redline | hxxps://www[.]mediafire[.]com/file/3tatft4jogooizv/DiscordNitroGenerator[.]zip/file

Analysis

max time kernel
249s
max time network
251s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
24/01/2025, 14:51 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file

Score

10^/10

redline @sc4lly1337 discovery infostealer

Malware Config

Extracted

Family

redline

Botnet

@sc4lly1337

185.215.113.83:60722

Attributes

auth_value
cb96f2ad461ba2dc951cb5a868225e22

Signatures

RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
infostealer redline

RedLine payload 1 IoCs

resource	yara_rule
behavioral1/memory/4124-1161-0x0000000000400000-0x0000000000420000-memory.dmp	family_redline

Redline family
redline

Downloads MZ/PE file 1 IoCs

flow	pid	Process
370	4840	msedge.exe

Executes dropped EXE 5 IoCs

pid	Process
4900	processhacker-2.39-setup.exe
6004	processhacker-2.39-setup.tmp
5292	ProcessHacker.exe
4776	DiscordNitroGenerator.exe
5820	DiscordNitroGenerator.exe

Loads dropped DLL 12 IoCs

pid	Process
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Probable phishing domain 1 TTPs 1 IoCs

Phishing

T1566

description	flow	ioc	stream
HTTP URL	192	https://sourceforge.net/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d9a9692e4134	5

Suspicious use of SetThreadContext 2 IoCs

description	pid	Process	procid_target
PID 4776 set thread context of 4124	4776	DiscordNitroGenerator.exe	182
PID 5820 set thread context of 6008	5820	DiscordNitroGenerator.exe	189

Drops file in Program Files directory 42 IoCs

description	ioc	Process
File created	C:\Program Files\Process Hacker 2\is-M7IB7.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-6U8B5.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-JC4QE.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\x86\plugins\DotNetTools.dll	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\HardwareDevices.dll	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\SbieSupport.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-J7C1V.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\x86\is-AA553.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-1306G.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\Updater.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-P6DCN.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-EAK1U.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-CGD1G.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-UVRQ5.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\DotNetTools.dll	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\ExtendedNotifications.dll	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\ExtendedServices.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-BJ2UA.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\ExtendedTools.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-0ASMP.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-3NIOV.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-9UMAB.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-H2DQL.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-4K6K8.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\UserNotes.dll	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\WindowExplorer.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\unins000.dat	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-84IHI.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-NQIBM.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-C51OV.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\unins000.dat	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\OnlineChecks.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\is-JBSEA.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-2FL9V.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\x86\plugins\is-L4BSB.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\ToolStatus.dll	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-E8BEO.tmp	processhacker-2.39-setup.tmp
File created	C:\Program Files\Process Hacker 2\plugins\is-1303O.tmp	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\ProcessHacker.exe	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\plugins\NetworkTools.dll	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\x86\ProcessHacker.exe	processhacker-2.39-setup.tmp
File opened for modification	C:\Program Files\Process Hacker 2\peview.exe	processhacker-2.39-setup.tmp

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 6 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	DiscordNitroGenerator.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	AppLaunch.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	DiscordNitroGenerator.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	AppLaunch.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	processhacker-2.39-setup.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	processhacker-2.39-setup.tmp

Checks processor information in registry 2 TTPs 2 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0	ProcessHacker.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	ProcessHacker.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-493223053-2004649691-1575712786-1000_Classes\Local Settings	msedge.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 527692.crdownload:SmartScreen	msedge.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
4840	msedge.exe
4840	msedge.exe
4932	msedge.exe
4932	msedge.exe
4544	identity_helper.exe
4544	identity_helper.exe
1820	msedge.exe
1820	msedge.exe
5796	msedge.exe
5796	msedge.exe
5796	msedge.exe
5796	msedge.exe
5516	msedge.exe
5516	msedge.exe
6004	processhacker-2.39-setup.tmp
6004	processhacker-2.39-setup.tmp
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
5292	ProcessHacker.exe

Suspicious behavior: LoadsDriver 1 IoCs

pid	Process
660	Process not Found

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 57 IoCs

pid	Process
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe

Suspicious use of AdjustPrivilegeToken 12 IoCs

description	pid	Process
Token: SeRestorePrivilege	5408	7zG.exe
Token: 35	5408	7zG.exe
Token: SeSecurityPrivilege	5408	7zG.exe
Token: SeSecurityPrivilege	5408	7zG.exe
Token: SeDebugPrivilege	5292	ProcessHacker.exe
Token: SeIncBasePriorityPrivilege	5292	ProcessHacker.exe
Token: 33	5292	ProcessHacker.exe
Token: SeLoadDriverPrivilege	5292	ProcessHacker.exe
Token: SeProfSingleProcessPrivilege	5292	ProcessHacker.exe
Token: SeRestorePrivilege	5292	ProcessHacker.exe
Token: SeShutdownPrivilege	5292	ProcessHacker.exe
Token: SeTakeOwnershipPrivilege	5292	ProcessHacker.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
5408	7zG.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
6004	processhacker-2.39-setup.tmp
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
4932	msedge.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe
5292	ProcessHacker.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4932 wrote to memory of 4276	4932	msedge.exe	86
PID 4932 wrote to memory of 4276	4932	msedge.exe	86
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 2324	4932	msedge.exe	87
PID 4932 wrote to memory of 4840	4932	msedge.exe	88
PID 4932 wrote to memory of 4840	4932	msedge.exe	88
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89
PID 4932 wrote to memory of 2268	4932	msedge.exe	89

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file
1⤵
- Enumerates system info in registry
- Modifies registry class
- NTFS ADS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4932
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb77bc46f8,0x7ffb77bc4708,0x7ffb77bc4718
  2⤵
  PID:4276
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2020 /prefetch:2
  2⤵
  PID:2324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 /prefetch:3
  2⤵
  - Downloads MZ/PE file
  - Suspicious behavior: EnumeratesProcesses
  PID:4840
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2596 /prefetch:8
  2⤵
  PID:2268
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1
  2⤵
  PID:4296
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3352 /prefetch:1
  2⤵
  PID:692
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5320 /prefetch:1
  2⤵
  PID:3456
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5992 /prefetch:8
  2⤵
  PID:3996
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5992 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5408 /prefetch:1
  2⤵
  PID:4664
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5620 /prefetch:1
  2⤵
  PID:3016
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
  2⤵
  PID:2784
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5764 /prefetch:8
  2⤵
  PID:5100
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6032 /prefetch:1
  2⤵
  PID:5096
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5900 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1820
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5612 /prefetch:1
  2⤵
  PID:2992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6496 /prefetch:1
  2⤵
  PID:1556
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6176 /prefetch:1
  2⤵
  PID:3892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5344 /prefetch:1
  2⤵
  PID:2284
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
  2⤵
  PID:3148
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1
  2⤵
  PID:4408
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6080 /prefetch:1
  2⤵
  PID:3712
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6900 /prefetch:1
  2⤵
  PID:1568
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6548 /prefetch:1
  2⤵
  PID:732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1856 /prefetch:1
  2⤵
  PID:5640
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6224 /prefetch:1
  2⤵
  PID:5720
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5340 /prefetch:1
  2⤵
  PID:5848
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6180 /prefetch:1
  2⤵
  PID:5920
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2220 /prefetch:1
  2⤵
  PID:6064
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5460 /prefetch:1
  2⤵
  PID:5508
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6944 /prefetch:1
  2⤵
  PID:5556
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6568 /prefetch:1
  2⤵
  PID:2032
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5636 /prefetch:1
  2⤵
  PID:4104
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6832 /prefetch:1
  2⤵
  PID:5736
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6980 /prefetch:1
  2⤵
  PID:6020
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4788 /prefetch:1
  2⤵
  PID:5188
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6884 /prefetch:1
  2⤵
  PID:3892
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3396 /prefetch:1
  2⤵
  PID:6112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1
  2⤵
  PID:5608
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6080 /prefetch:1
  2⤵
  PID:2148
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1712 /prefetch:1
  2⤵
  PID:5504
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5876 /prefetch:1
  2⤵
  PID:1868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6460 /prefetch:1
  2⤵
  PID:4960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6992 /prefetch:1
  2⤵
  PID:6024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6652 /prefetch:1
  2⤵
  PID:4820
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2268 /prefetch:1
  2⤵
  PID:2164
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5604 /prefetch:1
  2⤵
  PID:4236
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5540 /prefetch:1
  2⤵
  PID:2216
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7412 /prefetch:1
  2⤵
  PID:1652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7504 /prefetch:1
  2⤵
  PID:4928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7384 /prefetch:1
  2⤵
  PID:5096
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7660 /prefetch:1
  2⤵
  PID:5556
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5560 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5796
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7540 /prefetch:1
  2⤵
  PID:2900
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6752 /prefetch:8
  2⤵
  PID:3560
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8156 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:5516
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=904 /prefetch:1
  2⤵
  PID:5212
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7604 /prefetch:1
  2⤵
  PID:3580
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1012 /prefetch:1
  2⤵
  PID:928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6732 /prefetch:1
  2⤵
  PID:4540
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3144 /prefetch:1
  2⤵
  PID:3288
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7496 /prefetch:1
  2⤵
  PID:2808
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4736 /prefetch:1
  2⤵
  PID:5192
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2124 /prefetch:1
  2⤵
  PID:5260
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8164 /prefetch:1
  2⤵
  PID:4024
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8176 /prefetch:1
  2⤵
  PID:5088
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1
  2⤵
  PID:1744
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2008,5314434897116331367,12587338270601745996,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7792 /prefetch:1
  2⤵
  PID:460

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2904

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3768

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:5188

C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\DiscordNitroGenerator\" -spe -an -ai#7zMap24052:104:7zEvent13610
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
PID:5408

C:\Users\Admin\Downloads\processhacker-2.39-setup.exe
"C:\Users\Admin\Downloads\processhacker-2.39-setup.exe"
1⤵
- Executes dropped EXE
- System Location Discovery: System Language Discovery
PID:4900
- C:\Users\Admin\AppData\Local\Temp\is-PCB84.tmp\processhacker-2.39-setup.tmp
  "C:\Users\Admin\AppData\Local\Temp\is-PCB84.tmp\processhacker-2.39-setup.tmp" /SL5="$10370,1874675,150016,C:\Users\Admin\Downloads\processhacker-2.39-setup.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious use of FindShellTrayWindow
  PID:6004
- - C:\Program Files\Process Hacker 2\ProcessHacker.exe
    "C:\Program Files\Process Hacker 2\ProcessHacker.exe"
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    - Checks processor information in registry
    - Suspicious behavior: EnumeratesProcesses
    - Suspicious behavior: GetForegroundWindowSpam
    - Suspicious use of AdjustPrivilegeToken
    - Suspicious use of FindShellTrayWindow
    - Suspicious use of SendNotifyMessage
    PID:5292

C:\Users\Admin\Downloads\DiscordNitroGenerator\DiscordNitroGenerator.exe
"C:\Users\Admin\Downloads\DiscordNitroGenerator\DiscordNitroGenerator.exe"
1⤵
- Executes dropped EXE
- Suspicious use of SetThreadContext
- System Location Discovery: System Language Discovery
PID:4776
- C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe
  "C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
  2⤵
  - System Location Discovery: System Language Discovery
  PID:4124

C:\Users\Admin\Downloads\DiscordNitroGenerator\DiscordNitroGenerator.exe
"C:\Users\Admin\Downloads\DiscordNitroGenerator\DiscordNitroGenerator.exe"
1⤵
- Executes dropped EXE
- Suspicious use of SetThreadContext
- System Location Discovery: System Language Discovery
PID:5820
- C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe
  "C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
  2⤵
  - System Location Discovery: System Language Discovery
  PID:6008

Network

DNS

8.8.8.8.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.8.8.8.in-addr.arpa

IN PTR

Response

8.8.8.8.in-addr.arpa

IN PTR

dnsgoogle
DNS

133.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.32.126.40.in-addr.arpa

IN PTR

Response
DNS

www.mediafire.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.mediafire.com

IN A

Response

www.mediafire.com

IN A

104.17.150.117

www.mediafire.com

IN A

104.17.151.117
GET

https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /file/3tatft4jogooizv/DiscordNitroGenerator.zip/file HTTP/2.0
host: www.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:21 GMT
content-type: text/html; charset=UTF-8
cf-ray: 9070d752685b71ec-LHR
cf-cache-status: DYNAMIC
access-control-allow-origin: https://www.mediafire.com
cache-control: no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
expires: 0
set-cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0; expires=Tue, 24-Jan-2045 14:51:21 GMT; Max-Age=631152000; path=/; domain=.mediafire.com; HttpOnly
strict-transport-security: max-age=0
pragma: no-cache
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
x-frame-options: SAMEORIGIN
x-mf-env: liveApi
x-mf-fe: mf2
x-robots-tag: noindex, nofollow
set-cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D; expires=Sun, 23-Feb-2025 14:51:21 GMT; Max-Age=2592000; path=/; domain=.mediafire.com
set-cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w; path=/; expires=Fri, 24-Jan-25 15:21:21 GMT; domain=.mediafire.com; HttpOnly; Secure; SameSite=None
server-timing: cfCacheStatus;desc="DYNAMIC"
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
GET

https://www.mediafire.com/images/icons/svg_dark/icons_sprite.svg

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/icons/svg_dark/icons_sprite.svg HTTP/2.0
host: www.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:21 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-115c"
x-mf-env: liveApi
x-mf-fe: mf1
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 4734
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7562bcc71ec-LHR
content-encoding: gzip
GET

https://static.mediafire.com/images/download/subscription_upsell/special_discount_banner.png

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/download/subscription_upsell/special_discount_banner.png HTTP/2.0
host: static.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:21 GMT
content-type: image/png
content-length: 14277
last-modified: Thu, 16 Jan 2025 18:44:46 GMT
etag: "6789539e-37c5"
expires: Sun, 23 Feb 2025 09:47:56 GMT
cache-control: max-age=2592000
x-mf-env: liveApi
x-mf-fe: mf1
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 8393
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7561bc671ec-LHR
GET

https://static.mediafire.com/images/filetype/file-zip-v3.png

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/filetype/file-zip-v3.png HTTP/2.0
host: static.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:21 GMT
content-type: image/png
content-length: 1872
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: "62deda56-750"
expires: Sun, 23 Feb 2025 13:47:41 GMT
cache-control: max-age=2592000
x-mf-env: liveApi
x-mf-fe: mf1
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1783
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7562bcb71ec-LHR
GET

https://static.mediafire.com/images/backgrounds/header/mf_logo_u1_reversed.svg

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/backgrounds/header/mf_logo_u1_reversed.svg HTTP/2.0
host: static.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:21 GMT
content-type: image/svg+xml
cf-ray: 9070d7561bc171ec-LHR
cf-cache-status: HIT
access-control-allow-origin: *
age: 11913
etag: W/"62deda56-90ab"
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
vary: Accept-Encoding
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
x-mf-env: liveApi
x-mf-fe: mf1
server: cloudflare
content-encoding: gzip
GET

https://static.mediafire.com/images/download/subscription_upsell/folders_2.svg

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/download/subscription_upsell/folders_2.svg HTTP/2.0
host: static.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: image/svg+xml
last-modified: Thu, 16 Jan 2025 18:08:19 GMT
etag: W/"67894b13-ec"
x-mf-env: liveApi
x-mf-fe: mf1
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 8401
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7570c8171ec-LHR
content-encoding: gzip
GET

https://static.mediafire.com/images/download/subscription_upsell/gold_check_mark_circle.svg

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/download/subscription_upsell/gold_check_mark_circle.svg HTTP/2.0
host: static.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: image/png
content-length: 583
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: "62deda56-247"
expires: Sun, 23 Feb 2025 10:56:49 GMT
cache-control: max-age=2592000
x-mf-env: liveApi
x-mf-fe: mf1
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 13041
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7570c8571ec-LHR
GET

https://static.mediafire.com/images/backgrounds/footer/social/footerIcons.png

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/backgrounds/footer/social/footerIcons.png HTTP/2.0
host: static.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: image/svg+xml
last-modified: Thu, 16 Jan 2025 18:46:41 GMT
etag: W/"67895411-6ce6b"
x-mf-env: liveApi
x-mf-fe: mf1
access-control-allow-origin: *
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 10970
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7570c7f71ec-LHR
content-encoding: gzip
GET

https://sandbox.mediafire.com/images/backgrounds/header/mf_logo_u1_full_color_reversed.svg

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /images/backgrounds/header/mf_logo_u1_full_color_reversed.svg HTTP/2.0
host: sandbox.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: image/svg+xml
cf-ray: 9070d7575cc271ec-LHR
cf-cache-status: DYNAMIC
access-control-allow-origin: *
etag: W/"62deda56-11ca"
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
x-mf-env: liveApiSandbox
x-mf-fe: mfsbx1
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
GET

https://www.mediafire.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/2.0
host: www.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 302

date: Fri, 24 Jan 2025 14:51:22 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7599eba71ec-LHR
alt-svc: h3=":443"; ma=86400
GET

https://www.mediafire.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js?

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js? HTTP/2.0
host: www.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d75b682a71ec-LHR
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
POST

https://www.mediafire.com/cdn-cgi/challenge-platform/h/b/jsd/r/9070d752685b71ec

msedge.exe

Remote address:

104.17.150.117:443

Request

POST /cdn-cgi/challenge-platform/h/b/jsd/r/9070d752685b71ec HTTP/2.0
host: www.mediafire.com
content-length: 14104
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.mediafire.com; Priority=High; HttpOnly; Secure; SameSite=None
set-cookie: cf_clearance=Bez0QROq7bAf6KF3YeNkw.JXnHMdQKMiWVS1.bD275c-1737730283-1.2.1.1-fWDkbBkUCG9j4bgN.RQoKtsoEq9Lg8NmJy1U5Jc6LtTL.ZuWKx0ynJq05n3oXyyG6GQ1f4YBoy4pSY5AMHwksUonwBRVlL7azkv4KGtouDtVqkiODygmkcMQRej9.bTaG4_G9D1SceJ0P53aDm_t2i1QqnkY9p.mwaHRt3_qty3GAbprtl9_4UO2_fVa6A1u9pGZwFp0tGqjho3vE08XGarfhgjn5OnIRAlSy9hzm6m93A30ol091mVEOPBHQrHaFnK2hljXFAZ1hUgJYakOYG8FlpjuiiNfxhPJ34m8Yro; Path=/; Expires=Sat, 24-Jan-26 14:51:23 GMT; Domain=.mediafire.com; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
server: cloudflare
cf-ray: 9070d75e4ad571ec-LHR
alt-svc: h3=":443"; ma=86400
POST

https://www.mediafire.com/cdn-cgi/rum?

msedge.exe

Remote address:

104.17.150.117:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: www.mediafire.com
content-length: 1285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w
cookie: amp_28916b=ttJnVVFK3a56GCeUApYYU7...1iiccnl76.1iiccnl79.0.1.1
cookie: cf_clearance=Bez0QROq7bAf6KF3YeNkw.JXnHMdQKMiWVS1.bD275c-1737730283-1.2.1.1-fWDkbBkUCG9j4bgN.RQoKtsoEq9Lg8NmJy1U5Jc6LtTL.ZuWKx0ynJq05n3oXyyG6GQ1f4YBoy4pSY5AMHwksUonwBRVlL7azkv4KGtouDtVqkiODygmkcMQRej9.bTaG4_G9D1SceJ0P53aDm_t2i1QqnkY9p.mwaHRt3_qty3GAbprtl9_4UO2_fVa6A1u9pGZwFp0tGqjho3vE08XGarfhgjn5OnIRAlSy9hzm6m93A30ol091mVEOPBHQrHaFnK2hljXFAZ1hUgJYakOYG8FlpjuiiNfxhPJ34m8Yro
cookie: _ga_K68XP6D85D=GS1.1.1737730282.1.0.1737730282.60.0.0
cookie: _ga=GA1.2.78540993.1737730283
cookie: _gid=GA1.2.1163076309.1737730283
cookie: _gat_gtag_UA_829541_1=1

Response

HTTP/2.0 204

date: Fri, 24 Jan 2025 14:51:23 GMT
access-control-allow-origin: https://www.mediafire.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9070d7624e5571ec-LHR
x-frame-options: DENY
x-content-type-options: nosniff
GET

https://www.mediafire.com/favicon.ico

msedge.exe

Remote address:

104.17.150.117:443

Request

GET /favicon.ico HTTP/2.0
host: www.mediafire.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w
cookie: amp_28916b=ttJnVVFK3a56GCeUApYYU7...1iiccnl76.1iiccnl79.0.1.1
cookie: cf_clearance=Bez0QROq7bAf6KF3YeNkw.JXnHMdQKMiWVS1.bD275c-1737730283-1.2.1.1-fWDkbBkUCG9j4bgN.RQoKtsoEq9Lg8NmJy1U5Jc6LtTL.ZuWKx0ynJq05n3oXyyG6GQ1f4YBoy4pSY5AMHwksUonwBRVlL7azkv4KGtouDtVqkiODygmkcMQRej9.bTaG4_G9D1SceJ0P53aDm_t2i1QqnkY9p.mwaHRt3_qty3GAbprtl9_4UO2_fVa6A1u9pGZwFp0tGqjho3vE08XGarfhgjn5OnIRAlSy9hzm6m93A30ol091mVEOPBHQrHaFnK2hljXFAZ1hUgJYakOYG8FlpjuiiNfxhPJ34m8Yro
cookie: _ga_K68XP6D85D=GS1.1.1737730282.1.0.1737730282.60.0.0
cookie: _ga=GA1.2.78540993.1737730283
cookie: _gid=GA1.2.1163076309.1737730283
cookie: _gat_gtag_UA_829541_1=1

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: image/x-icon
cf-ray: 9070d7627e7a71ec-LHR
cf-cache-status: HIT
access-control-allow-origin: *
age: 296346
cache-control: max-age=2592000
etag: W/"62deda56-2a46"
expires: Tue, 18 Feb 2025 11:56:10 GMT
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
vary: Accept-Encoding
access-control-allow-methods: OPTIONS, POST, GET
alt-svc: h3=":443"; ma=86400
x-mf-env: liveApi
x-mf-fe: mf2
server: cloudflare
content-encoding: gzip
POST

https://www.mediafire.com/cdn-cgi/rum?

msedge.exe

Remote address:

104.17.150.117:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: www.mediafire.com
content-length: 1085
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0
cookie: conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D
cookie: __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w
cookie: amp_28916b=ttJnVVFK3a56GCeUApYYU7...1iiccnl76.1iiccnl79.0.1.1
cookie: cf_clearance=Bez0QROq7bAf6KF3YeNkw.JXnHMdQKMiWVS1.bD275c-1737730283-1.2.1.1-fWDkbBkUCG9j4bgN.RQoKtsoEq9Lg8NmJy1U5Jc6LtTL.ZuWKx0ynJq05n3oXyyG6GQ1f4YBoy4pSY5AMHwksUonwBRVlL7azkv4KGtouDtVqkiODygmkcMQRej9.bTaG4_G9D1SceJ0P53aDm_t2i1QqnkY9p.mwaHRt3_qty3GAbprtl9_4UO2_fVa6A1u9pGZwFp0tGqjho3vE08XGarfhgjn5OnIRAlSy9hzm6m93A30ol091mVEOPBHQrHaFnK2hljXFAZ1hUgJYakOYG8FlpjuiiNfxhPJ34m8Yro
cookie: _ga=GA1.2.78540993.1737730283
cookie: _gid=GA1.2.1163076309.1737730283
cookie: _gat_gtag_UA_829541_1=1
cookie: ez-consent-tcf=CQLvHAAQLvHAAErAKKENBZFsAP_gAEPgACiQKwtX_G__bWlr8X73aftkeY1P99h77sQxBhbJE-4FzLvW_JwXx2ExNA36tqIKmRIAu3TBIQNlHJDURVCgaogVryDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991dx2B-t7dr83dzyy4hHn3a5_2S0WJCdA5-tDfv9bROb-9IOd_x8v4v4_F7pE2_eT1l_tWvp7D9-cts_9XW99_fbff9Pn_-uB_-_X_vf_H36CsABJhoVEAZZEhIQaBhBAgBUFYQEUCAIAAEgaICAEwYFOwMAF1hIgBACgAGCAEAAIMgAQAACQAIRABAAUCAACAQKAAMACAYCABgYAAwAWAgEAAIDoGKYEEAgWACRmRUKYEIQCQQEtlQgkAQIK4QhFngEQCImCgAABIAKQABAWCwOJJASsSCALiCaAAAgAQCCAAoRSdmAIIAzZaq8GTaMrTAsHzBc9pgGSBEEZOSbAAAA.YAAAAAAAAAAA
cookie: ad_count=1
cookie: click_download=3tatft4jogooizv
cookie: _ga_K68XP6D85D=GS1.1.1737730282.1.0.1737730285.57.0.0

Response

HTTP/2.0 204

date: Fri, 24 Jan 2025 14:51:29 GMT
access-control-allow-origin: https://www.mediafire.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9070d7858ca771ec-LHR
x-frame-options: DENY
x-content-type-options: nosniff
DNS

