7fb044990a

SHA256
3a13406909db2b2259c85538601d1749be11184892e7a2d6214d6ad2b7144d6e

SHA512
a6c118b0e07cd5f20610b18cd60c286788222b76b8a8162207e1434cdfd5ece46ff121ea140dc483df0d5a487f3c3398817fcea88e83bd623eaf77ee090e9a20

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows Media\12.0\WMSDKNS.XML.bak

Filesize
9KB

MD5
7050d5ae8acfbe560fa11073fef8185d

SHA1
5bc38e77ff06785fe0aec5a345c4ccd15752560e

SHA256
cb87767c4a384c24e4a0f88455f59101b1ae7b4fb8de8a5adb4136c5f7ee545b

SHA512
a7a295ac8921bb3dde58d4bcde9372ed59def61d4b7699057274960fa8c1d1a1daff834a93f7a0698e9e5c16db43af05e9fd2d6d7c9232f7d26ffcff5fc5900b

Download Submit
C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe

Filesize
338KB

MD5
04fb36199787f2e3e2135611a38321eb

SHA1
65559245709fe98052eb284577f1fd61c01ad20d

SHA256
d765e722e295969c0a5c2d90f549db8b89ab617900bf4698db41c7cdad993bb9

SHA512
533d6603f6e2a77bd1b2c6591a135c4717753d53317c1be06e43774e896d9543bcd0ea6904a0688aa84b2d8424641d68994b1e7dc4aa46d66c36feecb6145444

Download Submit
C:\Users\Admin\Downloads\The-MALWARE-Repo-master\The-MALWARE-Repo-master\Joke\chilledwindows.mp4

Filesize
3.6MB

MD5
698ddcaec1edcf1245807627884edf9c

SHA1
c7fcbeaa2aadffaf807c096c51fb14c47003ac20

SHA256
cde975f975d21edb2e5faa505205ab8a2c5a565ba1ff8585d1f0e372b2a1d78b

SHA512
a2c326f0c653edcd613a3cefc8d82006e843e69afc787c870aa1b9686a20d79e5ab4e9e60b04d1970f07d88318588c1305117810e73ac620afd1fb6511394155

Download Submit
memory/3824-975-0x00000000214E0000-0x00000000214EE000-memory.dmp

Filesize
56KB

Download
memory/3824-974-0x0000000021550000-0x0000000021588000-memory.dmp

Filesize
224KB

Download
memory/3824-973-0x0000000021480000-0x0000000021488000-memory.dmp

Filesize
32KB

Download
memory/3824-961-0x0000000000770000-0x0000000000BD4000-memory.dmp

Filesize
4.4MB

Download
memory/3864-1024-0x000000001B410000-0x000000001B4B6000-memory.dmp

Filesize
664KB

Download
memory/3864-1025-0x000000001B990000-0x000000001BE5E000-memory.dmp

Filesize
4.8MB

Download
memory/3864-1026-0x000000001BF40000-0x000000001BFDC000-memory.dmp

Filesize
624KB

Download
memory/3864-1027-0x0000000000CD0000-0x0000000000CD8000-memory.dmp

Filesize
32KB

Download
memory/3864-1028-0x000000001C0A0000-0x000000001C0EC000-memory.dmp

Filesize
304KB

Download

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response