172.210.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.210.232.199.in-addr.arpa

IN PTR

Response
DNS

196.249.167.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

196.249.167.52.in-addr.arpa

IN PTR

Response
DNS

117.150.17.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

117.150.17.104.in-addr.arpa

IN PTR

Response
DNS

167.173.78.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

167.173.78.104.in-addr.arpa

IN PTR

Response

167.173.78.104.in-addr.arpa

IN PTR

a104-78-173-167deploystaticakamaitechnologiescom
DNS

the.gatekeeperconsent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

the.gatekeeperconsent.com

IN A

Response

the.gatekeeperconsent.com

IN A

104.21.42.32

the.gatekeeperconsent.com

IN A

172.67.199.186
GET

https://the.gatekeeperconsent.com/cmp.min.js

msedge.exe

Remote address:

104.21.42.32:443

Request

GET /cmp.min.js HTTP/2.0
host: the.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:21 GMT
content-type: application/javascript
cache-control: max-age=300, public
content-encoding: gzip
vary: Accept-Encoding
x-middleton-display: sol-js
x-robots-tag: noindex
last-modified: Fri, 24 Jan 2025 14:47:19 GMT
cf-cache-status: HIT
age: 242
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gORTz6ONw2X%2FtCGNQMeaK3758H6Rnhv%2Fkl4j9jKxJ3NnwizfYt8kjFnRT5jBAlSVZs8VZt%2FvyV829XkmatgsxpHFvKE4kmsCNBQcOvblVpZKENW%2F8P6hfVl1nGnGiCwdp87bmkZL0t%2BmG0BI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d7555e6371c9-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=46917&min_rtt=46903&rtt_var=17617&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2857&recv_bytes=1040&delivery_rate=57722&cwnd=247&unsent_bytes=0&cid=2e85ea0b5accb6c8&ts=72&x=0"
GET

https://privacy.gatekeeperconsent.com/tcf2_stub.js

msedge.exe

Remote address:

104.21.42.32:443

Request

GET /tcf2_stub.js HTTP/2.0
host: privacy.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=15780000, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V3SNwE43XMs6VpHS61ZvmPO3Np58D7NxNx56XNVvPjMo7neTArVbJFVBAiGvwm4s6zBhL5%2BkpEzJIf5C%2B5%2FWmA%2B7mXIAfPN02AG4z0WgG5g3GQdtp%2Fxb3g3LowJNJ8CgNAt8FQYIWUlscSQvzdnn9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d758d87e71c9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=49415&min_rtt=46903&rtt_var=11746&sent=11&recv=11&lost=0&retrans=0&sent_bytes=5047&recv_bytes=1155&delivery_rate=97624&cwnd=252&unsent_bytes=0&cid=2e85ea0b5accb6c8&ts=637&x=0"
GET

https://the.gatekeeperconsent.com/v2/cmp.js?v=296

msedge.exe

Remote address:

104.21.42.32:443

Request

GET /v2/cmp.js?v=296 HTTP/2.0
host: the.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: text/javascript; charset=utf-8
cache-control: max-age=15780000, public
content-encoding: gzip
last-modified: Mon, 20 Jan 2025 22:30:36 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 65179
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KY78tTkUNn8E6lW2bHp166DUuVYGOJYRhnDPPP0bqgItD43PO0LxsmcHxAiqN9hJionpb2YYSr9NWXdIjIniwTuLSrYZ%2FoXVYWblD500FpUkJK%2BbBIeVB4wfFKEbb%2B7QdDayBz9zov5VanRU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d758f89371c9-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=49415&min_rtt=46903&rtt_var=11746&sent=14&recv=12&lost=0&retrans=0&sent_bytes=6271&recv_bytes=1220&delivery_rate=97624&cwnd=252&unsent_bytes=0&cid=2e85ea0b5accb6c8&ts=653&x=0"
DNS

static.mediafire.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.mediafire.com

IN A

Response

static.mediafire.com

IN A

104.17.150.117

static.mediafire.com

IN A

104.17.151.117
DNS

privacy.gatekeeperconsent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

privacy.gatekeeperconsent.com

IN A

Response

privacy.gatekeeperconsent.com

IN A

172.67.199.186

privacy.gatekeeperconsent.com

IN A

104.21.42.32
GET

https://privacy.gatekeeperconsent.com/consent_modules.json

msedge.exe

Remote address:

172.67.199.186:443

Request

GET /consent_modules.json HTTP/2.0
host: privacy.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: application/json;charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=15780000, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IyxFebKoZnRJzJB0M0QEG9DJpahO1kZPR536k7l6bobDYv3bmI1eU%2FeuCb1NknF7F6wsjOBqSTtmWdXm9CYbX99ZWPcvpizhqhWMO8Xq3mvYFOLIUtdE2etBHGE7sLlFoFyP7Z8QkUAMPT4qn3lMNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7579d9394e5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=47052&min_rtt=47043&rtt_var=17660&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2857&recv_bytes=1075&delivery_rate=57598&cwnd=251&unsent_bytes=0&cid=23180da99ac173ec&ts=71&x=0"
GET

https://the.gatekeeperconsent.com/v2/config.json?domain=www.mediafire.com&changeLogId=0&cb=0

msedge.exe

Remote address:

172.67.199.186:443

Request

GET /v2/config.json?domain=www.mediafire.com&changeLogId=0&cb=0 HTTP/2.0
host: the.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: max-age=3600, public
content-encoding: gzip
content-security-policy: default-src 'none'
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: deny
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YD0S8kx8Wss1ltmgeaTdO8wqRz1H1SgMTrAGNtjbLNNoNO9N4Ji1yrb%2F78N3ZJ0hP%2BwY2jmePR4v56RJhq5lMf7PvSsAwbCotq81lKGqRgCvIkEuD66%2BtSeihIsnttHqo3YLdytxpPsv3I6K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d75a186f94e5-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=53643&min_rtt=47011&rtt_var=20589&sent=10&recv=11&lost=0&retrans=0&sent_bytes=3633&recv_bytes=1221&delivery_rate=67836&cwnd=255&unsent_bytes=0&cid=23180da99ac173ec&ts=488&x=0"
GET

https://the.gatekeeperconsent.com/cmp/gvl.json?v=10&lang=en

msedge.exe

Remote address:

172.67.199.186:443

Request

GET /cmp/gvl.json?v=10&lang=en HTTP/2.0
host: the.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: max-age=345600, public
content-encoding: gzip
last-modified: Sun, 19 Jan 2025 08:54:25 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 114286
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2BpoY2Vtj589PpH3QWvamHmHrwcQFKxDyXWq6wpIw73uxZufS9eALlAYJaryn6FdNzB3aKn2KCLo3nttuswYjYod0nwXO1sjM4cSkUYY0CqSrAnYmeJ4tQN7LSe%2F2vh5ClJhcTyaTHaE%2FzUP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d75b7a7d94e5-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58243&min_rtt=47011&rtt_var=22840&sent=15&recv=15&lost=0&retrans=0&sent_bytes=6941&recv_bytes=1294&delivery_rate=114817&cwnd=257&unsent_bytes=0&cid=23180da99ac173ec&ts=705&x=0"
OPTIONS

https://the.gatekeeperconsent.com/cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543

msedge.exe

Remote address:

172.67.199.186:443

Request

OPTIONS /cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543 HTTP/2.0
host: the.gatekeeperconsent.com
accept: */*
access-control-request-method: GET
access-control-request-headers: content-type
origin: https://www.mediafire.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-origin: https://www.mediafire.com
access-control-max-age: 1728000
vary: Accept-Encoding,Origin,Access-Control-Request-Method,Access-Control-Request-Headers
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=94y4C1FTgoygsv%2BbjTpvzZqOaMhgNf2osyhICmrRFbDB8JebM2jzdSvlkHR1L%2FN15kRz6klU3columcNNDIl965qA02zQJiY4U71inxg44wH45U9NZPSp4%2FCmBw3S7eMQb4m%2B5PejLR7ScPX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d75f4e0f94e5-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=52317&min_rtt=47011&rtt_var=563&sent=82&recv=50&lost=0&retrans=0&sent_bytes=90983&recv_bytes=1488&delivery_rate=1631039&cwnd=257&unsent_bytes=0&cid=23180da99ac173ec&ts=1309&x=0"
GET

https://the.gatekeeperconsent.com/cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543

msedge.exe

Remote address:

172.67.199.186:443

Request

GET /cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543 HTTP/2.0
host: the.gatekeeperconsent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: text/html; charset=utf-8
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-origin: https://www.mediafire.com
access-control-max-age: 1728000
cache-control: max-age=2592000, public
vary: Accept-Encoding,Origin,Access-Control-Request-Method,Access-Control-Request-Headers
last-modified: Fri, 10 Jan 2025 19:41:33 GMT
cf-cache-status: HIT
age: 119172
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uELbMT7H%2BDKdNDFSPTEsfxHwo0moRf%2BPL7%2FZ%2Fi9dNlycBcN0VEEmowSiM97Ws3FucgT7r3%2FYSKbJYKu76y7evzEHVy2mGqQPTViHnv10h%2BIBdthVw2k0HlGTUYlO0d4xBqSj%2F7ALusQudPnD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d75fbe8394e5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=52047&min_rtt=47011&rtt_var=613&sent=83&recv=51&lost=0&retrans=0&sent_bytes=91667&recv_bytes=1631&delivery_rate=1631039&cwnd=257&unsent_bytes=0&cid=23180da99ac173ec&ts=1375&x=0"
DNS

cdn.amplitude.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.amplitude.com

IN A

Response

cdn.amplitude.com

IN A

18.239.18.40

cdn.amplitude.com

IN A

18.239.18.99

cdn.amplitude.com

IN A

18.239.18.31

cdn.amplitude.com

IN A

18.239.18.117
DNS

static.cloudflareinsights.com

msedge.exe

Remote address:

8.8.8.8:53

Request

static.cloudflareinsights.com

IN A

Response

static.cloudflareinsights.com

IN A

104.16.80.73

static.cloudflareinsights.com

IN A

104.16.79.73
DNS

sandbox.mediafire.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sandbox.mediafire.com

IN A

Response

sandbox.mediafire.com

IN A

104.17.150.117

sandbox.mediafire.com

IN A

104.17.151.117
GET

https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

msedge.exe

Remote address:

104.16.80.73:443

Request

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/2.0
host: static.cloudflareinsights.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.mediafire.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7582d214141-LHR
content-encoding: gzip
GET

https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

msedge.exe

Remote address:

104.16.80.73:443

Request

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/2.0
host: static.cloudflareinsights.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.uncoverit.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d871ae814141-LHR
content-encoding: gzip
GET

https://cdn.amplitude.com/libs/amplitude-8.5.0-min.gz.js

msedge.exe

Remote address:

18.239.18.40:443

Request

GET /libs/amplitude-8.5.0-min.gz.js HTTP/2.0
host: cdn.amplitude.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.mediafire.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/javascript
content-length: 22154
date: Wed, 22 Jan 2025 10:02:08 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 13 Aug 2021 22:37:42 GMT
etag: "660c3b546f2a131de50b69b91f26c636"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: NY8_7uBz3xoXYJBVsMSBAGHOz8ixMBS3
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 668006c1cb101e4e3461ceae5f2ccbe2.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: xYvwtNI3F6OAaC7o5mdVJ5_BsFWThfJETJNWfUwGK0SCko2w6qA0Hg==
age: 190155
DNS

8.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.200.250.142.in-addr.arpa

IN PTR

Response

8.200.250.142.in-addr.arpa

IN PTR

lhr48s29-in-f81e100net
DNS

32.42.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

32.42.21.104.in-addr.arpa

IN PTR

Response
DNS

cdn.otnolatrnup.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.otnolatrnup.com

IN A

Response

cdn.otnolatrnup.com

IN A

104.19.208.227

cdn.otnolatrnup.com

IN A

104.18.159.164
DNS

crt.rootg2.amazontrust.com

msedge.exe

Remote address:

8.8.8.8:53

Request

crt.rootg2.amazontrust.com

IN A

Response

crt.rootg2.amazontrust.com

IN A

18.239.83.86

crt.rootg2.amazontrust.com

IN A

18.239.83.100

crt.rootg2.amazontrust.com

IN A

18.239.83.98

crt.rootg2.amazontrust.com

IN A

18.239.83.27
GET

https://cdn.otnolatrnup.com/Scripts/infinity.js.aspx?guid=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0

msedge.exe

Remote address:

104.19.208.227:443

Request

GET /Scripts/infinity.js.aspx?guid=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0 HTTP/2.0
host: cdn.otnolatrnup.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:22 GMT
content-type: application/x-javascript; charset=utf-8
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
vary: Accept-Encoding
cache-control: public, no-transform, max-age=900
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: *
last-modified: Fri, 24 Jan 2025 14:43:03 GMT
cf-cache-status: HIT
age: 218
server: cloudflare
cf-ray: 9070d759fa95f652-LHR
alt-svc: h3=":443"; ma=86400
GET

https://otnolatrnup.com/Tag.engine?time=0&id=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0&rand=80744&ver=async&referrerUrl=&fingerPrint=123&abr=false&stdTime=0&fpe=1&bw=1280&bh=609&res=1280x720&curl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&kw=online%20storage%2Cfree%20storage%2Ccloud%20storage%2Ccollaboration%2Cbackup%20file%20sharing%2Cshare%20files%2Cphoto%20backup%2Cphoto%20sharing%2Cftp%20replacement%2Ccross%20platform%2Cremote%20access%2Cmobile%20access%2Csend%20large%20files%2Crecover%20files%2Cfile%20versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos%20x%2Clinux%2Ciphone

msedge.exe

Remote address:

104.19.208.227:443

Request

GET /Tag.engine?time=0&id=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0&rand=80744&ver=async&referrerUrl=&fingerPrint=123&abr=false&stdTime=0&fpe=1&bw=1280&bh=609&res=1280x720&curl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&kw=online%20storage%2Cfree%20storage%2Ccloud%20storage%2Ccollaboration%2Cbackup%20file%20sharing%2Cshare%20files%2Cphoto%20backup%2Cphoto%20sharing%2Cftp%20replacement%2Ccross%20platform%2Cremote%20access%2Cmobile%20access%2Csend%20large%20files%2Crecover%20files%2Cfile%20versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos%20x%2Clinux%2Ciphone HTTP/2.0
host: otnolatrnup.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: application/json; charset=utf-8
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
vary: Accept-Encoding
cache-control: private, no-transform
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
set-cookie: __INF_CC=; expires=Tue, 14-Jan-2025 14:51:23 GMT; path=/
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
set-cookie: IUID=49c0a8c0-58db-4c6a-b3b3-a2cc53674cff; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure
set-cookie: ISSH=78E65B; path=/; SameSite=None; secure
set-cookie: VMI=; path=/; SameSite=None; secure
set-cookie: CHN=#[]; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: MSSH=#{}; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: MSRH=#{}; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILP={"Profile":{"Audiences":{"Audience":[],"ThirdPartyAudience":[]}},"CreatedDate":"2025-01-24T14:51:23.056837Z"}; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure
set-cookie: ILPLU=#1/24/2025 2:51:23 PM; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILEALC=#1/24/2025 2:51:23 PM; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILMPF=#True; expires=Fri, 24-Jan-2025 18:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPMPLU=#1/1/0001 12:00:00 AM; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPMUID=#; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: BSWUID=#; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IKSR={}; path=/; SameSite=None; secure
set-cookie: IBL=#[]; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure
set-cookie: IOPT=#[]; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISH=#{"101":[{"SId":"78E65B","D":"25/1/24T6:51:23"}]}; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISH_Q=#[101]; expires=Wed, 24-Jan-2035 14:51:23 GMT; path=/; SameSite=None; secure; HttpOnly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070d75ca990f652-LHR
alt-svc: h3=":443"; ma=86400
GET

https://otnolatrnup.com/fp.engine?id=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0&rand=65909&ver=async&time=0&referrerUrl=&subId=&tid=&abr=false&res=1280x720&stdTime=0&fpe=1&curl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&kw=online%20storage%2Cfree%20storage%2Ccloud%20storage%2Ccollaboration%2Cbackup%20file%20sharing%2Cshare%20files%2Cphoto%20backup%2Cphoto%20sharing%2Cftp%20replacement%2Ccross%20platform%2Cremote%20access%2Cmobile%20access%2Csend%20large%20files%2Crecover%20files%2Cfile%20versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos%20x%2Clinux%2Ciphone&spt=1

msedge.exe

Remote address:

104.19.208.227:443

Request

GET /fp.engine?id=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0&rand=65909&ver=async&time=0&referrerUrl=&subId=&tid=&abr=false&res=1280x720&stdTime=0&fpe=1&curl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&kw=online%20storage%2Cfree%20storage%2Ccloud%20storage%2Ccollaboration%2Cbackup%20file%20sharing%2Cshare%20files%2Cphoto%20backup%2Cphoto%20sharing%2Cftp%20replacement%2Ccross%20platform%2Cremote%20access%2Cmobile%20access%2Csend%20large%20files%2Crecover%20files%2Cfile%20versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos%20x%2Clinux%2Ciphone&spt=1 HTTP/2.0
host: otnolatrnup.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: INF_DFL8=false
cookie: IUID=49c0a8c0-58db-4c6a-b3b3-a2cc53674cff
cookie: ISSH=78E65B
cookie: VMI=
cookie: CHN=#[]
cookie: MSSH=#{}
cookie: MSRH=#{}
cookie: ILP={"Profile":{"Audiences":{"Audience":[],"ThirdPartyAudience":[]}},"CreatedDate":"2025-01-24T14:51:23.056837Z"}
cookie: ILPLU=#1/24/2025 2:51:23 PM
cookie: ILEALC=#1/24/2025 2:51:23 PM
cookie: ILMPF=#True
cookie: IPMPLU=#1/1/0001 12:00:00 AM
cookie: IKSR={}
cookie: IPMUID=#
cookie: BSWUID=#
cookie: IBL=#[]
cookie: IOPT=#[]
cookie: ISH=#{"101":[{"SId":"78E65B","D":"25/1/24T6:51:23"}]}
cookie: ISH_Q=#[101]

Response

HTTP/2.0 302

date: Fri, 24 Jan 2025 14:51:26 GMT
content-type: text/html; charset=utf-8
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
vary: Accept-Encoding
cache-control: private, no-transform
content-encoding: gzip
p3p: CP="CAO PSA OUR IND"
location: /Redirect.eng?MediaSegmentId=80567&dcid=&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=0&dst=False&v=b-6FRX9XA6PWv1sfNPVAJ7R16WFPmNH5vxsoq80yZYs3CvsLDKN0h8aIjbYGW5fB-UVxUJRLtKqZYMIHhw7sf7Rb1zzoCFGkV7Jbq0YudptonqlCCV2qBm8tzKPPxSJxczowGYfrdPEXfWV7RPnZoJDWTB2AboNPB0_Y5BCwBrtGpTJB3Wn-9P0drSQEtdlGKApjigFccSxJP31wuVraa1MpsTmIb96y0ecBgI4FWihB67cZyfT24mVMj4i24TljzppvnOYi8QLJwnwRBftDTIgKeZLCt8leEqQICTPAkm0pZeVHaMJ12zxKyJgMi_0Ibuq2wnNwKbo-iNlU5c4vOr_4L2AzASFm9YCYrkO83K2hEYyuaGpwxMuhL_bXh6Ag_37a1yI1ecbQV8hoSJbbfD8n_fdl2Vk5CjKi938CxqcHNz7Mt5LiUZ2qAFhrAiTCqGb5iAa0a9xfV6QRnMpOwXYji4Eh13iAY-mYxK7glkbjF_C1IsiV9HOPej43qfzJ-mEOlKJ88fAnQVdueFXR6arsS8xfDcVpYfJ8tPqhlnnBLaPlVL-ElnPiCAVoT6G9cDR1-g9tw_YzDiItVYZthn-BsaAyJJiAMoxovJi3JY3pdBvEBLJaFC_wankqts6TM9DjIGMxFTgjgBKkZaVVNTwGu0lVq_qLes_pUOX5bxJD4oDz1lsbh32hoa0OSZ4QwRqOefNSsJppXv6v7O3_GrsUpRYLPPslvi-dsfFtVVMKKHP5YFYgFOSbi6a_4jtsGfflHqeSQ4_GpPl4NyOpDG4zxpmiqEIE7WKiAk97hDLr96y_uncL_hxikLKajJ0n-g8UWHdRXg1my0VNes5oZNi_Gk51eyK3HeRSvVJX3_RgEjfSpgNAcRsTHbZOla-DrpyED9v4SOLoXnEh9P2IJGI-4t9BEX0bOdC1r_WZtqJ_P3n_BE7TysozdnXFODlavBGtXzsroVfsPZHH0FioLp4OKOnzEHNGBBbMNSwXxAazO6RinSRtOFbjckVU1cDgmrvI4X49o2bVoVQXqDyf4X8zET4bGlZVWWTxM_vPKu_ykYsJ5YisC2FTWREff_yylJIGx-BCmcKSJ7qrsWzAzupXVjfqp9WRxAflpXqM7gM1&kw=online+storage%2Cfree+storage%2Ccloud+storage%2Ccollaboration%2Cbackup+file+sharing%2Cshare+files%2Cphoto+backup%2Cphoto+sharing%2Cftp+replacement%2Ccross+platform%2Cremote+access%2Cmobile+access%2Csend+large+files%2Crecover+files%2Cfile+versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos+x%2Clinux%2Ciphone&mw=1024&mh=768&at=&dc=ejDet1FZUebO1Xm99py884KW-tUjiGzFC2JOHcmLO3CK8jEG0A8c9ytxi4-N42aY8Gbe3clryqUvduI2OFQ0mw2&res=1280x720&spt=1&kw=online+storage%2cfree+storage%2ccloud+storage%2ccollaboration%2cbackup+file+sharing%2cshare+files%2cphoto+backup%2cphoto+sharing%2cftp+replacement%2ccross+platform%2cremote+access%2cmobile+access%2csend+large+files%2crecover+files%2cfile+versioning%2cundelete%2cwindows%2cpc%2cmac%2cos+x%2clinux%2ciphone
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
set-cookie: IUID=49c0a8c0-58db-4c6a-b3b3-a2cc53674cff; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure
set-cookie: ISSH=78E65B; path=/; SameSite=None; secure
set-cookie: VMI=; path=/; SameSite=None; secure
set-cookie: IPLH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPLH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: CHN=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: MSSH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: MSRH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILP={"Profile":{"Audiences":{"Audience":[],"ThirdPartyAudience":[]}},"CreatedDate":"2025-01-24T14:51:23.056837Z"}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure
set-cookie: ILPLU=#1/24/2025 2:51:23 PM; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILEALC=#1/24/2025 2:51:23 PM; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILMPF=#True; expires=Fri, 24-Jan-2025 18:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPMPLU=#1/1/0001 12:00:00 AM; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPMUID=#; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: BSWUID=#; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IKSR={}; path=/; SameSite=None; secure
set-cookie: IBL=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure
set-cookie: IOPT=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPLSH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPLSH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IZH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IZH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMCH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMCH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISH=#{"101":[{"SId":"78E65B","D":"25/1/24T6:51:23"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISH_Q=#[101]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISPH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISPH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ICH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ICH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070d7723a3af652-LHR
alt-svc: h3=":443"; ma=86400
GET

https://otnolatrnup.com/Redirect.eng?MediaSegmentId=80567&dcid=&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=0&dst=False&v=b-6FRX9XA6PWv1sfNPVAJ7R16WFPmNH5vxsoq80yZYs3CvsLDKN0h8aIjbYGW5fB-UVxUJRLtKqZYMIHhw7sf7Rb1zzoCFGkV7Jbq0YudptonqlCCV2qBm8tzKPPxSJxczowGYfrdPEXfWV7RPnZoJDWTB2AboNPB0_Y5BCwBrtGpTJB3Wn-9P0drSQEtdlGKApjigFccSxJP31wuVraa1MpsTmIb96y0ecBgI4FWihB67cZyfT24mVMj4i24TljzppvnOYi8QLJwnwRBftDTIgKeZLCt8leEqQICTPAkm0pZeVHaMJ12zxKyJgMi_0Ibuq2wnNwKbo-iNlU5c4vOr_4L2AzASFm9YCYrkO83K2hEYyuaGpwxMuhL_bXh6Ag_37a1yI1ecbQV8hoSJbbfD8n_fdl2Vk5CjKi938CxqcHNz7Mt5LiUZ2qAFhrAiTCqGb5iAa0a9xfV6QRnMpOwXYji4Eh13iAY-mYxK7glkbjF_C1IsiV9HOPej43qfzJ-mEOlKJ88fAnQVdueFXR6arsS8xfDcVpYfJ8tPqhlnnBLaPlVL-ElnPiCAVoT6G9cDR1-g9tw_YzDiItVYZthn-BsaAyJJiAMoxovJi3JY3pdBvEBLJaFC_wankqts6TM9DjIGMxFTgjgBKkZaVVNTwGu0lVq_qLes_pUOX5bxJD4oDz1lsbh32hoa0OSZ4QwRqOefNSsJppXv6v7O3_GrsUpRYLPPslvi-dsfFtVVMKKHP5YFYgFOSbi6a_4jtsGfflHqeSQ4_GpPl4NyOpDG4zxpmiqEIE7WKiAk97hDLr96y_uncL_hxikLKajJ0n-g8UWHdRXg1my0VNes5oZNi_Gk51eyK3HeRSvVJX3_RgEjfSpgNAcRsTHbZOla-DrpyED9v4SOLoXnEh9P2IJGI-4t9BEX0bOdC1r_WZtqJ_P3n_BE7TysozdnXFODlavBGtXzsroVfsPZHH0FioLp4OKOnzEHNGBBbMNSwXxAazO6RinSRtOFbjckVU1cDgmrvI4X49o2bVoVQXqDyf4X8zET4bGlZVWWTxM_vPKu_ykYsJ5YisC2FTWREff_yylJIGx-BCmcKSJ7qrsWzAzupXVjfqp9WRxAflpXqM7gM1&kw=online+storage%2Cfree+storage%2Ccloud+storage%2Ccollaboration%2Cbackup+file+sharing%2Cshare+files%2Cphoto+backup%2Cphoto+sharing%2Cftp+replacement%2Ccross+platform%2Cremote+access%2Cmobile+access%2Csend+large+files%2Crecover+files%2Cfile+versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos+x%2Clinux%2Ciphone&mw=1024&mh=768&at=&dc=ejDet1FZUebO1Xm99py884KW-tUjiGzFC2JOHcmLO3CK8jEG0A8c9ytxi4-N42aY8Gbe3clryqUvduI2OFQ0mw2&res=1280x720&spt=1&kw=online+storage%2cfree+storage%2ccloud+storage%2ccollaboration%2cbackup+file+sharing%2cshare+files%2cphoto+backup%2cphoto+sharing%2cftp+replacement%2ccross+platform%2cremote+access%2cmobile+access%2csend+large+files%2crecover+files%2cfile+versioning%2cundelete%2cwindows%2cpc%2cmac%2cos+x%2clinux%2ciphone

msedge.exe

Remote address:

104.19.208.227:443

Request

GET /Redirect.eng?MediaSegmentId=80567&dcid=&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=0&dst=False&v=b-6FRX9XA6PWv1sfNPVAJ7R16WFPmNH5vxsoq80yZYs3CvsLDKN0h8aIjbYGW5fB-UVxUJRLtKqZYMIHhw7sf7Rb1zzoCFGkV7Jbq0YudptonqlCCV2qBm8tzKPPxSJxczowGYfrdPEXfWV7RPnZoJDWTB2AboNPB0_Y5BCwBrtGpTJB3Wn-9P0drSQEtdlGKApjigFccSxJP31wuVraa1MpsTmIb96y0ecBgI4FWihB67cZyfT24mVMj4i24TljzppvnOYi8QLJwnwRBftDTIgKeZLCt8leEqQICTPAkm0pZeVHaMJ12zxKyJgMi_0Ibuq2wnNwKbo-iNlU5c4vOr_4L2AzASFm9YCYrkO83K2hEYyuaGpwxMuhL_bXh6Ag_37a1yI1ecbQV8hoSJbbfD8n_fdl2Vk5CjKi938CxqcHNz7Mt5LiUZ2qAFhrAiTCqGb5iAa0a9xfV6QRnMpOwXYji4Eh13iAY-mYxK7glkbjF_C1IsiV9HOPej43qfzJ-mEOlKJ88fAnQVdueFXR6arsS8xfDcVpYfJ8tPqhlnnBLaPlVL-ElnPiCAVoT6G9cDR1-g9tw_YzDiItVYZthn-BsaAyJJiAMoxovJi3JY3pdBvEBLJaFC_wankqts6TM9DjIGMxFTgjgBKkZaVVNTwGu0lVq_qLes_pUOX5bxJD4oDz1lsbh32hoa0OSZ4QwRqOefNSsJppXv6v7O3_GrsUpRYLPPslvi-dsfFtVVMKKHP5YFYgFOSbi6a_4jtsGfflHqeSQ4_GpPl4NyOpDG4zxpmiqEIE7WKiAk97hDLr96y_uncL_hxikLKajJ0n-g8UWHdRXg1my0VNes5oZNi_Gk51eyK3HeRSvVJX3_RgEjfSpgNAcRsTHbZOla-DrpyED9v4SOLoXnEh9P2IJGI-4t9BEX0bOdC1r_WZtqJ_P3n_BE7TysozdnXFODlavBGtXzsroVfsPZHH0FioLp4OKOnzEHNGBBbMNSwXxAazO6RinSRtOFbjckVU1cDgmrvI4X49o2bVoVQXqDyf4X8zET4bGlZVWWTxM_vPKu_ykYsJ5YisC2FTWREff_yylJIGx-BCmcKSJ7qrsWzAzupXVjfqp9WRxAflpXqM7gM1&kw=online+storage%2Cfree+storage%2Ccloud+storage%2Ccollaboration%2Cbackup+file+sharing%2Cshare+files%2Cphoto+backup%2Cphoto+sharing%2Cftp+replacement%2Ccross+platform%2Cremote+access%2Cmobile+access%2Csend+large+files%2Crecover+files%2Cfile+versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos+x%2Clinux%2Ciphone&mw=1024&mh=768&at=&dc=ejDet1FZUebO1Xm99py884KW-tUjiGzFC2JOHcmLO3CK8jEG0A8c9ytxi4-N42aY8Gbe3clryqUvduI2OFQ0mw2&res=1280x720&spt=1&kw=online+storage%2cfree+storage%2ccloud+storage%2ccollaboration%2cbackup+file+sharing%2cshare+files%2cphoto+backup%2cphoto+sharing%2cftp+replacement%2ccross+platform%2cremote+access%2cmobile+access%2csend+large+files%2crecover+files%2cfile+versioning%2cundelete%2cwindows%2cpc%2cmac%2cos+x%2clinux%2ciphone HTTP/2.0
host: otnolatrnup.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: INF_DFL8=false
cookie: IUID=49c0a8c0-58db-4c6a-b3b3-a2cc53674cff
cookie: ISSH=78E65B
cookie: VMI=
cookie: IKSR={}
cookie: IPMPLU=#1/1/0001 12:00:00 AM
cookie: CHN=#[]
cookie: MSSH=#{}
cookie: MSRH=#{}
cookie: ILP={"Profile":{"Audiences":{"Audience":[],"ThirdPartyAudience":[]}},"CreatedDate":"2025-01-24T14:51:23.056837Z"}
cookie: ILPLU=#1/24/2025 2:51:23 PM
cookie: ILEALC=#1/24/2025 2:51:23 PM
cookie: ILMPF=#True
cookie: IPMUID=#
cookie: BSWUID=#
cookie: IBL=#[]
cookie: IOPT=#[]
cookie: ISH=#{"101":[{"SId":"78E65B","D":"25/1/24T6:51:23"}]}
cookie: ISH_Q=#[101]
cookie: IPLH_Q=#[]
cookie: IPLH=#{}
cookie: IPLSH=#{}
cookie: IPLSH_Q=#[]
cookie: IZH=#{}
cookie: IZH_Q=#[]
cookie: IMCH=#{}
cookie: IMCH_Q=#[]
cookie: IMH=#{}
cookie: IMH_Q=#[]
cookie: ISPH=#{}
cookie: ISPH_Q=#[]
cookie: ICH=#{}
cookie: ICH_Q=#[]

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:26 GMT
content-type: text/html; charset=utf-8
content-length: 387
cache-control: private, no-transform
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
access-control-allow-origin: *
set-cookie: IKSR={}; path=/; SameSite=None; secure
set-cookie: INF_DFL8=false; path=/; SameSite=None; secure
set-cookie: IUID=49c0a8c0-58db-4c6a-b3b3-a2cc53674cff; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure
set-cookie: ISSH=78E65B; path=/; SameSite=None; secure
set-cookie: VMI=00000000-0000-0000-0000-000000000000; path=/; SameSite=None; secure
set-cookie: IPLH=#{"121866":[{"SId":"78E65B","D":"25/1/24T6:51:26"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPLH_Q=#[121866]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: CHN=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: MSSH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: MSRH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILP={"Profile":{"Audiences":{"Audience":[],"ThirdPartyAudience":[]}},"CreatedDate":"2025-01-24T14:51:23.056837Z"}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure
set-cookie: ILPLU=#1/24/2025 2:51:23 PM; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILEALC=#1/24/2025 2:51:23 PM; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ILMPF=#True; expires=Fri, 24-Jan-2025 18:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPMPLU=#1/1/0001 12:00:00 AM; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPMUID=#; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: BSWUID=#; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IKSR={}; path=/; SameSite=None; secure
set-cookie: IBL=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure
set-cookie: IOPT=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPLSH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IPLSH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IZH=#{"100":[{"SId":"78E65B","D":"25/1/24T6:51:26"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IZH_Q=#[100]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMCH=#{}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMCH_Q=#[]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMH=#{"136286":[{"SId":"78E65B","D":"25/1/24T6:51:26"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: IMH_Q=#[136286]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISH=#{"101":[{"SId":"78E65B","D":"25/1/24T6:51:23"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISH_Q=#[101]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISPH=#{"101":[{"SId":"78E65B","D":"25/1/24T6:51:26"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ISPH_Q=#[101]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ICH=#{"57625":[{"SId":"78E65B","D":"25/1/24T6:51:26"}]}; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
set-cookie: ICH_Q=#[57625]; expires=Wed, 24-Jan-2035 14:51:26 GMT; path=/; SameSite=None; secure; HttpOnly
p3p: CP="CAO PSA OUR IND"
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070d7740f89f652-LHR
alt-svc: h3=":443"; ma=86400
GET

http://crt.rootg2.amazontrust.com/rootg2.cer

msedge.exe

Remote address:

18.239.83.86:80

Request

GET /rootg2.cer HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: crt.rootg2.amazontrust.com

Response

HTTP/1.1 200 OK

Content-Type: binary/octet-stream
Content-Length: 1145
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2025 12:44:21 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: s.Oivb9cjlVilEWdgthaLqg0KUiAxaXA
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 24 Jan 2025 13:30:18 GMT
ETag: "c6150925cfea5941ddc7ff2a0a506692"
X-Cache: Hit from cloudfront
Via: 1.1 ef04b5bd9d63162000acde84eaab4f9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS58-P5
X-Amz-Cf-Id: oIvNJ-3dSvan131Zsc3y_1HYqflt2Mpd0rF2bkDL5khAxMjSEbryUw==
Age: 4865
DNS

otnolatrnup.com

msedge.exe

Remote address:

8.8.8.8:53

Request

otnolatrnup.com

IN A

Response

otnolatrnup.com

IN A

104.19.208.227

otnolatrnup.com

IN A

104.18.159.164
DNS

186.199.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

186.199.67.172.in-addr.arpa

IN PTR

Response
DNS

73.80.16.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

73.80.16.104.in-addr.arpa

IN PTR

Response
DNS

40.18.239.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

40.18.239.18.in-addr.arpa

IN PTR

Response

40.18.239.18.in-addr.arpa

IN PTR

server-18-239-18-40ams58r cloudfrontnet
DNS

227.208.19.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.208.19.104.in-addr.arpa

IN PTR

Response
DNS

86.83.239.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

86.83.239.18.in-addr.arpa

IN PTR

Response

86.83.239.18.in-addr.arpa

IN PTR

server-18-239-83-86ams58r cloudfrontnet
DNS

15.39.65.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

15.39.65.18.in-addr.arpa

IN PTR

Response

15.39.65.18.in-addr.arpa

IN PTR

server-18-65-39-15ams1r cloudfrontnet
DNS

api.amplitude.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.amplitude.com

IN A

Response

api.amplitude.com

IN A

44.241.250.109

api.amplitude.com

IN A

34.216.251.215

api.amplitude.com

IN A

52.26.141.115

api.amplitude.com

IN A

52.38.179.198

api.amplitude.com

IN A

35.83.218.70

api.amplitude.com

IN A

54.148.98.178

api.amplitude.com

IN A

35.86.54.15

api.amplitude.com

IN A

35.81.49.177
DNS

bcp.crwdcntrl.net

msedge.exe

Remote address:

8.8.8.8:53

Request

bcp.crwdcntrl.net

IN A

Response

bcp.crwdcntrl.net

IN A

54.154.145.233

bcp.crwdcntrl.net

IN A

52.30.134.176

bcp.crwdcntrl.net

IN A

54.229.84.60

bcp.crwdcntrl.net

IN A

63.34.234.255

bcp.crwdcntrl.net

IN A

54.155.192.242

bcp.crwdcntrl.net

IN A

52.210.86.129

bcp.crwdcntrl.net

IN A

52.209.69.89

bcp.crwdcntrl.net

IN A

108.128.47.81
DNS

www.mediafiredls.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.mediafiredls.com

IN A

Response

www.mediafiredls.com

IN A

104.26.2.173

www.mediafiredls.com

IN A

172.67.73.78

www.mediafiredls.com

IN A

104.26.3.173
DNS

tags.crwdcntrl.net

msedge.exe

Remote address:

8.8.8.8:53

Request

tags.crwdcntrl.net

IN A

Response

tags.crwdcntrl.net

IN A

18.239.18.12

tags.crwdcntrl.net

IN A

18.239.18.33

tags.crwdcntrl.net

IN A

18.239.18.118

tags.crwdcntrl.net

IN A

18.239.18.78
DNS

ad.crwdcntrl.net

msedge.exe

Remote address:

8.8.8.8:53

Request

ad.crwdcntrl.net

IN A

Response

ad.crwdcntrl.net

IN A

54.229.84.60

ad.crwdcntrl.net

IN A

54.154.145.233

ad.crwdcntrl.net

IN A

52.210.86.129

ad.crwdcntrl.net

IN A

52.30.134.176

ad.crwdcntrl.net

IN A

52.209.69.89

ad.crwdcntrl.net

IN A

54.155.192.242

ad.crwdcntrl.net

IN A

63.34.234.255

ad.crwdcntrl.net

IN A

108.128.47.81
POST

https://api.amplitude.com/

msedge.exe

Remote address:

44.241.250.109:443

Request

POST / HTTP/2.0
host: api.amplitude.com
content-length: 1086
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/x-www-form-urlencoded; charset=UTF-8
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
strict-transport-security: max-age=15768000
GET

https://ad.crwdcntrl.net/5/c=3722/pe=y/callback=g367CB268B1094004A3689751E7AC568F.Lotame.CallExtractionAPICallback?11496426

msedge.exe

Remote address:

54.229.84.60:443

Request

GET /5/c=3722/pe=y/callback=g367CB268B1094004A3689751E7AC568F.Lotame.CallExtractionAPICallback?11496426 HTTP/2.0
host: ad.crwdcntrl.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: application/javascript;charset=utf-8
content-length: 146
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.17.189
access-control-allow-origin: *
GET

https://bcp.crwdcntrl.net/map/c=3722/tp=ADSP/tpid=49c0a8c058db4c6ab3b3a2cc53674cff

msedge.exe

Remote address:

54.154.145.233:443

Request

GET /map/c=3722/tp=ADSP/tpid=49c0a8c058db4c6ab3b3a2cc53674cff HTTP/2.0
host: bcp.crwdcntrl.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: image/gif
content-length: 49
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.9.194
access-control-allow-origin: *
GET

https://www.mediafiredls.com/onclick/0

msedge.exe

Remote address:

104.26.2.173:443

Request

GET /onclick/0 HTTP/2.0
host: www.mediafiredls.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

date: Fri, 24 Jan 2025 14:51:23 GMT
content-type: text/plain
content-length: 5
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oyuvRjgORXa5cdPIWe2qBbxfaWZKGTe54yr4gGE89nYONbIdHNSGAY%2Fp4GUXE3YPrR7A3lyMRkzo1oCnPUmva3MI6%2Ff7OvydgHB2GPJpN%2FuMP7kgDYk69n32N95lTs%2B3em6aATCT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d75fba79f65f-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=46902&min_rtt=46827&rtt_var=17614&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2846&recv_bytes=1061&delivery_rate=57958&cwnd=251&unsent_bytes=0&cid=ed42494ecffab3a9&ts=69&x=0"
GET

https://www.mediafiredls.com/clicked/1

msedge.exe

Remote address:

104.26.2.173:443

Request

GET /clicked/1 HTTP/2.0
host: www.mediafiredls.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

date: Fri, 24 Jan 2025 14:51:26 GMT
content-type: text/plain
content-length: 5
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FvdvcAwfsSp1yz3w27%2Fe6t01D8mZGa56NkRcMKMl8OIg1zBSi23n9RozvvncCALPYM1IopilJWc%2Bmgvt%2BATmJ%2FzT%2B2X99udvwpY6SbGmDqLG6iBwP2nCIfijI152JQVQKjvdiauR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d7707ce6f65f-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=58686&min_rtt=46827&rtt_var=30357&sent=9&recv=11&lost=0&retrans=0&sent_bytes=3467&recv_bytes=1152&delivery_rate=75821&cwnd=255&unsent_bytes=0&cid=ed42494ecffab3a9&ts=2754&x=0"
GET

https://www.mediafiredls.com/completed/1

msedge.exe

Remote address:

104.26.2.173:443

Request

GET /completed/1 HTTP/2.0
host: www.mediafiredls.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

date: Fri, 24 Jan 2025 14:51:26 GMT
content-type: text/plain
content-length: 5
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BKKPJAaZlGN4QbAS6v%2FCa%2BQEhudkxWn2qkY12%2FcUM4avkQ7678QJVM6zYT%2F4nDZ9C4KX6MVuJMcfxrVvP3vR6M7rQTko%2FjSHpkQU3hzbvNmQ8cmVXw9qAQzLbSUuhDU1OBAFzrSj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d77228f4f65f-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=57222&min_rtt=46827&rtt_var=25696&sent=11&recv=13&lost=0&retrans=0&sent_bytes=3980&recv_bytes=1214&delivery_rate=75821&cwnd=257&unsent_bytes=0&cid=ed42494ecffab3a9&ts=3025&x=0"
GET

https://tags.crwdcntrl.net/c/4545/cc_af.js

msedge.exe

Remote address:

18.239.18.12:443

Request

GET /c/4545/cc_af.js HTTP/2.0
host: tags.crwdcntrl.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

content-type: application/xml
server: AmazonS3
date: Fri, 24 Jan 2025 14:51:23 GMT
x-cache: Error from cloudfront
via: 1.1 41fcd719412f2befdcf66654c7db4572.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: TFgkpZ1YdGCW2S6SQn6h_g22zH_N65RCjMWxFj2uPPfqVtCmC1Bing==
cache-control: public, max-age=86400
GET

https://tags.crwdcntrl.net/lt/c/16589/sync.min.js

msedge.exe

Remote address:

18.239.18.12:443

Request

GET /lt/c/16589/sync.min.js HTTP/2.0
host: tags.crwdcntrl.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript
last-modified: Tue, 20 Aug 2024 18:47:43 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Fri, 24 Jan 2025 06:49:30 GMT
cache-control: public, max-age=86400
etag: W/"4a385df4045c9db00ad295e7c0ca65d1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41fcd719412f2befdcf66654c7db4572.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS58-P6
x-amz-cf-id: Fyc-HvPlkBTMZFYPjQoQ2F8iac5R-fH1ZkS5uaBm35QrpyWrPk8k7A==
age: 29026
DNS

region1.analytics.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

region1.analytics.google.com

IN A

Response

region1.analytics.google.com

IN A

216.239.32.36

region1.analytics.google.com

IN A

216.239.34.36
DNS

stats.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

stats.g.doubleclick.net

IN A

Response

stats.g.doubleclick.net

IN A

64.233.184.155

stats.g.doubleclick.net

IN A

64.233.184.156

stats.g.doubleclick.net

IN A

64.233.184.154

stats.g.doubleclick.net

IN A

64.233.184.157
DNS

www.google.co.uk

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.co.uk

IN A

Response

www.google.co.uk

IN A

216.58.201.99
GET

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-K68XP6D85D&cid=78540993.1737730283&gtm=45je51n0v887485693z86304663za200zb6304663&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102015666~102067555~102067808~102081485~102123608&tag_exp=102015666~102067555~102067808~102081485~102123608&z=815061612

msedge.exe

Remote address:

216.58.201.99:443

Request

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-K68XP6D85D&cid=78540993.1737730283&gtm=45je51n0v887485693z86304663za200zb6304663&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102015666~102067555~102067808~102081485~102123608&tag_exp=102015666~102067555~102067808~102081485~102123608&z=815061612 HTTP/2.0
host: www.google.co.uk
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608&tag_exp=102067555~102067808~102081485~102123608&z=1223668701

msedge.exe

Remote address:

216.58.201.99:443

Request

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608&tag_exp=102067555~102067808~102081485~102123608&z=1223668701 HTTP/2.0
host: www.google.co.uk
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-K68XP6D85D&cid=78540993.1737730283&gtm=45je51n0v887485693z86304663za200zb6304663&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102015666~102067555~102067808~102081485~102123608

msedge.exe

Remote address:

64.233.184.155:443

Request

POST /g/collect?v=2&tid=G-K68XP6D85D&cid=78540993.1737730283&gtm=45je51n0v887485693z86304663za200zb6304663&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102015666~102067555~102067808~102081485~102123608 HTTP/2.0
host: stats.g.doubleclick.net
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608

msedge.exe

Remote address:

64.233.184.155:443

Request

POST /g/collect?v=2&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608 HTTP/2.0
host: stats.g.doubleclick.net
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://region1.analytics.google.com/g/collect?v=2&tid=G-K68XP6D85D&gtm=45je51n0v887485693z86304663za200zb6304663&_p=1737730281339&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tcfd=1000g&tag_exp=102015666~102067555~102067808~102081485~102123608&cid=78540993.1737730283&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730282&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&dt=DiscordNitroGenerator&en=page_view&_fv=1&_nsi=1&_ss=1&up.page_url=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&tfd=2683

msedge.exe

Remote address:

216.239.32.36:443

Request

POST /g/collect?v=2&tid=G-K68XP6D85D&gtm=45je51n0v887485693z86304663za200zb6304663&_p=1737730281339&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tcfd=1000g&tag_exp=102015666~102067555~102067808~102081485~102123608&cid=78540993.1737730283&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730282&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&dt=DiscordNitroGenerator&en=page_view&_fv=1&_nsi=1&_ss=1&up.page_url=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&tfd=2683 HTTP/2.0
host: region1.analytics.google.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

a.nel.cloudflare.com

msedge.exe

Remote address:

8.8.8.8:53

Request

a.nel.cloudflare.com

IN A

Response

a.nel.cloudflare.com

IN A

35.190.80.1
OPTIONS

https://a.nel.cloudflare.com/report/v4?s=oyuvRjgORXa5cdPIWe2qBbxfaWZKGTe54yr4gGE89nYONbIdHNSGAY%2Fp4GUXE3YPrR7A3lyMRkzo1oCnPUmva3MI6%2Ff7OvydgHB2GPJpN%2FuMP7kgDYk69n32N95lTs%2B3em6aATCT

msedge.exe

Remote address:

35.190.80.1:443

Request

OPTIONS /report/v4?s=oyuvRjgORXa5cdPIWe2qBbxfaWZKGTe54yr4gGE89nYONbIdHNSGAY%2Fp4GUXE3YPrR7A3lyMRkzo1oCnPUmva3MI6%2Ff7OvydgHB2GPJpN%2FuMP7kgDYk69n32N95lTs%2B3em6aATCT HTTP/2.0
host: a.nel.cloudflare.com
origin: https://www.mediafiredls.com
access-control-request-method: POST
access-control-request-headers: content-type
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

173.2.26.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

173.2.26.104.in-addr.arpa

IN PTR

Response
DNS

12.18.239.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

12.18.239.18.in-addr.arpa

IN PTR

Response

12.18.239.18.in-addr.arpa

IN PTR

server-18-239-18-12ams58r cloudfrontnet
DNS

60.84.229.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

60.84.229.54.in-addr.arpa

IN PTR

Response

60.84.229.54.in-addr.arpa

IN PTR

ec2-54-229-84-60 eu-west-1compute amazonawscom
DNS

233.145.154.54.in-addr.arpa

Remote address:

8.8.8.8:53

Request

233.145.154.54.in-addr.arpa

IN PTR

Response

233.145.154.54.in-addr.arpa

IN PTR

ec2-54-154-145-233 eu-west-1compute amazonawscom
DNS

99.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

99.201.58.216.in-addr.arpa

IN PTR

Response

99.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f991e100net

99.201.58.216.in-addr.arpa

IN PTR

lhr48s48-in-f3�H

99.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f3�H
DNS

14.178.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.178.250.142.in-addr.arpa

IN PTR

Response

14.178.250.142.in-addr.arpa

IN PTR

lhr48s27-in-f141e100net
DNS

155.184.233.64.in-addr.arpa

Remote address:

8.8.8.8:53

Request

155.184.233.64.in-addr.arpa

IN PTR

Response

155.184.233.64.in-addr.arpa

IN PTR

wa-in-f1551e100net
DNS

36.32.239.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

36.32.239.216.in-addr.arpa

IN PTR

Response
DNS

109.250.241.44.in-addr.arpa

Remote address:

8.8.8.8:53

Request

109.250.241.44.in-addr.arpa

IN PTR

Response

109.250.241.44.in-addr.arpa

IN PTR

ec2-44-241-250-109 us-west-2compute amazonawscom
DNS

1.80.190.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.80.190.35.in-addr.arpa

IN PTR

Response

1.80.190.35.in-addr.arpa

IN PTR

18019035bcgoogleusercontentcom
DNS

g.ezoic.net

msedge.exe

Remote address:

8.8.8.8:53

Request

g.ezoic.net

IN A

Response

g.ezoic.net

IN A

13.37.187.223
GET

https://g.ezoic.net/cmp/log.gif?dId=484470&dcId=106&version=10&buttonId=2&consentV2=CQLvHAAQLvHAAErAKKENBZFsAP_gAEPgACiQKwtX_G__bWlr8X73aftkeY1P99h77sQxBhbJE-4FzLvW_JwXx2ExNA36tqIKmRIAu3TBIQNlHJDURVCgaogVryDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991dx2B-t7dr83dzyy4hHn3a5_2S0WJCdA5-tDfv9bROb-9IOd_x8v4v4_F7pE2_eT1l_tWvp7D9-cts_9XW99_fbff9Pn_-uB_-_X_vf_H36CsABJhoVEAZZEhIQaBhBAgBUFYQEUCAIAAEgaICAEwYFOwMAF1hIgBACgAGCAEAAIMgAQAACQAIRABAAUCAACAQKAAMACAYCABgYAAwAWAgEAAIDoGKYEEAgWACRmRUKYEIQCQQEtlQgkAQIK4QhFngEQCImCgAABIAKQABAWCwOJJASsSCALiCaAAAgAQCCAAoRSdmAIIAzZaq8GTaMrTAsHzBc9pgGSBEEZOSbAAAA.YAAAAAAAAAAA

msedge.exe

Remote address:

13.37.187.223:443

Request

GET /cmp/log.gif?dId=484470&dcId=106&version=10&buttonId=2&consentV2=CQLvHAAQLvHAAErAKKENBZFsAP_gAEPgACiQKwtX_G__bWlr8X73aftkeY1P99h77sQxBhbJE-4FzLvW_JwXx2ExNA36tqIKmRIAu3TBIQNlHJDURVCgaogVryDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991dx2B-t7dr83dzyy4hHn3a5_2S0WJCdA5-tDfv9bROb-9IOd_x8v4v4_F7pE2_eT1l_tWvp7D9-cts_9XW99_fbff9Pn_-uB_-_X_vf_H36CsABJhoVEAZZEhIQaBhBAgBUFYQEUCAIAAEgaICAEwYFOwMAF1hIgBACgAGCAEAAIMgAQAACQAIRABAAUCAACAQKAAMACAYCABgYAAwAWAgEAAIDoGKYEEAgWACRmRUKYEIQCQQEtlQgkAQIK4QhFngEQCImCgAABIAKQABAWCwOJJASsSCALiCaAAAgAQCCAAoRSdmAIIAzZaq8GTaMrTAsHzBc9pgGSBEEZOSbAAAA.YAAAAAAAAAAA HTTP/2.0
host: g.ezoic.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.mediafire.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.mediafire.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, PUT, OPTIONS
access-control-allow-origin: https://www.mediafire.com
access-control-max-age: 1728000
cache-control: private, max-age=0, must-revalidate, no-cache, no-store
content-type: image/gif
date: Fri, 24 Jan 2025 14:51:25 GMT
expires: Thu, 23 Jan 2025 14:51:25 GMT
set-cookie: ezoictest=stable; Path=/; Domain=ezoic.net; Expires=Fri, 24 Jan 2025 15:21:25 GMT; HttpOnly
vary: Accept-Encoding,Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-middleton-display: cmp_sol
content-length: 43
DNS

download1589.mediafire.com

msedge.exe

Remote address:

8.8.8.8:53

Request

download1589.mediafire.com

IN A

Response

download1589.mediafire.com

IN A

199.91.152.89
DNS

223.187.37.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

223.187.37.13.in-addr.arpa

IN PTR

Response

223.187.37.13.in-addr.arpa

IN PTR

ec2-13-37-187-223 eu-west-3compute amazonawscom
GET

https://download1589.mediafire.com/ogncrodeio0gOAzk5-kA9BdX9HAOdFiZKdBKZKTJ1dnqxasQ3Po0ewp4x82dEQK6xbSs8EK9GtOyUMlkhVClk1izvULYOVxUYhwalTnGiDm_dKPKEqsd0jijqELOqLVDbtdY295HlqJObgZcvg8QrOyK55wLokZKDlbSYTEsg5Zl/3tatft4jogooizv/DiscordNitroGenerator.zip

msedge.exe

Remote address:

199.91.152.89:443

Request

GET /ogncrodeio0gOAzk5-kA9BdX9HAOdFiZKdBKZKTJ1dnqxasQ3Po0ewp4x82dEQK6xbSs8EK9GtOyUMlkhVClk1izvULYOVxUYhwalTnGiDm_dKPKEqsd0jijqELOqLVDbtdY295HlqJObgZcvg8QrOyK55wLokZKDlbSYTEsg5Zl/3tatft4jogooizv/DiscordNitroGenerator.zip HTTP/1.1
Host: download1589.mediafire.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Referer: https://www.mediafire.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: ukey=auzms01aoc6d51w68rviii2ob8iayts0; conv_tracking_data-2=%7B%22mf_source%22%3A%22regular_download-73%22%2C%22mf_content%22%3A%22Free%22%2C%22mf_medium%22%3A%22windows%5C%2FEdge%22%2C%22mf_campaign%22%3A%223tatft4jogooizv%22%2C%22mf_term%22%3A%227c41ca52c575b6d8160c4ed3a3181b2f%22%7D; __cf_bm=BwLTgpZHmbvHVCQ0ofSJitANY76iv.QmvxzE2YDWJdc-1737730281-1.0.1.1-aIFmrdWsD_lrhwTCSrQvnZNVAZ.VpTjJwZ9bH3DN531kAQqUtYWm9o2Y4k587hGBFvKNR5KaTCDX7MWQIdDW5w; amp_28916b=ttJnVVFK3a56GCeUApYYU7...1iiccnl76.1iiccnl79.0.1.1; cf_clearance=Bez0QROq7bAf6KF3YeNkw.JXnHMdQKMiWVS1.bD275c-1737730283-1.2.1.1-fWDkbBkUCG9j4bgN.RQoKtsoEq9Lg8NmJy1U5Jc6LtTL.ZuWKx0ynJq05n3oXyyG6GQ1f4YBoy4pSY5AMHwksUonwBRVlL7azkv4KGtouDtVqkiODygmkcMQRej9.bTaG4_G9D1SceJ0P53aDm_t2i1QqnkY9p.mwaHRt3_qty3GAbprtl9_4UO2_fVa6A1u9pGZwFp0tGqjho3vE08XGarfhgjn5OnIRAlSy9hzm6m93A30ol091mVEOPBHQrHaFnK2hljXFAZ1hUgJYakOYG8FlpjuiiNfxhPJ34m8Yro; _ga=GA1.2.78540993.1737730283; _gid=GA1.2.1163076309.1737730283; _gat_gtag_UA_829541_1=1; ez-consent-tcf=CQLvHAAQLvHAAErAKKENBZFsAP_gAEPgACiQKwtX_G__bWlr8X73aftkeY1P99h77sQxBhbJE-4FzLvW_JwXx2ExNA36tqIKmRIAu3TBIQNlHJDURVCgaogVryDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991dx2B-t7dr83dzyy4hHn3a5_2S0WJCdA5-tDfv9bROb-9IOd_x8v4v4_F7pE2_eT1l_tWvp7D9-cts_9XW99_fbff9Pn_-uB_-_X_vf_H36CsABJhoVEAZZEhIQaBhBAgBUFYQEUCAIAAEgaICAEwYFOwMAF1hIgBACgAGCAEAAIMgAQAACQAIRABAAUCAACAQKAAMACAYCABgYAAwAWAgEAAIDoGKYEEAgWACRmRUKYEIQCQQEtlQgkAQIK4QhFngEQCImCgAABIAKQABAWCwOJJASsSCALiCaAAAgAQCCAAoRSdmAIIAzZaq8GTaMrTAsHzBc9pgGSBEEZOSbAAAA.YAAAAAAAAAAA; _ga_K68XP6D85D=GS1.1.1737730282.1.0.1737730285.57.0.0

Response

HTTP/1.1 200 OK

server: bd-0.1.27
content-type: application/zip
accept-ranges: bytes
connection: close
cache-control: no-store
x-robots-tag: noindex, nofollow
content-disposition: attachment; filename="DiscordNitroGenerator.zip"
content-length: 3605527
date: Fri, 24 Jan 2025 14:51:26 GMT
DNS

sys.ctrackapp.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sys.ctrackapp.com

IN A

Response

sys.ctrackapp.com

IN CNAME

d16j30rbal6rbr.cloudfront.net

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.13

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.105

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.71

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.103
DNS

sys.ctrackapp.com

msedge.exe

Remote address:

8.8.8.8:53

Request

sys.ctrackapp.com

IN A

Response

sys.ctrackapp.com

IN CNAME

d16j30rbal6rbr.cloudfront.net

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.105

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.103

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.71

d16j30rbal6rbr.cloudfront.net

IN A

13.224.81.13
GET

https://sys.ctrackapp.com/0cba6f3d-0ea3-475c-9e2c-7e1b3d7198a0?var1=24&siteid=101&channel=File+Hosting+%26+Sharing&subchannel=File+Hosting+%26+Sharing&ipAddress=181.215.176.83&mediaId=136286&size=1024x768&cpv=0.01725&countryCode=GB&bid=17.25

msedge.exe

Remote address:

13.224.81.13:443

Request

GET /0cba6f3d-0ea3-475c-9e2c-7e1b3d7198a0?var1=24&siteid=101&channel=File+Hosting+%26+Sharing&subchannel=File+Hosting+%26+Sharing&ipAddress=181.215.176.83&mediaId=136286&size=1024x768&cpv=0.01725&countryCode=GB&bid=17.25 HTTP/2.0
host: sys.ctrackapp.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://otnolatrnup.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

content-length: 0
location: https://go.etoro.com/en/ai-stocks?cid=wnpgnov2j8i5cu87j48fkagi&src=24
date: Fri, 24 Jan 2025 14:51:27 GMT
server: nginx
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 0cba6f3d-0ea3-475c-9e2c-7e1b3d7198a0-v4=VDLFlguU0wSpm9LNKZj_i_FRlXAMHdyC2UKcbgM_bd4; Max-Age=86400; Expires=Sat, 25 Jan 2025 14:51:27 GMT; Domain=sys.ctrackapp.com; Path=/; Secure; HttpOnly;SameSite=None
set-cookie: cc-v4=162zXO1UWCzZJTNi2O9x1XIoZIw55mbeV2zSh5p%2BpE2ZsEoYC%2BiFy6Zebu0KY5RBy9v8oQdNZ00H%2BODNbvQ%2B9l%2FN9jt%2F5WPFO36fjfPyX3VCznk6sOPF0l9eTWgN6NGf1kFCyRgqRl19XL6OaySURg%3D%3D; Max-Age=31536000; Expires=Sat, 24 Jan 2026 14:51:27 GMT; Domain=sys.ctrackapp.com; Path=/; Secure; HttpOnly;SameSite=None
x-cache: Miss from cloudfront
via: 1.1 5fed13107ac953b44a27c9761e84fbc0.cloudfront.net (CloudFront)
x-amz-cf-pop: MAN50-C2
x-amz-cf-id: i1poQIpA56LjphzqL-NazAjh48kh6-qtAoiC1Un-sQt4KSecS9UGsQ==
DNS

89.152.91.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

89.152.91.199.in-addr.arpa

IN PTR

Response
DNS

89.152.91.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

89.152.91.199.in-addr.arpa

IN PTR

Response
DNS

go.etoro.com

msedge.exe

Remote address:

8.8.8.8:53

Request

go.etoro.com

IN A

Response

go.etoro.com

IN CNAME

go.etoro.com.edgekey.net

go.etoro.com.edgekey.net

IN CNAME

e1660.d.akamaiedge.net

e1660.d.akamaiedge.net

IN A

104.82.191.154
GET

https://go.etoro.com/en/ai-stocks?cid=wnpgnov2j8i5cu87j48fkagi&src=24

msedge.exe

Remote address:

104.82.191.154:443

Request

GET /en/ai-stocks?cid=wnpgnov2j8i5cu87j48fkagi&src=24 HTTP/2.0
host: go.etoro.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://otnolatrnup.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
request-context: appId=cid-v1:35936646-66d4-4f8d-a033-e97456c4c9a7
x-powered-by: Express
etag: W/"3d69f-H4WIKFhDUesZHDOfEodQdtZb0oI"
content-encoding: gzip
content-length: 37326
expires: Fri, 24 Jan 2025 14:51:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:51:27 GMT
vary: Accept-Encoding
DNS

13.81.224.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.81.224.13.in-addr.arpa

IN PTR

Response

13.81.224.13.in-addr.arpa

IN PTR

server-13-224-81-13man50r cloudfrontnet
DNS

154.191.82.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

154.191.82.104.in-addr.arpa

IN PTR

Response

154.191.82.104.in-addr.arpa

IN PTR

a104-82-191-154deploystaticakamaitechnologiescom
GET

https://www.bing.com/qbox?query=proc&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=657fba9b6cf84ac0a329abff8289f4d0&oit=1&cp=4&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=proc&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=657fba9b6cf84ac0a329abff8289f4d0&oit=1&cp=4&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 436
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f2ffd842ddb4e82c784e17bbd1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-4y7OarKE/V6rwXPGIa/BpZjn5/fUnt88VlwkwsrxhYs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:30 GMT
set-cookie: MUID=3749B70AEE1B68E12E89A274EFB0694D; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3749B70AEE1B68E12E89A274EFB0694D; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1812AD6BB5476298259FB815B4EC63DA; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=199806AEDC7341F58C30D9847097A2C5&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1812AD6BB5476298259FB815B4EC63DA; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730290.9a4d01
GET

https://www.bing.com/qbox?query=procc&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=5e0f5ee82d6b4a9983f8f196756639cb&oit=1&cp=5&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procc&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=5e0f5ee82d6b4a9983f8f196756639cb&oit=1&cp=5&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 250
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f261ca45d4a61c97197e32dbf4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ppWs9cxI6g7TbFaVuRvR/+wHt8bjjbn0kCP5SerPl8U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:30 GMT
set-cookie: MUID=0AB7E0107D0264522D6EF56E7CA96574; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0AB7E0107D0264522D6EF56E7CA96574; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0DE194329E3766431BD9814C9F9C6783; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=6E1FE229467F43E296CD12844DD0A739&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0DE194329E3766431BD9814C9F9C6783; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730290.9a4d44
GET

https://www.bing.com/qbox?query=procce&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=92b6c4d60a7041e9a344a1a990f8796a&oit=1&cp=6&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procce&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=92b6c4d60a7041e9a344a1a990f8796a&oit=1&cp=6&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 263
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f2101643bf983ca05577651b65
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LeLhEzEsLtDqGotVhcYRGxC0qIMZ2l4QiuDuUrpMSXs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:30 GMT
set-cookie: MUID=2921B86F7E7768460897AD117FDC696D; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2921B86F7E7768460897AD117FDC696D; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=24C34CD27BB26381237559AC7A196292; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=316D107881BF4348AAD37AC5D4303BEB&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=24C34CD27BB26381237559AC7A196292; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730290.9a4d5b
GET

https://www.bing.com/qbox?query=procces&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=98e165ad536749b6a0087f602c6904b2&oit=1&cp=7&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=98e165ad536749b6a0087f602c6904b2&oit=1&cp=7&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 207
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f21d99487a8174baa8824125aa
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-m0YFSLbcrEPyt4dXmdeAq3wNlkDEuyC0vqERimxZoZw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:30 GMT
set-cookie: MUID=17410AA16F3064CD0CA01FDF6E656574; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=17410AA16F3064CD0CA01FDF6E656574; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3FD0041E7FA26BFF2F1911607EF76A80; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=5B15E32E74CE4E32AE7F3F7185BDE016&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:30 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3FD0041E7FA26BFF2F1911607EF76A80; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730290.9a4dd1
GET

https://www.bing.com/qbox?query=procces+&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=f36a71d2350646868a86e8abb3558600&oit=1&cp=8&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=f36a71d2350646868a86e8abb3558600&oit=1&cp=8&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 206
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f3b78444efb9269f5df6b94354
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-othsldZ0p5/pcweFQlpOmi+Uw+aCifTVs1xs3CpIxak='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:31 GMT
set-cookie: MUID=1074894E164A639404609C3017E1628E; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1074894E164A639404609C3017E1628E; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=130AC86515516B4E0391DD1B14FA6A1A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8273C9BDC88F4E118FEDD5AABE2E487D&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=130AC86515516B4E0391DD1B14FA6A1A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730291.9a4deb
GET

https://www.bing.com/qbox?query=procces+h&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=984d0122252640b3a4adf67e592581df&oit=4&cp=9&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+h&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=984d0122252640b3a4adf67e592581df&oit=4&cp=9&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 439
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f3bffc4605be1e97c1c3c699ca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XdkQzoyhYlrldlIPv5VfLuyxy9TCDG1G1PA2+KqLlGk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:31 GMT
set-cookie: MUID=28242B2383886A4532C63E5D82DD6B7F; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=28242B2383886A4532C63E5D82DD6B7F; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3DC48C579FE563FD3CF099299EB0621A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=48D575464E184F4BB7C2BC9325423CBF&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3DC48C579FE563FD3CF099299EB0621A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730291.9a4e2f
GET

https://www.bing.com/qbox?query=procces+ha&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=21167a6d9ff3486994b5f8ce5bf55996&oit=4&cp=10&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+ha&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=21167a6d9ff3486994b5f8ce5bf55996&oit=4&cp=10&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 440
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f3c1944d60a4d1bbf0387e86ef
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-q6Xs16JWolZhhGQ2QcF6Vn5MJ3Ym/Uv2c7QBXnevv98='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:31 GMT
set-cookie: MUID=3BEF3CDDAF9D67C20EC229A3AE366698; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3BEF3CDDAF9D67C20EC229A3AE366698; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0D17B1B979866AAE31A4A4C7782D6B7A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=DAC6CD55FAA8419E99146545A6C4A4AF&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0D17B1B979866AAE31A4A4C7782D6B7A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730291.9a4e3f
GET

https://www.bing.com/qbox?query=procces+hac&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=395deade768c4fe58fa53825b0ba41c2&oit=4&cp=11&pgcl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+hac&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=395deade768c4fe58fa53825b0ba41c2&oit=4&cp=11&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 440
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f388584e888e8ad9ef9719c771
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SKOyGctvURSIcNGUNwuifaR5WSfKk715ikNFDwF/ZmI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:31 GMT
set-cookie: MUID=2E4EFA6F9E7864BF1D98EF119F2D65AE; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2E4EFA6F9E7864BF1D98EF119F2D65AE; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2E1723FA6A236892348E36846B766914; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=263C5F7F84BA4F4589363314AEFEF353&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:31 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2E1723FA6A236892348E36846B766914; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730291.9a4e5c
GET

https://www.bing.com/qbox?query=k&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=466c57bcc07848e298947eda7556dde7&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=k&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=466c57bcc07848e298947eda7556dde7&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 450
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f497994f0ba28ce4881d14ecf8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dlh/+HC3HeG+OHNLd3L5Nm2CFs9NuYIdVKtbFK+7FD4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:32 GMT
set-cookie: MUID=0FAE3AA78AFA6AE1236D2FD98BAF6BA7; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0FAE3AA78AFA6AE1236D2FD98BAF6BA7; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3518278230056DBE215032FC31506C22; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=325C696CE9A047A883DF6AF0DA029E8F&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3518278230056DBE215032FC31506C22; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730292.9a4fb6
GET

https://www.bing.com/qbox?query=ke&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1a11e2c75754451fab88baa72d68f175&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=ke&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1a11e2c75754451fab88baa72d68f175&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 473
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f456cd4f26b127a37f72b4c62c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jMZw+sceOHDESpDxNw3YGQb14zXpXkYdDMAWlD/w/M8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:32 GMT
set-cookie: MUID=13514818C93A60B727335D66C86F61E9; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=13514818C93A60B727335D66C86F61E9; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1E84B1FFA5D16E1E04A6A481A4846F64; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8DB4E55D84674FF190F37BA5AF8DB4B8&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:32 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1E84B1FFA5D16E1E04A6A481A4846F64; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730292.9a4fc6
GET

https://www.bing.com/qbox?query=ker&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=a287df3660e84c06938d8a590509890c&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=ker&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=a287df3660e84c06938d8a590509890c&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 451
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f5f33f492f946715754c437293
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dB3oSTXhXxzq6UfMKGdx242o1Xou7cLSp+YbGiei9TM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:33 GMT
set-cookie: MUID=3B408A926F7F62212EFC9FEC6E2A63E2; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3B408A926F7F62212EFC9FEC6E2A63E2; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=33CC7E0DA73367210FA46B73A666665B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=A5C45604DB064BB289470475CA0405B8&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=33CC7E0DA73367210FA46B73A666665B; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730292.9a4fda
GET

https://www.bing.com/qbox?query=p&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1abf437c984845e187c0fc765730c1f8&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=p&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1abf437c984845e187c0fc765730c1f8&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 436
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f57aef4efdb233bd814458cc9e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-HQTs7r/+UzLqF+e5jWoLxVwzmvc3EZhQFjT34GZPBAM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:33 GMT
set-cookie: MUID=23714BCDF4DF634524BD5EB3F574627F; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=23714BCDF4DF634524BD5EB3F574627F; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=07F93F03C00C6C083C492A7DC1A76DA5; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=4F83AAFF4694484591B451654D3B0FDF&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=07F93F03C00C6C083C492A7DC1A76DA5; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730293.9a5001
GET

https://www.bing.com/qbox?query=pr&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=fc4ced59b76741dabeff77628664e8ad&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=pr&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=fc4ced59b76741dabeff77628664e8ad&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 459
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f5abd042fea62a640c6e59f164
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AiX2yDWiEyaVeCQxguuII0l2POiN83NXExRRz8Y76Aw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:33 GMT
set-cookie: MUID=34A1D330201B6E6B3CFCC64E214E6F50; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=34A1D330201B6E6B3CFCC64E214E6F50; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=277339EBBAB2628534F12C95BBE76315; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=114F64A086C6480C9EBBB90A734AA1AF&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=277339EBBAB2628534F12C95BBE76315; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730293.9a5021
GET

https://www.bing.com/qbox?query=pro&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=302fa232f3094691b7a2bd8728f7b4bd&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=pro&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=302fa232f3094691b7a2bd8728f7b4bd&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 435
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f57c8a4728833348e932dc2fa9
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rOJSNSOuPc9as0HV6VkZGtoCCdX0W2D9eDsmkQIxDP0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:33 GMT
set-cookie: MUID=1EF97C4CB36B6ABE21DA6932B23E6BCF; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1EF97C4CB36B6ABE21DA6932B23E6BCF; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=37D04A96F4AC66B13C7D5FE8F5F967F1; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=A2ACBECE2DD747D2A75385D0A0847BC3&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=37D04A96F4AC66B13C7D5FE8F5F967F1; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730293.9a5090
GET

https://www.bing.com/qbox?query=proc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=b9a96685fd6b48cf9274d9c919e41373&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=proc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=b9a96685fd6b48cf9274d9c919e41373&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 459
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f567f343068d8c8bb413055aef
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-c/m8UwoMoauUaDwj7HibCfU2s0IMBCDBV1t/FVzA6HY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:33 GMT
set-cookie: MUID=30113ABB871766530AA02FC586426731; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=30113ABB871766530AA02FC586426731; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=23C01CD764906F963C4509A965C56ECB; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=C450027CD4E4472386FEF56DDABF70D1&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:33 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=23C01CD764906F963C4509A965C56ECB; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730293.9a50fd
GET

https://www.bing.com/qbox?query=proce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=313e90b3a14448cd99ccc7ecb4375fa2&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=proce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=313e90b3a14448cd99ccc7ecb4375fa2&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 436
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f60bcc4baca69f14b75c878324
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-TkCuia4h/H94UzF1w9PWolJQBBGTlQdzgtT+Gz4MvVs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:34 GMT
set-cookie: MUID=1E2FF80D4B8E635D3526ED734A256202; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1E2FF80D4B8E635D3526ED734A256202; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2E53FA81C6866AD900AAEFFFC72D6B2B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=456ED76DF13F4EE68E6C7B08A1AD8DC4&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2E53FA81C6866AD900AAEFFFC72D6B2B; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730294.9a5138
GET

https://www.bing.com/qbox?query=proces&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=ff18707dcdfd4923b7ebc2e1fdbb2bc3&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=proces&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=ff18707dcdfd4923b7ebc2e1fdbb2bc3&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 250
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f6cc324b518469c4f169aaf748
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rTytF3Vg5Hm110pG6002yR3QRt9IGdZ/DWcyxp61aUQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:34 GMT
set-cookie: MUID=256B788D0A77656D056E6DF30BDC6420; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=256B788D0A77656D056E6DF30BDC6420; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=39F76A91BF7E6C1A36917FEFBED56DB9; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=A5D410F1033D41B5B1C5DC6923D1EBF3&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=39F76A91BF7E6C1A36917FEFBED56DB9; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730294.9a516e
GET

https://www.bing.com/qbox?query=proce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1429e97424ac416cb8724c347dc84329&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=proce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1429e97424ac416cb8724c347dc84329&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 263
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f677d349f98dc26ef4bfc44705
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RF4OfMyJ5dDlv0SeGg7ByGMoND8Z/wgsfNkBpMpFKGw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:34 GMT
set-cookie: MUID=2029D3A017AA6A7C0C40C6DE16016B44; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2029D3A017AA6A7C0C40C6DE16016B44; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0A691DE58616697906B3089B87BD6860; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=AD56467AC24F4A1084A50547A1B9E513&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0A691DE58616697906B3089B87BD6860; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730294.9a517b
GET

https://www.bing.com/qbox?query=proc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=520e2ed69a99433a829613139797dc57&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=proc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=520e2ed69a99433a829613139797dc57&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 259
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f6c8394db2ba77922f87ab68cc
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pcofZ8eoj4PU4PKPNeJdU21qzBDkcUMZ5AndKiAr/3k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:34 GMT
set-cookie: MUID=117DEE5773B9612319C9FB2972EC600A; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=117DEE5773B9612319C9FB2972EC600A; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2EC566D1F8F6676F032673AFF9A36687; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=35D3E39752AB41788B218F61F59A9FE3&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2EC566D1F8F6676F032673AFF9A36687; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730294.9a51a1
GET

https://www.bing.com/qbox?query=procc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=8c163b6c663d441aaf11d389aeb7078f&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=8c163b6c663d441aaf11d389aeb7078f&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 280
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f6efac44a3b11bc7d6b5bdc272
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-l/n3Su2gRsae47BvtZkvHLkmbTEzrs8WD+3Ir5esODY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:34 GMT
set-cookie: MUID=2E5763DCC6A667233D5976A2C7F366E6; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2E5763DCC6A667233D5976A2C7F366E6; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=37B301C6996C62982A2414B8983963D6; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=646ECFA1194F404F8B784C431D9282FB&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:34 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=37B301C6996C62982A2414B8983963D6; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730294.9a51b0
GET

https://www.bing.com/qbox?query=procce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=429dd12494404f30b125bca4034036d6&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=429dd12494404f30b125bca4034036d6&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 207
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f7dac24b698be24115b35bd63e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+krtRJpcSQhwqnKbNKONpY/O4Fjpg4VqOQpN1ad8TjU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:35 GMT
set-cookie: MUID=1E9A3AAF564D60DD28682FD15718614E; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1E9A3AAF564D60DD28682FD15718614E; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3B85C8D1744A6B0825B7DDAF751F6ACC; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=D1D2FC009007408E948DC2A8B221D079&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3B85C8D1744A6B0825B7DDAF751F6ACC; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a51d2
GET

https://www.bing.com/qbox?query=procces&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=37acbc367651490c8d76caade1002431&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=37acbc367651490c8d76caade1002431&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 206
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f7d7e144a29912c82603489b11
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-N+KwUXAIj7CH4h61J4j4C0oEsoFGSpoe+ErUGUM+zEQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:35 GMT
set-cookie: MUID=2A90596020E46AE12EAA4C1E214F6BA1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2A90596020E46AE12EAA4C1E214F6BA1; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2353D016261468630C98C56827BF69F8; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=B4BA429F20354D5AA5D5DA6716857929&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2353D016261468630C98C56827BF69F8; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a5200
GET

https://www.bing.com/qbox?query=procces+&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1c32ee34283d4ee784feb40e3e2a2118&oit=1&cp=8&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1c32ee34283d4ee784feb40e3e2a2118&oit=1&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 204
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f79b9d4b72afe2edabc0fed4ee
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-iQHUp7Nm5UYRrKuq09vQS2Z5061VG6IcZX/17mJRyQ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:35 GMT
set-cookie: MUID=031B2C46902A6E833870393891816FA2; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=031B2C46902A6E833870393891816FA2; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=29D8B6F0EDF266BB0026A38EEC5967B5; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=717C54D780024DBE96F68CB058774C01&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=29D8B6F0EDF266BB0026A38EEC5967B5; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a5219
GET

https://www.bing.com/qbox?query=procces+h&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=bcc2a842ea714c968708d14f80aeeaea&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+h&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=bcc2a842ea714c968708d14f80aeeaea&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 205
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f78c694a8abfc0b23b7b7dde92
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+vCV5uFcOIw8cK5tvUuwxekWr6oFyXKXysoFuU/2jpk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:35 GMT
set-cookie: MUID=1D154A61BC7E6CB320935F1FBDD56D8A; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1D154A61BC7E6CB320935F1FBDD56D8A; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0ACC56267E6E627236BA43587FC56376; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=716DF5BF632746B7816EBB7C5643EA06&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0ACC56267E6E627236BA43587FC56376; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a5247
GET

https://www.bing.com/qbox?query=procces+ha&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=800dec2b0fbf4be68a663db9543c45da&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+ha&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=800dec2b0fbf4be68a663db9543c45da&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 204
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f72f104ab7979525feb0e61707
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZfZzNpCC5BRTXWKe1AaKKAVZvAm1T5ucBGQS1jo02/Y='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:35 GMT
set-cookie: MUID=156C5E1F2226673A16554B6123736637; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=156C5E1F2226673A16554B6123736637; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1194611AE24A668F0F557464E31F6785; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=109BE5C1E8264ABE9A8F395FAC7977C4&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1194611AE24A668F0F557464E31F6785; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a5273
GET

https://www.bing.com/qbox?query=procces+hac&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=460291efd9184cd7bce96401cb2e1949&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+hac&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=460291efd9184cd7bce96401cb2e1949&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Fri, 24 Jan 2025 14:50:35 GMT
vary: Accept-Encoding
x-eventid: 6793a8f79b0b4d3bbde1bd4a49039282
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-R6zylxvftDijddqzPUe84rnjm2ObbziNtqN+Dp7EoRg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Fri, 24 Jan 2025 14:51:35 GMT
set-cookie: MUID=177A3E478B826E6016B32B398ACC6FFE; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20250124; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a5283
set-cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8; Domain=.bing.com; Path=/; Expires=Fri, 24 Jan 2025 16:51:35 GMT; Max-Age=7200
GET

https://www.bing.com/qbox?query=procces+hack&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=a9f4c690ac63441895aa2cb4f3d30884&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+hack&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=a9f4c690ac63441895aa2cb4f3d30884&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661aafd86e0b4a0c8792a1f83cd446ca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3vTAQNKq8Us8FU4N1YKatO/0vBvTusxxyorbrP2yIH8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Fri, 24 Jan 2025 14:51:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a529c
GET

https://www.bing.com/qbox?query=procces+hacke&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=12427fca226c4538a2cc39179f50aa3b&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+hacke&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=12427fca226c4538a2cc39179f50aa3b&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 65ddbde9779b4ceabd82cbad7d4ec212
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-qzKh+HvhNx+fX8c7wwnocrXXN8xH6q/0CZiio4yDf/o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Fri, 24 Jan 2025 14:51:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730295.9a529d
GET

https://www.bing.com/qbox?query=procces+hacker&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=05b9a34d92034ef19da314b07893911b&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=procces+hacker&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=05b9a34d92034ef19da314b07893911b&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

expires: Mon, 23 Dec 2024 08:43:15 GMT
last-modified: Tue, 24 Sep 2024 05:57:20 GMT
etag: 0x8DCDC5DC0B634E9
cache-control: public, no-transform, max-age=380613
akamai-amd-bc-debug: [a=2.16.142.5,b=614211882,c=c,d=1736963566,h=304,k=0,l=1,n=NL__SCHIPHOL,o=20940,r=1]
akamai-grn: 0.21ff1302.1736258945.2e1f2df4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10060
content-type: image/png
content-md5: NyL0K09FbOsKFVWkE+stgw==
x-ms-request-id: 2a3aa855-301e-0019-0919-1ec6f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a52a9
GET

https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a5319
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-XOZomIRZ4tEhfBQVWduQfjkehWz0lOPMLMCkzPYawDA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a533d
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

content-length: 8120
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: nFMjtLW2HeTdYzqGm09klQ==
last-modified: Thu, 23 Jan 2025 09:21:18 GMT
etag: 0x8DD3B8F4B25B799
x-ms-request-id: 1a2f8c0c-901e-0014-70c5-6d29f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.04071002.1737657305.ecb9cf62
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=422014
expires: Tue, 28 Jan 2025 18:34:45 GMT
akamai-grn: 0.08071002.1737667271.80df1dca
timing-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a533e
GET

https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a533b
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C3%3A2%2C2%3A3%2C4%3A4%2C5%3A5%2C6%3A6%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C3%3A2%2C2%3A3%2C4%3A4%2C5%3A5%2C6%3A6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a533a
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 372
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Wed, 13 Nov 2024 18:09:46 GMT
vary: Accept-Encoding
x-ms-request-id: b284b501-b01e-0070-5b35-6ede7c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20250124T080000Z-15c498d86c5vbmw8hC1DB12w3g00000004qg00000000buw6
x-fd-int-roxy-purgeid: 0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 6793488027224af28ebdf6e2ff2b2084|AFD:6793488027224af28ebdf6e2ff2b2084|2025-01-24T08:00:00.897Z
date: Fri, 24 Jan 2025 14:51:36 GMT
content-length: 48833
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a536d
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:17,%22BC%22:428,%22SE%22:-1,%22TC%22:-1,%22H%22:479,%22BP%22:517,%22CT%22:536,%22IL%22:5},%22ad%22:[-1,-1,1263,609,1263,3712,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:17,%22BC%22:428,%22SE%22:-1,%22TC%22:-1,%22H%22:479,%22BP%22:517,%22CT%22:536,%22IL%22:5},%22ad%22:[-1,-1,1263,609,1263,3712,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

expires: Thu, 28 Nov 2024 10:42:30 GMT
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
cache-control: public, no-transform, max-age=393290
akamai-grn: 0.17ff1302.1736249114.8c53477
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-amd-bc-debug: [a=96.16.251.5,b=406648813,c=c,d=1733666271,h=304,k=1,l=24,n=NL__HAARLEM,o=20940,r=25,j=[[a=95.100.98.58,b=406648813,c=c,d=1733666271,h=304,k=1,l=23,m=0,r=24]]],[a=95.100.98.54,b=1858317330,c=c,d=1733666271,h=304,k=1,l=7,n=IE__DUBLIN,o=20940,r=8,j=[[a=20.60.205.196,b=1858317330,c=o,d=1733666271,h=200,k=0,l=7,m=0,r=7,p=1929,t=cus]]]
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 4b671935-a01e-0017-5b19-212af3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a5376
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a8f8e8d445808dd938b1e51e1eb5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-e/nIUuh5k/sO1UkxQJnartJubN3VUjmLupOsxLzPiYI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: BA4EB77B5A69498C8E57E73087D6E13D Ref B: AMS231032608037 Ref C: 2025-01-24T14:51:36Z
date: Fri, 24 Jan 2025 14:51:36 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:51:36 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:36 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:36 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a5380
GET

https://www.bing.com/rp/IfrvNjTcSqeeIPH0BPEwha_gE9w.br.js

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /rp/IfrvNjTcSqeeIPH0BPEwha_gE9w.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a53ab
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250124

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250124 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a53ac
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a53ad
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=50.933128356933594&lon=5.325577259063721&dispName=Hasselt%252C%2520Limburg&isEff=1&effLocType=4&clientsid=undefined

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /geolocation/write?isDevLoc=false&lat=50.933128356933594&lon=5.325577259063721&dispName=Hasselt%252C%2520Limburg&isEff=1&effLocType=4&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a53ae
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730295996%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%227.8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1737730295996%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730295996%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%227.8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1737730295996%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a53b4
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a53b3
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730296.9a5402
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a545f
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A593%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A593%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a5461
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296025%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296025%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730296026%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296025%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296025%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730296026%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a5471
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730296229%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730296229%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a5473
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a5474
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

content-length: 16035
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a8f9f7404e82bff4773d73ed4b22
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-uXtNyTEjWm9d5oNu6Svsaw+8wJQIlT2ad5CpvYUWFgE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a546e
GET

https://www.bing.com/images/sbi?mmasync=1&ig=AB097B8EFB31445F80128D1468F1BED5&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /images/sbi?mmasync=1&ig=AB097B8EFB31445F80128D1468F1BED5&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

content-length: 768
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6793a8f9899e4bb9a9462845f867d1ab
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Jsy+XyhTsBs2C1QykueJMP493SG4L4NLveslDQOgsmg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6793a8f9899e4bb9a9462845f867d1ab|AFD:6793a8f9899e4bb9a9462845f867d1ab|2025-01-24T14:51:37.215Z
date: Fri, 24 Jan 2025 14:51:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a547c
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296243%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1368%2C%22time%22%3A1369%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1737730296588%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296243%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1368%2C%22time%22%3A1369%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1737730296588%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

content-length: 991
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6793a8f9562343be8ccd423ff348b87e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0rWt+tqm3EK5UOMmWcubpTnGUO5TMluh5W2h98KHsMg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6793a8f9562343be8ccd423ff348b87e|AFD:6793a8f9562343be8ccd423ff348b87e|2025-01-24T14:51:37.234Z
date: Fri, 24 Jan 2025 14:51:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Sat, 24-Jan-2026 14:51:37 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-24; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a5484
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1371%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730296590%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1371%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730296590%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54ec
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1372%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730296591%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1372%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730296591%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a8f94d9a41d98c3a6fe20169b93e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SgbyvvONJBiHze5oMJEDDBybgmJ3X4alVRwUH5OhhK0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 088A2A793BEE4D5289AC293097138623 Ref B: AMS231032608037 Ref C: 2025-01-24T14:51:37Z
date: Fri, 24 Jan 2025 14:51:37 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:51:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=17D7BD16BAD76BB70925A868BB326A49; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54e9
POST

https://www.bing.com/rewardsapp/ncheader?ver=53048882&IID=SERP.5056&IG=AB097B8EFB31445F80128D1468F1BED5

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /rewardsapp/ncheader?ver=53048882&IID=SERP.5056&IG=AB097B8EFB31445F80128D1468F1BED5 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54ee
POST

https://www.bing.com/rewardsapp/reportActivity?IG=AB097B8EFB31445F80128D1468F1BED5&IID=SERP.5066&q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /rewardsapp/reportActivity?IG=AB097B8EFB31445F80128D1468F1BED5&IID=SERP.5066&q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f1
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f3
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f4
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f5
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1737730296608%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730296633%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730296633%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730296654%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730296654%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296715%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296789%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1737730296924%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1737730297055%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1737730296608%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730296633%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730296633%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730296654%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730296654%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296715%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296789%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1737730296924%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1737730297055%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f2
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297132%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297132%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f9
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297133%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297133%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54fa
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.CookieGetBlocked%22%2C%22TS%22%3A1737730297139%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22dsc%22%7D%2C%7B%22Text%22%3A%220%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297163%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297163%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.CookieGetBlocked%22%2C%22TS%22%3A1737730297139%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22dsc%22%7D%2C%7B%22Text%22%3A%220%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297163%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297163%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a8f9fda74dcbadc0c47f1dbc60e0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-C8i+/ElTCkyGjT3IErVQT6TdG78+jE321MDBdJZOKN8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D53BF7BF9E2A4328A1E85730A276B2E6 Ref B: AMS231020615011 Ref C: 2025-01-24T14:51:37Z
date: Fri, 24 Jan 2025 14:51:37 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:51:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137; domain=.bing.com; expires=Wed, 18-Feb-2026 14:51:37 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f6
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%229%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialConfigDisabled%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%229%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialConfigDisabled%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a5524
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=00FB2CFF638C6E2F2284398162C26F19&clientsid=undefined

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /geolocation/write?isBlocked=true&sid=00FB2CFF638C6E2F2284398162C26F19&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730297.9a54f8
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 236
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a8faa87547428631caaceb0cbcd0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IT2H4fEf2KMjHj5D2/yziVxB3BcipEZS7X1huq44KuE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 3265DA3AACDE4518B550D6CC04530467 Ref B: AMS231032607009 Ref C: 2025-01-24T14:51:38Z
date: Fri, 24 Jan 2025 14:51:38 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:51:38 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730298.9a5590
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730298.9a55d6
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6793a8faecea4d74964f3359de0598d3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-4B8c3g7MMlSBGOJWXz+ysxt23uJgCetansLF8esLXnk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:51:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730298.9a5615
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1737730297201%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22789%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1737730297202%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221982%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1737730297202%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297284%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1737730297201%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22789%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1737730297202%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221982%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1737730297202%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297284%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730299.9a56da
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730305.9a5d6a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 20568
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:51:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730306.9a5dc8
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730323.9a70ef
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 649
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730324.9a7131
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%22d8c505bb-f34a-6e30-0d8d-a9da21b87ad8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1737730304179%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseEnter%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730304180%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730304493%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22MouseEventId%22%3A%22d8c505bb-f34a-6e30-0d8d-a9da21b87ad8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1737730305131%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseLeave%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%22d8c505bb-f34a-6e30-0d8d-a9da21b87ad8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1737730304179%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseEnter%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730304180%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730304493%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22MouseEventId%22%3A%22d8c505bb-f34a-6e30-0d8d-a9da21b87ad8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1737730305131%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseLeave%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 480
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a914ee4c4f20becc632dd71ff46c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AWdCF/qYUS2JFob0WvKSKastCMB5vlXGycgeR0OQ474='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:04 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:04 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=134B7708D30F63E126066276D2406288; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:04 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730324.9a71e5
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 695
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 434
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a9159fe34215ae301c196de1e9af
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-mvZyoeEbg7RPA8UeA9+Wyyb85oTZLnIJsTcnTT6L3eg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:05 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=14EB809F13D76E782F9195E1127C6F9B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a730a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 690
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 367
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a915a691485db74c3f3a94ad8c45
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SmylAyvssvyXKt5Krswv7ls67L1kFSkA6wE7rU1ann4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:05 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0AD8744AD80368BC144C6134D94E698F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a733a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 322
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a915beda4968971ad82976be8a7f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Gdh/oQJEH7/hGJcZcPaLpPUnxZrRhavExoDqcHtjb1I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:05 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=072FB48132566C7D0241A1FF337A6D6D; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a737a
GET

https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c56200d3c6a24a1aaf61ae20f68e2dc5&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=u&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c56200d3c6a24a1aaf61ae20f68e2dc5&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 320
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a915985d4cd8b06550b99d490712
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-mcJdXQw8nHSn9s70DJY2XdJsbhOp5SSaoUop7w0KHYs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:05 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=08F792F6C3BD6E2F394B8788C2936F7B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a73bd
GET

https://www.bing.com/qbox?query=un&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=ae0a761e26674915a793e38bb82cf6da&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=un&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=ae0a761e26674915a793e38bb82cf6da&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 323
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a9152ca64058be0de3549e658e40
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-fE86fyMI0lQyNsLMHGuh0gj54hEGS1JUmJU+Fllj1+c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:05 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=198EFB66AEBE64A73CD6EE18AF15659B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a73e4
GET

https://www.bing.com/qbox?query=unc&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=526081d03b9648f19d9520f97a6726e1&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=unc&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=526081d03b9648f19d9520f97a6726e1&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 325
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a915b3774448a329827f2fb083f2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Ovke/96Vskdnu8W+HvwlrCcsROuBLJbCd+6MZJAS70k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:05 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3A300D02A8DC61540DC9187CA9776076; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a7408
GET

https://www.bing.com/qbox?query=unco&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=2596572c68864374bdccbcc75c970c16&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=unco&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=2596572c68864374bdccbcc75c970c16&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 261
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a915e6e8454e9bd125c52d5bdafe
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-sHDJpdqNsWAtpRMxJIohM5YpGzG8FVPd9uldk4/CVHI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:06 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=335E8AC0C74D6BB3099A9FBEC6E66AF8; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730325.9a7422
GET

https://www.bing.com/qbox?query=uncov&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=ca5dea671f28470a9e1d20b15a7a4649&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncov&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=ca5dea671f28470a9e1d20b15a7a4649&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 137
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a916f142451bb5d1e901766a117b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qV0x8IebK57WRLH43kJG1/VhPSH1qO3RU9pyzSxvt34='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:06 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=218C03488B6F6C452DA416368AC46D52; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730326.9a7449
GET

https://www.bing.com/qbox?query=uncove&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c1845b558aff48b08bbd5a08f9bdaae5&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncove&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c1845b558aff48b08bbd5a08f9bdaae5&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 112
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a916d0f745a7a8de615730fde6ac
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rybtXF1vIWlTMlAqW9kiTsMb7jfz7M04oc7xhPT5594='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:06 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=008697FEB09C60803D6A8280B1376130; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730326.9a747b
GET

https://www.bing.com/qbox?query=uncover&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=66782149cad54a3cb515d4858423a6f2&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncover&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=66782149cad54a3cb515d4858423a6f2&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 115
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a91668cf44f1bf70ffc610ac0bda
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pmotVLu604F01KzCHeUsGk5vRAVUj1YiL6gieCEcHws='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:06 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=05822ECD094D67720EDC3BB3086A66A4; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730326.9a74c7
GET

https://www.bing.com/qbox?query=uncoveri&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c7fddf60b285476aba5815c1ee09679c&oit=1&cp=8&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncoveri&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c7fddf60b285476aba5815c1ee09679c&oit=1&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730366.9aa507
GET

https://www.bing.com/qbox?query=uncoverit&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=17aef5ea044e432caf7456f9e3463841&oit=1&cp=9&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncoverit&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=17aef5ea044e432caf7456f9e3463841&oit=1&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730366.9aa502
GET

https://www.bing.com/qbox?query=uncoverit.&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=19a32835dc78414499657f916fa7d144&oit=1&cp=10&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncoverit.&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=19a32835dc78414499657f916fa7d144&oit=1&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730367.9aa5db
GET

https://www.bing.com/qbox?query=uncoverit.o&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=2cdc0939a61441199cb45b8520092563&oit=1&cp=11&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncoverit.o&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=2cdc0939a61441199cb45b8520092563&oit=1&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 6793a93ffc4d488da99e451cd1fb366d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9NzkOc44Qu2VHZWOcyf5sIcaHuutQUaCBVVxCVnZL34='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A9727313B0F945C69E8553115FC12562 Ref B: LON212050702031 Ref C: 2025-01-24T14:52:47Z
content-length: 0
date: Fri, 24 Jan 2025 14:52:47 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:47 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730367.9aa6e5
GET

https://www.bing.com/qbox?query=uncoverit.or&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=592cf22998c445b18a3d3909672c8e5a&oit=1&cp=12&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncoverit.or&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=592cf22998c445b18a3d3909672c8e5a&oit=1&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1203
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 331072383B8A4782AB3C71A143846A55 Ref B: LON212050702031 Ref C: 2025-01-24T14:52:48Z
date: Fri, 24 Jan 2025 14:52:48 GMT
set-cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:48 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730368.9aa730
GET

https://www.bing.com/qbox?query=uncoverit.org&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=fc1ee16f78a14bcbaded743ecbd7fbc4&oit=3&cp=13&pgcl=4

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /qbox?query=uncoverit.org&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=fc1ee16f78a14bcbaded743ecbd7fbc4&oit=3&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730368.9aa736
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.TabFocusChanged%22,%22FID%22:%22CI%22,%22Name%22:%22TabFocused%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.TabFocusChanged%22,%22FID%22:%22CI%22,%22Name%22:%22TabFocused%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0367991CD78D4B789C9356F9DB8F9BCB Ref B: AMS04EDGE1407 Ref C: 2023-01-25T13:10:38Z
date: Fri, 24 Jan 2025 14:52:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730368.9aa77b
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-LogCustomEvent%22%2C%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1737730365719%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-LogCustomEvent%22%2C%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1737730365719%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730368.9aa788
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 676
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aab82
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=AB097B8EFB31445F80128D1468F1BED5&ID=SERP,5212.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dc7bd1ad5418d85a4c42e7dc193bc1f607d1a0475226baf1fbd51c464e090411bJmltdHM9MTczNzY3NjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D177a3e47-8b82-6e60-16b3-2b398acc6ffe%26psq%3Dprocces%2Bhacker%26u%3Da1aHR0cHM6Ly9wcm9jZXNzaGFja2VyLnNvdXJjZWZvcmdlLmlvL2Rvd25sb2Fkcy5waHA%26ntb%3D1

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=AB097B8EFB31445F80128D1468F1BED5&ID=SERP,5212.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dc7bd1ad5418d85a4c42e7dc193bc1f607d1a0475226baf1fbd51c464e090411bJmltdHM9MTczNzY3NjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D177a3e47-8b82-6e60-16b3-2b398acc6ffe%26psq%3Dprocces%2Bhacker%26u%3Da1aHR0cHM6Ly9wcm9jZXNzaGFja2VyLnNvdXJjZWZvcmdlLmlvL2Rvd25sb2Fkcy5waHA%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aab8b
GET

https://www.bing.com/ck/a?!&&p=c7bd1ad5418d85a4c42e7dc193bc1f607d1a0475226baf1fbd51c464e090411bJmltdHM9MTczNzY3NjgwMA&ptn=3&ver=2&hsh=4&fclid=177a3e47-8b82-6e60-16b3-2b398acc6ffe&psq=procces+hacker&u=a1aHR0cHM6Ly9wcm9jZXNzaGFja2VyLnNvdXJjZWZvcmdlLmlvL2Rvd25sb2Fkcy5waHA&ntb=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /ck/a?!&&p=c7bd1ad5418d85a4c42e7dc193bc1f607d1a0475226baf1fbd51c464e090411bJmltdHM9MTczNzY3NjgwMA&ptn=3&ver=2&hsh=4&fclid=177a3e47-8b82-6e60-16b3-2b398acc6ffe&psq=procces+hacker&u=a1aHR0cHM6Ly9wcm9jZXNzaGFja2VyLnNvdXJjZWZvcmdlLmlvL2Rvd25sb2Fkcy5waHA&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a943b3a840e59a896f130cfd980e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-1amAE6hib7eAP1KbWogmlcvpJarM6g3T6upBNR18m/I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 7FA362E4354046428B4F90F5795E0E9B Ref B: LON212050701011 Ref C: 2025-01-24T14:52:51Z
date: Fri, 24 Jan 2025 14:52:51 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:51 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aaba8
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1050
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabc6
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabc5
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366843%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366923%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366955%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366843%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366923%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366955%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabd2
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:49,%22BC%22:50,%22SE%22:-1,%22TC%22:-1,%22H%22:126,%22BP%22:129,%22CT%22:130,%22IL%22:5},%22ad%22:[-1,-1,1263,609,1263,3712,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:49,%22BC%22:50,%22SE%22:-1,%22TC%22:-1,%22H%22:126,%22BP%22:129,%22CT%22:130,%22IL%22:5},%22ad%22:[-1,-1,1263,609,1263,3712,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabd3
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 342
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabd1
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=50.933128356933594&lon=5.325577259063721&dispName=Hasselt%252C%2520Limburg&isEff=1&effLocType=4&clientsid=undefined

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /geolocation/write?isDevLoc=false&lat=50.933128356933594&lon=5.325577259063721&dispName=Hasselt%252C%2520Limburg&isEff=1&effLocType=4&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabd4
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730370784%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%227.9%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1737730370784%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370798%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370798%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730370784%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%227.9%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1737730370784%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370798%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370798%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aabfc
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370800%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370800%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac1e
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370804%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370805%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370806%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1737730370807%2C%22Name%22%3A98%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370809%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370812%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1737730370812%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370804%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370805%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370806%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1737730370807%2C%22Name%22%3A98%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370809%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370812%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1737730370812%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac1f
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370813%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370813%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730370814%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370813%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370813%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730370814%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 16037
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6793a94345544476a4ffe5bf5ec6dc86
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rnVE/ZpYzde8Olx4Hu2ZBN8VgC1jFe8ZF0xC/Re9rXE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 24 Jan 2025 14:52:51 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac2c
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac30
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac32
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730371066%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730371066%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac33
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 772
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6793a9439185458f99a5c4f69591c1c9
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Nc28Br0SK+ai8EVe6KG2hCPP/mgv6SaaK46ZB8yABcI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6793a9439185458f99a5c4f69591c1c9|AFD:6793a9439185458f99a5c4f69591c1c9|2025-01-24T14:52:51.945Z
date: Fri, 24 Jan 2025 14:52:51 GMT
set-cookie: _C_ETH=1; expires=Thu, 23 Jan 2025 14:52:51 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac3e
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 995
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6793a943e9db4f299ee408402e7c3f2a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-yqZ1tESHJ0giPi7LPQBRUCyhr5gsdux/0ouCkDXCiM0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6793a943e9db4f299ee408402e7c3f2a|AFD:6793a943e9db4f299ee408402e7c3f2a|2025-01-24T14:52:51.970Z
date: Fri, 24 Jan 2025 14:52:51 GMT
set-cookie: _C_ETH=1; expires=Thu, 23 Jan 2025 14:52:51 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Sat, 24-Jan-2026 14:52:51 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2025-01-24; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730371.9aac40
GET

https://www.bing.com/images/sbi?mmasync=1&ig=AB097B8EFB31445F80128D1468F1BED5&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /images/sbi?mmasync=1&ig=AB097B8EFB31445F80128D1468F1BED5&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a944062d43fbb84635710f1620e9
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-a167CRVOQVMfsB7TV2gkwcTF8qWnMvgXVASR5F7of9I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: CA8F146C74FF480589CEC482E7147B0A Ref B: LON212050702031 Ref C: 2025-01-24T14:52:52Z
date: Fri, 24 Jan 2025 14:52:52 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=39646177A7316FA9010E7409A6376E0B; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aac4c
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371161%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371166%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371228%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Time%22%3A727%2C%22time%22%3A735%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1737730371314%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371161%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371166%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371228%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Time%22%3A727%2C%22time%22%3A735%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1737730371314%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacc0
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A736%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730371315%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A736%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730371315%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aaccb
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A738%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730371317%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A738%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730371317%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacce
POST

https://www.bing.com/rewardsapp/ncheader?ver=53048882&IID=SERP.5056&IG=AB097B8EFB31445F80128D1468F1BED5

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /rewardsapp/ncheader?ver=53048882&IID=SERP.5056&IG=AB097B8EFB31445F80128D1468F1BED5 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacd1
POST

https://www.bing.com/rewardsapp/reportActivity?IG=AB097B8EFB31445F80128D1468F1BED5&IID=SERP.5066&q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /rewardsapp/reportActivity?IG=AB097B8EFB31445F80128D1468F1BED5&IID=SERP.5066&q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacda
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacdd
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1737730371345%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730371362%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730371362%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730371389%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371432%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371521%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371544%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371682%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1737730371780%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1737730371345%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730371362%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730371362%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730371389%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371432%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371521%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371544%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371682%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1737730371780%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacde
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aacdf
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aace2
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730297&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aace6
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1737730371883%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730371992%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1737730371883%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730371992%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aace7
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730371993%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730371993%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a94472ee4f9ab84f63f510e69016
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-DwOKFq0nnZalZUrJOXt5quiv8dPmELn4z2N8xW/7+zs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: CF3E85C92E0E4EDF8E72918D71E79FF2 Ref B: LON212050706011 Ref C: 2025-01-24T14:52:52Z
date: Fri, 24 Jan 2025 14:52:52 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:52 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:52 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aace5
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.CookieGetBlocked%22%2C%22TS%22%3A1737730371994%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22dsc%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialConfigDisabled%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.CookieGetBlocked%22%2C%22TS%22%3A1737730371994%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22dsc%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialConfigDisabled%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730372.9aad0c
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 235
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6793a94592fc4da99b7e701a40b27cd7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5nU8XdLXLwNSzF/r6Otrr2ZWmwHzGilzn62+SDOxE/A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D7D54DF7F61E4D52A0BDC9D59C210FFF Ref B: LON212050705047 Ref C: 2025-01-24T14:52:53Z
date: Fri, 24 Jan 2025 14:52:53 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:53 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730373.9aadb5
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%2210%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%2210%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730374.9aaf09
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=00FB2CFF638C6E2F2284398162C26F19&clientsid=undefined

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /geolocation/write?isBlocked=true&sid=00FB2CFF638C6E2F2284398162C26F19&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730376.9ab185
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730376.9ab1ab
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145137
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 6793a948eefb4071b3632b8781e3ac77
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-NIqEsnpm70V8a8KhQ6PjlYlFnxW6zBzsIe2biVHTTKQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: DB88C73868A94B9EAE6607745B19477A Ref B: LON212050706039 Ref C: 2025-01-24T14:52:56Z
content-length: 0
date: Fri, 24 Jan 2025 14:52:56 GMT
set-cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE; expires=Wed, 18-Feb-2026 14:52:56 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730376.9ab1ac
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1737730372068%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22231%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1737730372071%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221489%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1737730372071%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372147%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1737730372068%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22231%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1737730372071%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221489%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1737730372071%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372147%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1189
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 283EF3D2D50F43F4AF2A4579B43FB990 Ref B: LON212050706039 Ref C: 2025-01-24T14:52:57Z
date: Fri, 24 Jan 2025 14:52:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730377.9ab1ca
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730377.9ab1e1
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730372684%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Interval%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730372739%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730373740%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Interval%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730372684%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Interval%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730372739%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730373740%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Interval%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 24 Jan 2025 14:52:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.65361602.1737730377.9ab1e2
GET

https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730375474%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730375474%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 20624
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=AB097B8EFB31445F80128D1468F1BED5&ID=SERP,5249.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D7033cd052e6d48e845b2a0e38ddbbcabdcd0b454aadda91c05e6156eceb50eb2JmltdHM9MTczNzY3NjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D177a3e47-8b82-6e60-16b3-2b398acc6ffe%26psq%3Dprocces%2Bhacker%26u%3Da1aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcHJvY2Vzc2hhY2tlci8%26ntb%3D1

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=AB097B8EFB31445F80128D1468F1BED5&ID=SERP,5249.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D7033cd052e6d48e845b2a0e38ddbbcabdcd0b454aadda91c05e6156eceb50eb2JmltdHM9MTczNzY3NjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D177a3e47-8b82-6e60-16b3-2b398acc6ffe%26psq%3Dprocces%2Bhacker%26u%3Da1aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcHJvY2Vzc2hhY2tlci8%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252
GET

https://www.bing.com/ck/a?!&&p=7033cd052e6d48e845b2a0e38ddbbcabdcd0b454aadda91c05e6156eceb50eb2JmltdHM9MTczNzY3NjgwMA&ptn=3&ver=2&hsh=4&fclid=177a3e47-8b82-6e60-16b3-2b398acc6ffe&psq=procces+hacker&u=a1aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcHJvY2Vzc2hhY2tlci8&ntb=1

msedge.exe

Remote address:

2.22.54.105:443

Request

GET /ck/a?!&&p=7033cd052e6d48e845b2a0e38ddbbcabdcd0b454aadda91c05e6156eceb50eb2JmltdHM9MTczNzY3NjgwMA&ptn=3&ver=2&hsh=4&fclid=177a3e47-8b82-6e60-16b3-2b398acc6ffe&psq=procces+hacker&u=a1aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcHJvY2Vzc2hhY2tlci8&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 818
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

2.22.54.105:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 284
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: MUIDB=177A3E478B826E6016B32B398ACC6FFE
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _Rwho=u=d&ts=2025-01-24
cookie: ipv6=hit=1737733898204&t=4
cookie: MSPTC=8wqvDGJxSoMxUhBEnZA8C4nuUQYRumSCEmxMK4DYPbI
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:52:51.9869496+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1737730372&WTS=63873327095&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|&BLOCK=TS=250124145252
DNS

105.54.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

105.54.22.2.in-addr.arpa

IN PTR

Response

105.54.22.2.in-addr.arpa

IN PTR

a2-22-54-105deploystaticakamaitechnologiescom
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.100.153.174

e86303.dscx.akamaiedge.net

IN A

95.100.153.167

e86303.dscx.akamaiedge.net

IN A

95.100.153.177

e86303.dscx.akamaiedge.net

IN A

95.100.153.154

e86303.dscx.akamaiedge.net

IN A

95.100.153.159

e86303.dscx.akamaiedge.net

IN A

95.100.153.149

e86303.dscx.akamaiedge.net

IN A

95.100.153.168

e86303.dscx.akamaiedge.net

IN A

95.100.153.182

e86303.dscx.akamaiedge.net

IN A

95.100.153.183
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.100.153.174

e86303.dscx.akamaiedge.net

IN A

95.100.153.154

e86303.dscx.akamaiedge.net

IN A

95.100.153.149

e86303.dscx.akamaiedge.net

IN A

95.100.153.167

e86303.dscx.akamaiedge.net

IN A

95.100.153.148

e86303.dscx.akamaiedge.net

IN A

95.100.153.159

e86303.dscx.akamaiedge.net

IN A

95.100.153.182

e86303.dscx.akamaiedge.net

IN A

95.100.153.177

e86303.dscx.akamaiedge.net

IN A

95.100.153.168
GET

https://th.bing.com/th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1149
cache-control: public, max-age=1745405
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd65
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.159597f2-b9d6-4e36-bce3-033424a24c6d&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.159597f2-b9d6-4e36-bce3-033424a24c6d&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2756
x-check-cacheable: YES
cache-control: public, max-age=1936300
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd64
GET

https://th.bing.com/th?id=OIP.5RxT5Vqr5TpVNofpyGcd7wAAAA&w=80&h=80&c=1&vt=10&bgcl=6c1a34&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.5RxT5Vqr5TpVNofpyGcd7wAAAA&w=80&h=80&c=1&vt=10&bgcl=6c1a34&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2756
x-check-cacheable: YES
cache-control: public, max-age=2355300
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd67
GET

https://th.bing.com/th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 552
cache-control: public, max-age=1629511
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd73
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.YdtKYiWSTrn_6yw1LRGKJQAAAA&w=80&h=80&c=1&vt=10&bgcl=0d9381&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.YdtKYiWSTrn_6yw1LRGKJQAAAA&w=80&h=80&c=1&vt=10&bgcl=0d9381&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 903
cache-control: public, max-age=1748767
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd75
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.30NXiUb0NTRUgW4CS3isywHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OVP.30NXiUb0NTRUgW4CS3isywHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1635986
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MEM_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd7b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0b0e52a5-5ea5-4703-a031-2700057a4dab&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.0b0e52a5-5ea5-4703-a031-2700057a4dab&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9638
x-check-cacheable: YES
cache-control: public, max-age=547850
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd6b
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 910
x-check-cacheable: YES
cache-control: public, max-age=2073179
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd74
GET

https://th.bing.com/th?id=ODLS.5fecd719-3f3f-42ab-ba49-495a76ad1ca6&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.5fecd719-3f3f-42ab-ba49-495a76ad1ca6&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3354
cache-control: public, max-age=1747721
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd87
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c69cc44c-9dfd-4150-b72a-951097c339e0&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.c69cc44c-9dfd-4150-b72a-951097c339e0&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1640336
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MEM_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd89
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.GyDS2ItjgCUgNovBTuCdzAHaFl&w=80&h=80&c=1&vt=10&bgcl=233a7a&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.GyDS2ItjgCUgNovBTuCdzAHaFl&w=80&h=80&c=1&vt=10&bgcl=233a7a&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2837
cache-control: public, max-age=1712150
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd79
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5fecd719-3f3f-42ab-ba49-495a76ad1ca6&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.5fecd719-3f3f-42ab-ba49-495a76ad1ca6&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1612835
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_HIT from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd86
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.9U_zw8FBNHaIfmTtZq5iYQHaEv&w=80&h=80&c=1&vt=10&bgcl=ab4fb9&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.9U_zw8FBNHaIfmTtZq5iYQHaEv&w=80&h=80&c=1&vt=10&bgcl=ab4fb9&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1042
cache-control: public, max-age=1930002
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd8b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0b0e52a5-5ea5-4703-a031-2700057a4dab&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.0b0e52a5-5ea5-4703-a031-2700057a4dab&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=5001802
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd83
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.3jAaQAj2mdeyrtevnyLcWwHaE7&w=80&h=80&c=1&vt=10&bgcl=c83a59&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.3jAaQAj2mdeyrtevnyLcWwHaE7&w=80&h=80&c=1&vt=10&bgcl=c83a59&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=5001761
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd80
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1071
cache-control: public, max-age=1731829
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd72
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.YdtKYiWSTrn_6yw1LRGKJQAAAA&w=80&h=80&c=1&vt=10&bgcl=7c358e&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.YdtKYiWSTrn_6yw1LRGKJQAAAA&w=80&h=80&c=1&vt=10&bgcl=7c358e&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2648
cache-control: public, max-age=2592000
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd77
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Process+Hacker+2&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?q=Process+Hacker+2&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1922
cache-control: public, max-age=1209545
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd6a
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Hacker+Program&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?q=Hacker+Program&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1845
cache-control: public, max-age=1209594
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd76
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Hacking+Process&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?q=Hacking+Process&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1760
cache-control: public, max-age=1209573
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd7a
x-check-cacheable: YES
GET

https://th.bing.com/th?q=How+to+Use+Process+Hacker&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?q=How+to+Use+Process+Hacker&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1639
cache-control: public, max-age=1209600
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd8a
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Remove+Hacker+From+Computer&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?q=Remove+Hacker+From+Computer&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1662
cache-control: public, max-age=1209568
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd66
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1946
cache-control: public, max-age=1209552
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd78
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c380cd25-9f4c-4f43-aa35-ac4056316382&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.c380cd25-9f4c-4f43-aa35-ac4056316382&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1922
cache-control: public, max-age=1209600
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd7c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.t3oKDOk4Uf4QNC2ZasdIygHaE6&w=80&h=80&c=1&vt=10&bgcl=5ae770&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.t3oKDOk4Uf4QNC2ZasdIygHaE6&w=80&h=80&c=1&vt=10&bgcl=5ae770&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 745
cache-control: public, max-age=5183941
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd81
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 854
cache-control: public, max-age=5184000
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd84
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.plKMqV9J_LBx2GA6ZAOoRAHaDt&w=80&h=80&c=1&vt=10&bgcl=52a61e&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OIP.plKMqV9J_LBx2GA6ZAOoRAHaDt&w=80&h=80&c=1&vt=10&bgcl=52a61e&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 865
cache-control: public, max-age=5184000
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd82
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1909
cache-control: public, max-age=1209543
date: Fri, 24 Jan 2025 14:51:36 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730296.1c7afd88
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.Hzl340_-a0X6eAxp9Vu0rgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OVP.Hzl340_-a0X6eAxp9Vu0rgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4373
x-check-cacheable: YES
cache-control: public, max-age=553946
date: Fri, 24 Jan 2025 14:51:37 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730297.1c7b0201
GET

https://th.bing.com/th?id=OVP.lCXmur0k7Evb2ib7gVUsVAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OVP.lCXmur0k7Evb2ib7gVUsVAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4973
x-check-cacheable: YES
cache-control: public, max-age=553856
date: Fri, 24 Jan 2025 14:51:37 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730297.1c7b0202
GET

https://th.bing.com/th?id=OVP.fnbYiMzB-WHhJYgb4LBy5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /th?id=OVP.fnbYiMzB-WHhJYgb4LBy5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2025-01-24T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2025-01-24T14:51:37.2502399+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2025-01-24
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1737730297

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9581
x-check-cacheable: YES
cache-control: public, max-age=547444
date: Fri, 24 Jan 2025 14:51:37 GMT
x-cache: TCP_MISS from a95-100-152-182.deploy.akamaitechnologies.com (AkamaiGHost/11.8.0-d1cc086c050e9ee88311d7bdff2a4a20) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b698645f.1737730297.1c7b0203
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5f97b5b-c01e-002e-02f1-176a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=105681
expires: Sat, 25 Jan 2025 20:12:57 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730296.5fa2200
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: SRCHUSR=DOB=20250124
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a43d8ae0-201e-0042-5df9-1ac184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=291461
expires: Mon, 27 Jan 2025 23:49:17 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730296.5fa2201
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:34 GMT
etag: 0x8DCDC64A18F365B
content-length: 671
content-type: image/svg+xml
content-md5: 2e0aQjQvN2lVcUGQcPjoGA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 08fd2788-101e-0005-299e-161eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=325640
expires: Tue, 28 Jan 2025 09:18:57 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2392
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

content-length: 1101
content-type: image/svg+xml
content-md5: kc0Rz8ymXPrOlhUyaNcfYw==
last-modified: Fri, 12 Aug 2022 20:45:00 GMT
etag: 0x8DA7CA3867FC831
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: adc41e54-901e-0086-2e09-15d69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.097b1060.1686747743.2aab8902
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.097b1060.1686747764.2aac12e8
akamai-grn: 0.2a7b1060.1687568922.2d70b24a
akamai-grn: 0.3d7b1060.1689052474.2206a8cd
akamai-grn: 0.21aedd58.1689771282.bd10a3b
akamai-grn: 0.7618dd58.1725087662.f9b7373
akamai-grn: 0.6718dd58.1727868601.e3249af
cache-control: public, no-transform, max-age=5157735
expires: Tue, 25 Mar 2025 07:33:52 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2393
timing-allow-origin: *
GET

https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 20:49:31 GMT
etag: 0x8DA7EFFA703EB5F
akamai-grn: 0.59281102.1714799759.224b2228
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 964
content-type: image/svg+xml
content-md5: iOPtPdfu4TP3P/udNrBLbw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a81edf47-401e-0068-185a-0386c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=11619923
expires: Sun, 08 Jun 2025 02:37:00 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2395
timing-allow-origin: *
GET

https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:54:00 GMT
etag: 0x8DCDC65AB4005D8
content-length: 1391
content-type: image/svg+xml
content-md5: YgWAZX6KRbSnuEULjaXNMg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c40f749a-001e-0038-1c8d-19abc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=67996
expires: Sat, 25 Jan 2025 09:44:53 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2396
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:39:27 GMT
etag: 0x8DA7EE519EF54EF
akamai-grn: 0.19fd4817.1699775190.19e2dda6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 726
content-type: image/svg+xml
content-md5: ZgHkolq4RyA+EBWzJRSxbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d46b8e76-f01e-0020-517e-0a9bf6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1efd4817.1701123842.3b4e7f5b
cache-control: public, no-transform, max-age=11236423
expires: Tue, 03 Jun 2025 16:05:20 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2397
timing-allow-origin: *
GET

https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:39 GMT
etag: 0x8DCDC650FC3D927
content-length: 3791
content-type: image/jpeg
content-md5: KZpHmi9/HzDQlUXKjMXRYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 10c61bf0-e01e-0039-04d1-15aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=106723
expires: Sat, 25 Jan 2025 20:30:20 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2399
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C424AE8
content-length: 5387
content-type: image/jpeg
content-md5: adFid0+JT/i5IDMON2t6Yg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 233d1204-101e-0068-1d1a-16b4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=150990
expires: Sun, 26 Jan 2025 08:48:07 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa239a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:48 GMT
etag: 0x8DCDC5EEFB0049C
content-length: 6817
content-type: image/jpeg
content-md5: DEHuMbBOl4tIgtF2kPA6Og==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 42a58b94-c01e-0048-0d59-17d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=325095
expires: Tue, 28 Jan 2025 09:09:52 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa239b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:31 GMT
etag: 0x8DCDC664D1860E2
content-length: 3814
content-type: image/jpeg
content-md5: KBVwYR+JIZqXDyWJ+YoJ2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7fa9fd0b-101e-0063-6bb7-66acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=51740
expires: Sat, 25 Jan 2025 05:13:57 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa23a0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:55 GMT
etag: 0x8DCDC63FB5BC9CB
content-length: 4547
content-type: image/jpeg
content-md5: eu9Mz25HuboDg2XNPR9Wkw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e33a93d6-f01e-004b-7906-1adb0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=240767
expires: Mon, 27 Jan 2025 09:44:24 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa239e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:56 GMT
etag: 0x8DCDC65F09D13C1
content-length: 5944
content-type: image/jpeg
content-md5: 9ucNopg0mtlCFfC0podQNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ab6448f5-c01e-0025-6b21-187223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=328655
expires: Tue, 28 Jan 2025 10:09:12 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa239f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

content-length: 4934
content-type: image/jpeg
content-md5: /aLOrgZ5YRk35ucfcBo2qw==
last-modified: Tue, 24 Sep 2024 06:43:17 GMT
etag: 0x8DCDC642C51AEC8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5d6ddf10-501e-004d-58f2-172c72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=262163
expires: Mon, 27 Jan 2025 15:41:00 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa239d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:51 GMT
etag: 0x8DCDC65ED9B19A0
content-length: 4409
content-type: image/jpeg
content-md5: qYoIvbmbhCLJ3J1v3ZOHww==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0123ab47-601e-0001-11da-15eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=134174
expires: Sun, 26 Jan 2025 04:07:51 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa239c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:25 GMT
etag: 0x8DCDC5EE1BFCC0A
content-length: 282
content-type: image/svg+xml
content-md5: 44eVtjQVTsH/Qca82lTuUg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cb169ceb-101e-0063-419b-15acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=87395
expires: Sat, 25 Jan 2025 15:08:12 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2394
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000

Response

HTTP/2.0 200

content-length: 1111
content-type: image/svg+xml
content-md5: wEyINKyRgCGG5s5neuSonQ==
last-modified: Tue, 24 Sep 2024 06:17:16 GMT
etag: 0x8DCDC6089E98574
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c028a2dd-501e-004d-20be-1b2c72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=76874
expires: Sat, 25 Jan 2025 12:12:51 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa2398
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:10:08 GMT
etag: 0x8DCDC67EC841DCF
content-length: 1343
content-type: text/css
content-encoding: br
content-md5: DnViWNsgH/Vlo3SrH5gEzg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7c50ab11-801e-0022-276d-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=363789
expires: Tue, 28 Jan 2025 19:54:46 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa23c9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:40:29 GMT
etag: 0x8DCEC880F396E3D
content-length: 269
content-type: text/css
content-encoding: br
content-md5: Twb1SQrgn66TMkCHmLv8IQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cbe448a-e01e-0039-3032-21aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.591a1202.1736780455.c2b56274
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=109064
expires: Sat, 25 Jan 2025 21:09:21 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa23c7
timing-allow-origin: *
GET

https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC86967FA2A4
content-length: 326
content-type: text/css; charset=utf-8
content-encoding: br
content-md5: yxQVEL8D2yYKzOkWuxDcBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d05ba974-b01e-0003-4c02-22e997000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=144227
expires: Sun, 26 Jan 2025 06:55:24 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa23c8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=177A3E478B826E6016B32B398ACC6FFE
cookie: _EDGE_S=F=1&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=00FB2CFF638C6E2F2284398162C26F19
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=344435792A26461C91478F2CD9AA85E6&dmnchg=1
cookie: ak_bmsc=EA9D18F8860674BE7A24B6CF5CE7965C~000000000000000000000000000000~YAAQZTYWAmyI0pWUAQAAJAjMmBoEVwYCCdmA/lX9sJbCvHFWue0niulUgJj0OSA5yWoSxx2OJenv805JLEwlsMzAX9WGQFP4SaNVIUlq94l9SLmtaduptG2dJXGUJEe1P8SmWoVw/jJvMiXz8/i+nWcHXOZz+P1xqbBJcmhGbai08ZRYKfSgmDLCs4iT3hXlYiJ6/gNOSYG4DowepBN64p+kFtqB+X81eVF4AdLvYKGSyXuez74To/XTunRtGfp3wTDs5O1ccAUlJmlFiU8yUnXiyDwWhjHpM2UAW1wtRdnt2oT+PHVGmZnQCWB09tWc9DKdC9U3yC2Skt/fe8KJPtLzaWjYBdoyV3X4q+Io0sSYlvrmhoP6qHV0Fq8xcyqHelPZnhwiLJT8
cookie: USRLOC=HS=1&ELOC=LAT=50.933128356933594|LON=5.325577259063721|N=Hasselt%2C%20Limburg|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3712&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20250124&T=1737730295000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:12 GMT
etag: 0x8DCDC63E1AC19C2
content-length: 324
content-type: text/css
content-encoding: br
content-md5: zul1ioyI5qjKzvVMsqd8eQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 15b38420-901e-0079-49f1-1683da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=145858
expires: Sun, 26 Jan 2025 07:22:35 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b798645f.1737730297.5fa23c6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ApUcs9I_P5ZviowJ-xbpTfIx-dw.br.css

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/ApUcs9I_P5ZviowJ-xbpTfIx-dw.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 7796
content-type: text/css
content-encoding: br
content-md5: 0d3ZIzqMJ+Tt8DR7sGqU7A==
last-modified: Wed, 22 Jan 2025 16:58:43 GMT
etag: 0x8DD3B060747D671
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cd6cc009-301e-0074-4a2c-6d6cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b5777b5c.1737609069.1cb1e59c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=293230
expires: Tue, 28 Jan 2025 00:18:46 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea564
timing-allow-origin: *
GET

https://r.bing.com/rp/39aFuDYOXcTuksKDNHbykNJMC9s.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/39aFuDYOXcTuksKDNHbykNJMC9s.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 07 Jan 2025 19:14:20 GMT
etag: 0x8DD2F4F7CEE2C53
content-length: 466
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: u385P9f2JDcBqnTlVG3LGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a043e36f-501e-004d-0b20-622c72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1737175938.d1cab3f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=62639
expires: Sat, 25 Jan 2025 08:15:35 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea62a
timing-allow-origin: *
GET

https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:49 GMT
etag: 0x8DCDC64632A6EF0
akamai-grn: 0.86777b5c.1734070447.13dd5fef
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: +CLmYDPZ4qSTibcD/NDa/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 246e1d8f-201e-0024-6368-1573de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 367
vary: Accept-Encoding
cache-control: public, no-transform, max-age=271333
expires: Mon, 27 Jan 2025 18:13:49 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea630
timing-allow-origin: *
GET

https://r.bing.com/rp/U6ozRLRanAQTt22qZDWCWxYnh5g.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/U6ozRLRanAQTt22qZDWCWxYnh5g.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 07 Jan 2025 15:00:41 GMT
etag: 0x8DD2F2C0E312948
akamai-grn: 0.4eba1302.1737468537.b4f381ca
content-type: text/javascript; charset=utf-8
content-md5: cHQ92lu+amPs3PeU3KnDRQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0cdbb896-501e-0046-575b-613406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2503
vary: Accept-Encoding
cache-control: public, no-transform, max-age=167247
expires: Sun, 26 Jan 2025 13:19:03 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea636
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:24 GMT
etag: 0x8DD0492999C1FC5
akamai-grn: 0.bf98645f.1737408960.f19cf74
content-type: text/javascript; charset=utf-8
content-md5: 7P/1lM50lR5NLXB84B2f6A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cca9282-801e-0029-26bf-369cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8835
vary: Accept-Encoding
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=186741
expires: Sun, 26 Jan 2025 18:43:57 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea63a
timing-allow-origin: *
GET

https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: YP0IUbsZfddh5LfrNKc0vw==
last-modified: Thu, 10 Oct 2024 00:29:02 GMT
etag: 0x8DCE8C28AC2EAB8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 59135df0-801e-0066-55c5-6658ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2590
cache-control: public, no-transform, max-age=408013
expires: Wed, 29 Jan 2025 08:11:49 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea63b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:42 GMT
etag: 0x8DCE8C30DC01669
content-length: 250
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e7f/zlZuzAgnEk3uqGLnHQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1c8cd8bd-201e-0060-58de-1aafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.95777b5c.1731646334.b987ae9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=222762
expires: Mon, 27 Jan 2025 04:44:18 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea640
timing-allow-origin: *
GET

https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 16 Dec 2024 11:02:51 GMT
etag: 0x8DD1DC12F5170F5
content-length: 1184
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: vG1h+ad2ByVr1L4MKJZ7kQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9a7b2d54-b01e-0008-57e1-4ff1e3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.2e3f655f.1734384468.3b43940
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=237502
expires: Mon, 27 Jan 2025 08:49:58 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea641
timing-allow-origin: *
GET

https://r.bing.com/rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a571118a-b01e-002a-3338-169fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=368480
expires: Tue, 28 Jan 2025 21:12:56 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea63f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
akamai-grn: 0.521a1202.1736689036.ef304b86
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 395
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bJNwzHWywBuWP28bX2mBGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 93919262-201e-0042-6f5a-17c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=117622
expires: Sat, 25 Jan 2025 23:31:58 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea643
timing-allow-origin: *
GET

https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
akamai-grn: 0.b2777b5c.1737066953.848d55f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 430
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: l5PXwpOyUFdqY44wmnrCag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4530ae53-901e-0079-4b92-2a83da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=405459
expires: Wed, 29 Jan 2025 07:29:15 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea647
timing-allow-origin: *
GET

https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
akamai-grn: 0.a9777b5c.1734757747.1cc8ed64
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 738
vary: Accept-Encoding
cache-control: public, no-transform, max-age=151066
expires: Sun, 26 Jan 2025 08:49:22 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea648
timing-allow-origin: *
GET

https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
content-type: text/javascript; charset=utf-8
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ebc0f95-601e-0028-0205-169d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 835
vary: Accept-Encoding
cache-control: public, no-transform, max-age=137417
expires: Sun, 26 Jan 2025 05:01:53 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea649
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:32 GMT
etag: 0x8DCE8C29C4714A6
content-type: text/javascript; charset=utf-8
content-md5: yBOhuH8WUdZCzcrV/Ken2A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ad5aae0c-101e-0063-06fe-36acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1736884273.33c9abc4
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 374789
cache-control: public, no-transform, max-age=65542
expires: Sat, 25 Jan 2025 09:03:58 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea645
timing-allow-origin: *
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:51 GMT
etag: 0x8DCE8C3132785D7
akamai-grn: 0.94777b5c.1731515575.13cf017
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: zen1RFa4GLG9w/XJIRfohw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 06d360c6-301e-005d-1709-1b1a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 4908
vary: Accept-Encoding
cache-control: public, no-transform, max-age=226843
expires: Mon, 27 Jan 2025 05:52:19 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea644
timing-allow-origin: *
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 16 Dec 2024 04:25:34 GMT
etag: 0x8DD1D89AF04AAB6
content-length: 69606
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ad+ATQX4spqIJ4t9WC3SeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 47eff3ad-c01e-0025-7ee1-4f7223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1734374203.2191d773
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=129670
expires: Sun, 26 Jan 2025 02:52:46 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea646
timing-allow-origin: *
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
content-type: text/javascript; charset=utf-8
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d891ae20-301e-005d-0545-421a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 178
vary: Accept-Encoding
cache-control: public, no-transform, max-age=82512
expires: Sat, 25 Jan 2025 13:46:48 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea64a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
akamai-grn: 0.7c6e5668.1734597160.1d513e6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca734619-801e-006d-1b17-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
vary: Accept-Encoding
cache-control: public, no-transform, max-age=232360
expires: Mon, 27 Jan 2025 07:24:16 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea64f
timing-allow-origin: *
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 308
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rimZQyGjXssDEnuSlgMaJA==
last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81108e6c-e01e-001b-50f6-52c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=369988
expires: Tue, 28 Jan 2025 21:38:04 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea651
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
akamai-grn: 0.6f6e5668.1735117489.ec772e0
content-type: text/javascript; charset=utf-8
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3009e6e7-801e-004f-2716-4a2e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 327
vary: Accept-Encoding
cache-control: public, no-transform, max-age=149152
expires: Sun, 26 Jan 2025 08:17:28 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea652
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
akamai-grn: 0.08071002.1736492681.b17c0040
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 713983c6-101e-0063-4a61-15acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 507
vary: Accept-Encoding
cache-control: public, no-transform, max-age=213031
expires: Mon, 27 Jan 2025 02:02:07 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea653
timing-allow-origin: *
GET

https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:27 GMT
etag: 0x8DCE8C34C6E86D0
akamai-grn: 0.46ba1302.1737709425.8ff20f06
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5WRb79OLEOB99g79FkaKhA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 26334174-401e-0070-6edf-1a9954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=62896
expires: Sat, 25 Jan 2025 08:19:52 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea654
timing-allow-origin: *
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-length: 635
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ec22bf56-e01e-005f-6f11-16186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=106122
expires: Sat, 25 Jan 2025 20:20:18 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea655
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6q/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rs/6q/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 399
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:58:56 GMT
x-eventid: 678e8be3388040e390f33fca7ad26a33
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E217
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-2gt1NVBSWJMBTgyzz/fW3gTKMPL3Z/n+rLCX1ojuDAM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=96875
expires: Sat, 25 Jan 2025 17:46:11 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea656
timing-allow-origin: *
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6927f078-601e-0067-1379-1e5937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.60ba1302.1728944206.8e0aa639
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=101818
expires: Sat, 25 Jan 2025 19:08:34 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea657
timing-allow-origin: *
GET

https://r.bing.com/rp/9Z2GyyGvsKSVNrmOMrTfcv8z_yQ.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/9Z2GyyGvsKSVNrmOMrTfcv8z_yQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 07 Jan 2025 05:55:18 GMT
etag: 0x8DD2EDFDDA09D23
content-length: 7017
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bglrfusHszJbBVCKCoDnQg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e7be383d-c01e-0025-2a5b-617223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=139987
expires: Sun, 26 Jan 2025 05:44:43 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea658
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
akamai-grn: 0.60ba1302.1736580482.7aeababf
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 678b32bb-e01e-005f-480a-17186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=190267
expires: Sun, 26 Jan 2025 19:42:43 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea659
timing-allow-origin: *
GET

https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1707
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MkbY3tM5BoIJgMyWXEttiw==
last-modified: Thu, 10 Oct 2024 00:32:36 GMT
etag: 0x8DCE8C30A28A766
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2b436583-b01e-0021-45a9-3a87a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=255055
expires: Mon, 27 Jan 2025 13:42:31 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea65a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
content-type: text/javascript; charset=utf-8
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2fd2cb16-601e-0067-5c0c-155937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 641
vary: Accept-Encoding
cache-control: public, no-transform, max-age=196420
expires: Sun, 26 Jan 2025 21:25:16 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea65b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:36 GMT
etag: 0x8DCDC5F9B563C48
akamai-grn: 0.8c777b5c.1728633206.1380854
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 10AmaEgXjFITcl8HP2hwyQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ffd16390-401e-0034-3860-154538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 194
cache-control: public, no-transform, max-age=101175
expires: Sat, 25 Jan 2025 18:57:51 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea65c
timing-allow-origin: *
GET

https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 282
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ZsrYRIS4X28M0gd5bb2Heg==
last-modified: Tue, 24 Sep 2024 06:36:36 GMT
etag: 0x8DCDC633D5EAA6A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 38c5c2f5-a01e-003e-5246-645cb1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=261242
expires: Mon, 27 Jan 2025 15:25:38 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea65d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
akamai-grn: 0.60ba1302.1737093359.27bf74ab
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: fr82fvtvcsicFIwsSPlj7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7833081e-501e-006f-0ec0-154244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=244062
expires: Mon, 27 Jan 2025 10:39:18 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea65e
timing-allow-origin: *
GET

https://r.bing.com/rs/6q/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rs/6q/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:41:33 GMT
x-eventid: 66fbe79307cb42788aca723b0131d1b7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E13A
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ulmZTRGTFyaEsDcHlJHkbwE4prKBYE63TVeq11qho9k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=62596
expires: Sat, 25 Jan 2025 08:14:52 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea65f
timing-allow-origin: *
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: +jWBJey2nJqR+pG7G7E28A==
last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 875f5454-e01e-001b-80bd-15c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 197
cache-control: public, no-transform, max-age=57026
expires: Sat, 25 Jan 2025 06:42:02 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea660
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: Tm502hkAmxWuxzxBM7uX9A==
last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 68aca1a5-601e-006c-55a5-1b4143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 584
cache-control: public, no-transform, max-age=397701
expires: Wed, 29 Jan 2025 05:19:57 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea661
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
content-type: text/javascript; charset=utf-8
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e195b3ab-701e-0037-1f2b-16463f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 415
vary: Accept-Encoding
cache-control: public, no-transform, max-age=325817
expires: Tue, 28 Jan 2025 09:21:53 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea662
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
content-length: 490
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3vstlq/a5ZcE98e8La1vPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 777a5872-c01e-0061-68cb-1aae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=256870
expires: Mon, 27 Jan 2025 14:12:46 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea663
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-length: 386
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: abcea7d8-f01e-002d-2c70-156950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=104790
expires: Sat, 25 Jan 2025 19:58:06 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea667
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:15:09 GMT
etag: 0x8DCDC689FBBE351
content-length: 213
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WEjo6St2+BsB3AUDglK12Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dd61854d-b01e-0003-0f95-15e997000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=109877
expires: Sat, 25 Jan 2025 21:22:53 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea668
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-type: text/javascript; charset=utf-8
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce25302a-c01e-002e-0401-156a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 481
vary: Accept-Encoding
akamai-grn: 0.96777b5c.1737621205.1b28a64b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=231211
expires: Mon, 27 Jan 2025 07:05:07 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea669
timing-allow-origin: *
GET

https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:47 GMT
etag: 0x8DCE8C2817D87DF
akamai-grn: 0.4eba1302.1737706322.fd3e0d93
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 63v18faN7ozJ98XstK/S+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0397930e-901e-005b-51dd-36edec000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11731
vary: Accept-Encoding
cache-control: public, no-transform, max-age=77228
expires: Sat, 25 Jan 2025 12:18:44 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea66a
timing-allow-origin: *
GET

https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:16 GMT
etag: 0x8DCE8C26ED294B5
akamai-grn: 0.4c221002.1736761151.1181b6e7
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: ImVBVQpRkRw3Uhb3GEk/ZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d1f0d923-a01e-0071-0e01-3798a9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 66669
vary: Accept-Encoding
cache-control: public, no-transform, max-age=116618
expires: Sat, 25 Jan 2025 23:15:14 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea66b
timing-allow-origin: *
GET

https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:13 GMT
etag: 0x8DCE8C2D89FAB3C
content-length: 20117
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: G9Suce+Oaa1LX/2Nx9LctQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1fbdfb2c-801e-0000-3446-64ea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=142291
expires: Sun, 26 Jan 2025 06:23:07 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea66c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:17 GMT
etag: 0x8DCE8C2DB362309
akamai-grn: 0.96777b5c.1731627830.77d33bc
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: qFAs4wCMzQBOlKg9KBk6eA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ed530f4-c01e-006a-33fe-1ab63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3450
vary: Accept-Encoding
cache-control: public, no-transform, max-age=197943
expires: Sun, 26 Jan 2025 21:50:39 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea66d
timing-allow-origin: *
GET

https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:06 GMT
etag: 0x8DCDC5E23EBB645
content-length: 791
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rqa21C4TqvhBKaqsPZN5dA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7d11a302-e01e-0010-2e0f-35dc76000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=235487
expires: Mon, 27 Jan 2025 08:16:23 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea66e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
akamai-grn: 0.92777b5c.1735732048.100c1c74
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d45caf0c-501e-0020-2e31-16865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 622
vary: Accept-Encoding
cache-control: public, no-transform, max-age=95308
expires: Sat, 25 Jan 2025 17:20:04 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea66f
timing-allow-origin: *
GET

https://r.bing.com/rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 03 Jan 2025 18:42:51 GMT
etag: 0x8DD2C266DC050CA
content-length: 533
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: iXmM/0iacAzJj5a4uiRhcw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d275f3d4-101e-002c-33b4-5e68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=291594
expires: Mon, 27 Jan 2025 23:51:30 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea670
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UJFGe_i3c1Lxhghza2lclR7CxpI.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/UJFGe_i3c1Lxhghza2lclR7CxpI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: PkRqI9V277fNVfDgucCJ9w==
last-modified: Tue, 24 Dec 2024 04:00:18 GMT
etag: 0x8DD23CF7AB70C0C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7e86b8c0-c01e-0048-613c-5ed80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2791
cache-control: public, no-transform, max-age=229943
expires: Mon, 27 Jan 2025 06:43:59 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea671
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: L9Hi8L0edLojA1c18kZUVA==
last-modified: Mon, 09 Dec 2024 12:46:23 GMT
etag: 0x8DD184F7CB91EEC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c22ef6c8-601e-006c-1f4f-604143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 542
cache-control: public, no-transform, max-age=66547
expires: Sat, 25 Jan 2025 09:20:43 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea672
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2290
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0OgEsUc5afhLPnQZRYj75Q==
last-modified: Fri, 22 Nov 2024 10:55:37 GMT
etag: 0x8DD0AE432F16745
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c184123d-301e-0012-6d3c-3dde8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=81086
expires: Sat, 25 Jan 2025 13:23:02 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea673
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:07 GMT
etag: 0x8DCDC629CF7A282
content-type: text/javascript; charset=utf-8
content-md5: TLwZhqYro/p02/6N++ZW5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca88ab6e-e01e-0039-7435-19aa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 189
cache-control: public, no-transform, max-age=73820
expires: Sat, 25 Jan 2025 11:21:56 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea674
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 451
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Db92/67CtFF0jljsKqPMeQ==
last-modified: Mon, 04 Nov 2024 04:21:32 GMT
etag: 0x8DCFC8829FC5441
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e9b4005e-801e-0029-7642-319cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=382328
expires: Wed, 29 Jan 2025 01:03:44 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea675
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 450
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rtxvs37lrHH+iqrm7oyJaw==
last-modified: Tue, 24 Sep 2024 06:21:57 GMT
etag: 0x8DCDC61311C1C65
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd724f1a-301e-005d-780f-321a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=69547
expires: Sat, 25 Jan 2025 10:10:43 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea676
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4zeVItCfYgDPP77N3dw2YBQRoCo.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/4zeVItCfYgDPP77N3dw2YBQRoCo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 14 Jan 2025 16:29:32 GMT
etag: 0x8DD34B8A0559262
content-length: 339
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 1ZEdZ3dZrzaxB9ou3tJ1zg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 13ce0659-001e-0055-1915-6701e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.9798645f.1736929287.1c3c456
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=57443
expires: Sat, 25 Jan 2025 06:48:59 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea677
timing-allow-origin: *
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3306f90e-401e-0016-427d-152b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=239220
expires: Mon, 27 Jan 2025 09:18:36 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea678
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6q/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rs/6q/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 14 Oct 2024 12:33:31 GMT
x-eventid: 678e8cd634eb4d76bc453fb250c8955c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E014
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qdslSBN/Jc9PZBHTHI9mkcMYrlFpOdfjST0tTC5CCgo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=97186
expires: Sat, 25 Jan 2025 17:51:22 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea679
timing-allow-origin: *
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
akamai-grn: 0.a7777b5c.1734320620.33976d3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 200
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 448b9b60-901e-0014-7637-1629f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=86478
expires: Sat, 25 Jan 2025 14:52:54 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea67a
timing-allow-origin: *
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
akamai-grn: 0.45ba1302.1737403414.122b5b50
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e86ad052-701e-0051-48da-16f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1828
cache-control: public, no-transform, max-age=107969
expires: Sat, 25 Jan 2025 20:51:05 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea67b
timing-allow-origin: *
GET

https://r.bing.com/rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 23 Dec 2024 09:08:42 GMT
etag: 0x8DD23316609C95F
akamai-grn: 0.591a1202.1737664234.c00cf5ed
content-length: 1228
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGZmFvLovaV+vrOPPwbS7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 601ec1cb-b01e-006e-470b-5e43b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=222077
expires: Mon, 27 Jan 2025 04:32:53 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea67c
timing-allow-origin: *
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
akamai-grn: 0.4c1a1202.1736329339.6f77d42d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c5bd5a5d-501e-0064-2a4c-155a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 632
vary: Accept-Encoding
cache-control: public, no-transform, max-age=162297
expires: Sun, 26 Jan 2025 11:56:33 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea67d
timing-allow-origin: *
GET

https://r.bing.com/rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 25 Dec 2024 10:47:01 GMT
etag: 0x8DD24D176A0510A
content-type: text/javascript; charset=utf-8
content-md5: HxxeWmLbbUeUU8XtzzROdA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: aaeda6e1-601e-0028-203b-5e9d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-length: 6210
akamai-grn: 0.521a1202.1735959257.e65ea54e
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=155542
expires: Sun, 26 Jan 2025 10:03:58 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea67e
timing-allow-origin: *
GET

https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:33 GMT
etag: 0x8DCEC88590A49A7
akamai-grn: 0.60ba1302.1736520212.6c7420cf
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: ADAJbopPIaunlKI/GZphBw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 39db91a5-401e-0034-0ffe-364538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-length: 5000
cache-control: public, no-transform, max-age=152822
expires: Sun, 26 Jan 2025 09:18:38 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea67f
timing-allow-origin: *
GET

https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:12 GMT
etag: 0x8DCE8C26CBEA77D
akamai-grn: 0.9c777b5c.1732653825.f477550
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: NwHEJrwNKfNaWOfUurgsUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d474208a-f01e-0062-0e2d-37ad48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1913
vary: Accept-Encoding
cache-control: public, no-transform, max-age=106615
expires: Sat, 25 Jan 2025 20:28:31 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea680
timing-allow-origin: *
GET

https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:47 GMT
etag: 0x8DCE8C2C92E361F
akamai-grn: 0.556e5668.1734450806.44f10f78
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1979
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oCgEakDIKvDIYdA4zfrHhQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 62e52e3e-a01e-0035-24de-1a44c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=68738
expires: Sat, 25 Jan 2025 09:57:14 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea681
timing-allow-origin: *
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
akamai-grn: 0.a1777b5c.1734154043.541cd3d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a9070a5-501e-0020-2ef1-17865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=191249
expires: Sun, 26 Jan 2025 19:59:05 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea682
timing-allow-origin: *
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
content-type: text/javascript; charset=utf-8
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d38af904-c01e-0043-0b45-2ac079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 109
cache-control: public, no-transform, max-age=88731
expires: Sat, 25 Jan 2025 15:30:27 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea683
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 04:13:15 GMT
etag: 0x8DD08507D665276
content-length: 955
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Kk0u9e/SalHwM0LSYxaS+g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a67788bb-101e-0063-1eab-3aacb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1736776679.a04086c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=234864
expires: Mon, 27 Jan 2025 08:06:00 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea685
timing-allow-origin: *
GET

https://r.bing.com/rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 25 Dec 2024 10:47:01 GMT
etag: 0x8DD24D176C8BA41
content-length: 2931
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: boJho9/dRbdiRsm7aBhA/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 305a5264-a01e-0035-5c0b-5e44c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.2c367a5c.1735941355.9139ccd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=136460
expires: Sun, 26 Jan 2025 04:45:56 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea686
timing-allow-origin: *
GET

https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:24 GMT
etag: 0x8DCE8C34A2EADC0
akamai-grn: 0.86777b5c.1736552804.18266079
content-type: text/javascript; charset=utf-8
content-md5: UYaER6ThZGEud/Muajg45w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5d7ec60e-101e-000e-50d0-1e069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2303
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
vary: Accept-Encoding
cache-control: public, no-transform, max-age=105066
expires: Sat, 25 Jan 2025 20:02:42 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea687
timing-allow-origin: *
GET

https://r.bing.com/rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 23 Dec 2024 09:08:43 GMT
etag: 0x8DD2331661F49C1
content-length: 11666
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: b3MnZ0xA07I002VvYczIQQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 50ba17c0-f01e-002d-5d0b-5e6950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1735941355.e49ad2c6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=209408
expires: Mon, 27 Jan 2025 01:01:44 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea691
timing-allow-origin: *
GET

https://r.bing.com/rp/k_DNa1TDg1SFhPx_XEzMve_fpFM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/k_DNa1TDg1SFhPx_XEzMve_fpFM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: Vp50FK2RLAdVNy+Eb7RIpw==
last-modified: Tue, 14 Jan 2025 08:45:57 GMT
etag: 0x8DD3477DD52B87C
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c7e5c364-901e-0050-42b1-66f598000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2897
cache-control: public, no-transform, max-age=337572
expires: Tue, 28 Jan 2025 12:37:48 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea692
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:03 GMT
etag: 0x8DCDC5CDFF72AD3
akamai-grn: 0.b1777b5c.1732311025.8c3411f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: V1kiVXzIRqmzPm5TrNimoA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a683a4e2-d01e-003a-0e60-16a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 514
vary: Accept-Encoding
cache-control: public, no-transform, max-age=186935
expires: Sun, 26 Jan 2025 18:47:11 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea693
timing-allow-origin: *
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:56 GMT
etag: 0x8DCDC5E41B5114A
content-length: 259
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2c74b99-201e-002f-0b36-186baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.5e221002.1733830994.2d33e334
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=111030
expires: Sat, 25 Jan 2025 21:42:06 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea698
timing-allow-origin: *
GET

https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:37:29 GMT
etag: 0x8DCEC87A3ED1870
akamai-grn: 0.8e777b5c.1735407454.197cdae1
content-type: text/javascript; charset=utf-8
content-md5: F/FfhRxYlnuZTsg2+6i7VA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e2167499-b01e-006e-04b5-2643b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1336
vary: Accept-Encoding
cache-control: public, no-transform, max-age=169415
expires: Sun, 26 Jan 2025 13:55:11 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea699
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
akamai-grn: 0.9b901002.1732181630.42cfd509
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e18b7d35-c01e-0061-2e2c-17ae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 257
vary: Accept-Encoding
cache-control: public, no-transform, max-age=242166
expires: Mon, 27 Jan 2025 10:07:42 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea69a
timing-allow-origin: *
GET

https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:21 GMT
etag: 0x8DCE8C3014FD967
content-length: 4656
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 04jjFZu5YZ+50YtQ9rT+Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f50e5572-b01e-004c-5be7-312d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.60ba1302.1737528648.b1845979
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=60854
expires: Sat, 25 Jan 2025 07:45:50 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea69b
timing-allow-origin: *
GET

https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:23 GMT
etag: 0x8DCE8C3263B07E9
content-length: 825
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 80z3xDtWBrHD/WXVZ9HXMQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: caf756f4-101e-0005-500f-1b1eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=335595
expires: Tue, 28 Jan 2025 12:04:51 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea69c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
akamai-grn: 0.a3901002.1737646940.5b4b93d5
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3cfa409d-001e-0011-1478-17dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 797
vary: Accept-Encoding
cache-control: public, no-transform, max-age=61150
expires: Sat, 25 Jan 2025 07:50:46 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea69d
timing-allow-origin: *
GET

https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:28 GMT
etag: 0x8DCE8C305642E82
akamai-grn: 0.8f98645f.1736881898.12c726
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: o0P31pAM8ZjqucLAMWUkZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b7d4eb5-b01e-0021-3ff8-3787a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1433
vary: Accept-Encoding
cache-control: public, no-transform, max-age=232610
expires: Mon, 27 Jan 2025 07:28:26 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea69e
timing-allow-origin: *
GET

https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:01 GMT
etag: 0x8DCE8C3193D5444
akamai-grn: 0.a4777b5c.1736781863.2d8d7fb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: K6mYdssyGKO2Fe2fyESYTg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cfc93518-501e-0064-3a2c-375a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8536
vary: Accept-Encoding
cache-control: public, no-transform, max-age=108486
expires: Sat, 25 Jan 2025 20:59:42 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea69f
timing-allow-origin: *
GET

https://r.bing.com/rp/7sVIRENPvB5B2xnhpn-VRMSSlAA.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/7sVIRENPvB5B2xnhpn-VRMSSlAA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1215
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DwBhK9E5T1VOfM841zKcWQ==
last-modified: Tue, 24 Sep 2024 05:52:28 GMT
etag: 0x8DCDC5D12D29F70
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd5c2774-101e-0068-5baf-6db4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.aa777b5c.1737656613.42565a9d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=349314
expires: Tue, 28 Jan 2025 15:53:30 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea6a0
timing-allow-origin: *
GET

https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:39:05 GMT
etag: 0x8DCEC87DD067940
akamai-grn: 0.521a1202.1736211400.2ac251a2
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hmcBay1BgAVA4sBe4FzXJg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0f1608e3-701e-0078-7e5d-318227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=86325
expires: Sat, 25 Jan 2025 14:50:21 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea6a1
timing-allow-origin: *
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
akamai-grn: 0.9d98645f.1737100612.8f17c18
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1628e565-a01e-0071-4522-1698a9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1143
cache-control: public, no-transform, max-age=149517
expires: Sun, 26 Jan 2025 08:23:33 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea6a2
timing-allow-origin: *
GET

https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 13 Dec 2024 07:56:08 GMT
etag: 0x8DD1B4B9A365000
akamai-grn: 0.af777b5c.1735261687.199f7795
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: p/3mO7vALd9wD5esEzLGZw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a2ee3c96-901e-003d-74aa-4d5fb6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 495
vary: Accept-Encoding
cache-control: public, no-transform, max-age=83149
expires: Sat, 25 Jan 2025 13:57:25 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea6a3
timing-allow-origin: *
GET

https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:24:23 GMT
etag: 0x8DCEC85CF372642
akamai-grn: 0.87221002.1735806552.6dce5a6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1043
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PkxdhPHrMXZXxfqaK/YI3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e9cf48d1-c01e-0043-70c7-41c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124508
expires: Sun, 26 Jan 2025 01:26:44 GMT
date: Fri, 24 Jan 2025 14:51:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730296.23ea6a4
timing-allow-origin: *
GET

https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 263
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kSd0hTdqYlIKxD09mZrqMA==
last-modified: Wed, 09 Oct 2024 06:47:11 GMT
etag: 0x8DCE82E33DB4289
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 078f2e03-f01e-002d-3ca9-236950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=214105
expires: Mon, 27 Jan 2025 02:20:02 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730297.23ea8ea
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:09 GMT
etag: 0x8DCDC67C959D1C6
content-length: 230
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e8o72fCkQwkU95GMyH4alQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b1ae9bba-601e-0067-5bc9-175937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.591a1202.1736780455.c2af4dbb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=208508
expires: Mon, 27 Jan 2025 00:46:45 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730297.23ea8eb
timing-allow-origin: *
GET

https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:27 GMT
etag: 0x8DD04929B4990FB
content-type: text/javascript; charset=utf-8
content-md5: PtU28jG6dGjHkVaL3KCYNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: deeb5e10-101e-0027-2583-3970d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3915
cache-control: public, no-transform, max-age=104890
expires: Sat, 25 Jan 2025 19:59:47 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730297.23ea919
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/qOdUw6OeDxBWBEy9t0OhRL3yVWQ.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/qOdUw6OeDxBWBEy9t0OhRL3yVWQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: jOBkNd10hJ2u4xyKsnjOBw==
last-modified: Fri, 17 Jan 2025 15:02:12 GMT
etag: 0x8DD3707EC5EF357
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 27096466-301e-0012-4757-69de8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 26211
vary: Accept-Encoding
cache-control: public, no-transform, max-age=268684
expires: Mon, 27 Jan 2025 17:29:41 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730297.23eaa51
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/heVZKg3LbXfelmr07QxxUN00G_A.br.js

msedge.exe

Remote address:

95.100.153.174:443

Request

GET /rp/heVZKg3LbXfelmr07QxxUN00G_A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 13197
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: XllxsUbAg39HasPFtzKRVQ==
last-modified: Wed, 22 Jan 2025 16:59:04 GMT
etag: 0x8DD3B0613E6430A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a80fb482-101e-002c-5a2c-6d68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=293333
expires: Tue, 28 Jan 2025 00:20:30 GMT
date: Fri, 24 Jan 2025 14:51:37 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b998645f.1737730297.23eaa53
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
DNS

login.microsoftonline.com

msedge.exe

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.akadns.net

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.160.22

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.32.140

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.32.72

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.32.134

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.160.14

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.32.76

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.32.138

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.160.20
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d

msedge.exe

Remote address:

20.190.160.22:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: bd97f2a1-3cab-4545-a425-0eabb7370f00
x-ms-ests-server: 2.1.19899.3 - WEULR1 ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-XY38T_IU5GZSvwmg8vKe0w' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.Ae4AMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAADuAA.AQABGgEAAABVrSpeuWamRam2jAF1XRQE4xmPSTSrw6oLsWU96xSRPuGNu3FGpZxqSq6KkVESiWbcENA5IHn43m0HGbAtK5bYuyvmp-3wQgRxtZxZij2gERFVX5Hx7k-SVZKo9Ivq0fogAA; expires=Sun, 23-Feb-2025 14:51:37 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=Aqmq3ratMWZAoXDmtQ-6nLiCeMQLAQAAAPifJd8OAAAA; expires=Sun, 23-Feb-2025 14:51:37 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEFuOwM0hDFl4t0oH0OggumY1XTIl8UI2zqqB1zg2xU3mRpr_0TqPrsFnJgtprIWxs2x0CTJ5wrXH6rGQFv_M3f-k5WuOcHdP1jCMbj7jmBi7EszU6agobO9uU6v5o2OfyxkTkXlV25sUeERCy5u2xOgcrmf_MKBm3vrqneV0iqy4gAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
set-cookie: stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
date: Fri, 24 Jan 2025 14:51:36 GMT
content-length: 698
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d

msedge.exe

Remote address:

20.190.160.22:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: buid=1.Ae4AMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAADuAA.AQABGgEAAABVrSpeuWamRam2jAF1XRQE4xmPSTSrw6oLsWU96xSRPuGNu3FGpZxqSq6KkVESiWbcENA5IHn43m0HGbAtK5bYuyvmp-3wQgRxtZxZij2gERFVX5Hx7k-SVZKo9Ivq0fogAA
cookie: fpc=Aqmq3ratMWZAoXDmtQ-6nLiCeMQLAQAAAPifJd8OAAAA
cookie: esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEFuOwM0hDFl4t0oH0OggumY1XTIl8UI2zqqB1zg2xU3mRpr_0TqPrsFnJgtprIWxs2x0CTJ5wrXH6rGQFv_M3f-k5WuOcHdP1jCMbj7jmBi7EszU6agobO9uU6v5o2OfyxkTkXlV25sUeERCy5u2xOgcrmf_MKBm3vrqneV0iqy4gAA
cookie: x-ms-gateway-slice=estsfd
cookie: stsservicecookie=estsfd

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 8d9c1eae-4418-47f2-8fed-fc4fc8216902
x-ms-ests-server: 2.1.19870.3 - FRC ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+ams2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-iNcWHbycFhsOp4hTf6HbdQ' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.Ae4AMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAADuAA.AQABGgEAAABVrSpeuWamRam2jAF1XRQESSpVD46bcecKhhtEgIvav00m0KiCtssaSipf-uIpIrduLncIDUh3Pxkj2HzMNfVPRsDicdXJf8zzA9q9WCLJ-EFUSgPvfEJ51OvKUBlWR_wgAA; expires=Sun, 23-Feb-2025 14:52:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=Aqmq3ratMWZAoXDmtQ-6nLiCeMQLAgAAAPifJd8OAAAA; expires=Sun, 23-Feb-2025 14:52:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
date: Fri, 24 Jan 2025 14:52:51 GMT
content-length: 702
DNS

174.153.100.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.153.100.95.in-addr.arpa

IN PTR

Response

174.153.100.95.in-addr.arpa

IN PTR

a95-100-153-174deploystaticakamaitechnologiescom
DNS

22.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.160.190.20.in-addr.arpa

IN PTR

Response
DNS

68.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

68.32.126.40.in-addr.arpa

IN PTR

Response
DNS

237.21.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.21.107.13.in-addr.arpa

IN PTR

Response
DNS

209.205.72.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.205.72.20.in-addr.arpa

IN PTR

Response
DNS

200.163.202.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.163.202.172.in-addr.arpa

IN PTR

Response
DNS

198.187.3.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

198.187.3.20.in-addr.arpa

IN PTR

Response
DNS

166.190.18.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

166.190.18.2.in-addr.arpa

IN PTR

Response

166.190.18.2.in-addr.arpa

IN PTR

a2-18-190-166deploystaticakamaitechnologiescom
DNS

uncoverit.org

msedge.exe

Remote address:

8.8.8.8:53

Request

uncoverit.org

IN A

Response

uncoverit.org

IN A

172.67.149.47

uncoverit.org

IN A

104.21.55.153
GET

http://uncoverit.org/

msedge.exe

Remote address:

172.67.149.47:80

Request

GET / HTTP/1.1
Host: uncoverit.org
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Date: Fri, 24 Jan 2025 14:52:06 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 24 Jan 2025 15:52:06 GMT
Location: https://uncoverit.org/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IofWZTwLYjM2xYnCn8rkvrKJNabn2Mu%2FhZWq9zbKVNZYGdU%2BkiepGkZ1ve6OsiXec%2B8S9%2BwS6ssWDqu%2FCgZlDRmvwyA%2F792ytVX4EHLDc20awCXmP4pi%2FqleH0cOIVCt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Report-To: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=ijxfeGC_3EOZygQE8vOjK3tWZpYBdnrntjJyZuskXrY-1737730326-1.0.1.1-C6uJW1Bp3sivekPezZ5A1kSltY8q1Oj.U1eg6mKnhRqMVquvzuKlzmoXOL0Lr4L4zapyfiNGAe0U5hi86XjH_sWvxd7I2.zLli9nedK4LCu8vxd7JUhfN9d5HOItGJItHQCO3Siy8qmHdwMBx925jA"}],"group":"cf-csp-endpoint","max_age":86400}
Content-Security-Policy-Report-Only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=ijxfeGC_3EOZygQE8vOjK3tWZpYBdnrntjJyZuskXrY-1737730326-1.0.1.1-C6uJW1Bp3sivekPezZ5A1kSltY8q1Oj.U1eg6mKnhRqMVquvzuKlzmoXOL0Lr4L4zapyfiNGAe0U5hi86XjH_sWvxd7I2.zLli9nedK4LCu8vxd7JUhfN9d5HOItGJItHQCO3Siy8qmHdwMBx925jA; report-to cf-csp-endpoint
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 9070d86e2835f653-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=46842&min_rtt=46842&rtt_var=23421&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=445&delivery_rate=0&cwnd=247&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET

https://uncoverit.org/

msedge.exe

Remote address:

172.67.149.47:443

Request

GET / HTTP/2.0
host: uncoverit.org
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 301

date: Fri, 24 Jan 2025 14:52:06 GMT
content-type: text/html
content-length: 167
location: https://www.uncoverit.org/
cache-control: max-age=3600
expires: Fri, 24 Jan 2025 15:52:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hopgG726B%2BX7hvtyw9dCNfs6DRJs3gJwJFkW6etO9JddtRGi%2BGh%2BsSGRV5dSUhJpxk7sB6SKSwZxy8yp652v%2FdyGuBaD9XIpUPpbxACz6oxT31A7D8ypR9VOa4D3Am1U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d86f4e227772-LHR
DNS

www.uncoverit.org

msedge.exe

Remote address:

8.8.8.8:53

Request

www.uncoverit.org

IN A

Response

www.uncoverit.org

IN A

104.21.55.153

www.uncoverit.org

IN A

172.67.149.47
GET

https://www.uncoverit.org/

msedge.exe

Remote address:

104.21.55.153:443

Request

GET / HTTP/2.0
host: www.uncoverit.org
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: IaztqAHKsIPoqn/UWEx3oYgJ2/65iF4ABGSn34CJVnz9U0opyz2a9zHpi0sO72iv2x1aYIlz/95hlviOhxlCPF2FidsVPP3w+FvhpRl3GfK7HxyDXF6VP/iZl4ZHF7hxjkdMG+EXZVJ8FaMmKvRHpQ==$vRgsFusGBUZPOOCPlxTxlQ==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f2%2FZxzYW4tHf%2Bx4IcP5cwmLTinSJT6blqR3%2FPi3ozqWFfRbwdIPQnsQogl0XtnUUBUKrw6HmF1rit13U6V7rXkOmXjlKhM2GgDgteGOnozlqmlAVHabLjWzNryBTAAGf0XDHHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d870ba1e4968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=47502&min_rtt=46743&rtt_var=19047&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2822&recv_bytes=1132&delivery_rate=51384&cwnd=251&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=79&x=0"
GET

https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d870ba1e4968

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d870ba1e4968 HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/?__cf_chl_rt_tk=qNTukBCzOj.jbd63YGvNmQWUt6Kgg2TPzbekYKhr4Cc-1737730327-1.0.1.1-dl5PPhkOotR5J.c6IK8fFiVJ0KbNvrqptpKTDkbnttk
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MeBPJLyUnK7yEKJOZZmtuTS79Gt%2Bh1hucCdyaAIKAAwNTMjWYJ0Ao%2F5%2Fxlk86ykuZdFf6%2BVoqJehiruMbjYmlUrAo8A%2BsQWPpOaT3yRv7PJXOraKlgUSm0Fp1xuYT5Huc4jbew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d871aaf74968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=52884&min_rtt=46612&rtt_var=12341&sent=18&recv=18&lost=0&retrans=0&sent_bytes=10353&recv_bytes=1526&delivery_rate=255897&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=227&x=0"
GET

https://www.uncoverit.org/favicon.ico

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /favicon.ico HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: jAZfCbtdocqWGrU86cVNH2S0VeHKTyivDi9RLymXx+0cyyTseYSgLCW/DViYNAw21lwOMtu+XA88b5WVue+Iueq32pqIhqgY10ksJiwDw3PbAG7OgrEAuMovs25ZynUxpTtw1Ew0IzLs9aX6uc5gNw==$Gw9dWHphatLPgWW4KRr/cg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RNqKt36WP3E108%2FXjtyT50YiivZfxmv%2BFrTHbvvQLXoX%2F28tQOYRjJrP8DZre5Ym6RdYjDj5rKmm7MzHxTe0X0HSPKbSsLPSTzta1wJJzAkC4t0qjvYXKPcTKyDQMeBF04aRBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d8723ba34968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=47822&min_rtt=46612&rtt_var=556&sent=60&recv=40&lost=0&retrans=0&sent_bytes=49412&recv_bytes=1660&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=317&x=0"
POST

https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/flow/ov1/1765904639:1737727949:bKAY-Kv4-pl5Y7LD-XPQahUnLJhQ4KiNbbQ7CZvq1EE/9070d870ba1e4968/rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1765904639:1737727949:bKAY-Kv4-pl5Y7LD-XPQahUnLJhQ4KiNbbQ7CZvq1EE/9070d870ba1e4968/rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr HTTP/2.0
host: www.uncoverit.org
content-length: 3167
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cf-chl-retryattempt: 0
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
cf-challenge: rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: s5NJbJfm3n+ZOD9aPeSP08dpYv71JFEdCS3VjYtV2Js=$vs9a1T+4pfBqtcsRZ2HEiw==
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bu4l5vFSnIPm8x41IBg6vMK%2BH9Ln0fOXikQOleVhj4JvzDEPD3iYbC%2BOJMcPUj3bZ2wq0djWEVx3gFSeuPtcXoMtVwkQiRfR5CZNzFsjgxGO5ir4ekVrJ5wldjdSxty3NaqjWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d872fc554968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=47563&min_rtt=46589&rtt_var=562&sent=68&recv=47&lost=0&retrans=0&sent_bytes=55143&recv_bytes=5307&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=447&x=0"
POST

https://www.uncoverit.org/cdn-cgi/rum?

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: www.uncoverit.org
content-length: 1345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

date: Fri, 24 Jan 2025 14:52:07 GMT
access-control-allow-origin: https://www.uncoverit.org
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9070d8742d674968-LHR
x-frame-options: DENY
x-content-type-options: nosniff
GET

https://www.uncoverit.org/favicon.ico

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /favicon.ico HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: hOxoBeMiHplo/Mu+vnxpFniYIqWmuLCC33Td7kKRj9Whfs+NtaD4uefFjzQn+C4wM/pJ3V3RCaAyIXxYYg8iWc680HKJzdo60XC1d00RjVTDU0G5xLVD9CymuC3sIXbhBhKRCf9i6CH8AVhaQSq7Qg==$+MNsc1uHXlo44J061xwEUQ==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v1PyfoTD8gYSq47hLjCfkmOLuw5iC9y1jA9V0nHYBCUTPAbnVJdh4FYzGj%2FqrvTFGF8n5eNtszBs%2FPG6kBQVHs073bLo4a9pyY4DVQrBoheJF4s4J14yH7RqxtMyFNW9NiO4vg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d8743d7a4968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=53218&min_rtt=46589&rtt_var=11474&sent=83&recv=58&lost=0&retrans=0&sent_bytes=68300&recv_bytes=6835&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=632&x=0"
POST

https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/flow/ov1/1765904639:1737727949:bKAY-Kv4-pl5Y7LD-XPQahUnLJhQ4KiNbbQ7CZvq1EE/9070d870ba1e4968/rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1765904639:1737727949:bKAY-Kv4-pl5Y7LD-XPQahUnLJhQ4KiNbbQ7CZvq1EE/9070d870ba1e4968/rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr HTTP/2.0
host: www.uncoverit.org
content-length: 5440
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cf-chl-retryattempt: 0
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
cf-challenge: rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_chl_rc_ni=;Expires=Thu, 23 Jan 2025 14:52:10 GMT;SameSite=Strict
cf-chl-out: 1ioKbHLoIAkINnqgkCoC5VeJXNzOlPAMJoBFg71VCEjxrIT3qTjUajgIBA5ApiKBoVkMogTSQVnCvWWZIGTr6g==$E6xnV892RIZKXTEqpfwc8w==
cf-chl-out-s: BelKvByPYHdpLqLRjWaLntP2WHbt1FNKakJZPAQYiYT3+gaAdLrccH7s0kvd7c0VTS7WxruW3GKlykmayvMPbetQfHgPEQ1qBVqRFoGIL3Bj7HawO+HQ+RyUO2sqCBMH+Do/NSen3y27YDhsjighpRbUIy8BvSBJYDgDsYKgyeNoNHFIRZwjW1400dFkK22W1Pvq5O4WsmKAAR1Jpn+ZVa7dq3yLMv261C4hG9gl5ODdVRCnYuYkwC4TpHjnHRpKkmjGm5Ke2xlUmyP7iU35zpwROPSa65z0Y8utr9f28dGLQ5zNOEBl4ctMNjHqNsj/JVVY8wY22ubuHQcfK9rU6dh5ktjnXZEV+5tEDs4dNQ1Uxcr0TtJPTF1hEbcnL1m45Xty6C445BE4rPLH+1BCV/dMJ1KTCT9GYHOGqXMR7/Ti18kJ5CYVZNr1x3nAU4xgTGovUAJOM0lg60WiMLwdZCUORe+A/TmWfVnNGr3LB1sBmQlvOLSV80RHYj7x7o5yu4D5Oey3f2FsWaSiCTSXE0BFe4UGTvwsdMi6wVfMoOU5c/S6F9owJZOu6d+YfWk9jepqKWm+RniUhCu6cdLezEG8tlBVShWnzzR9Bl/39SQw+GxfU3IS9YZhYCBFAktumKnH0tk1YMo6qKJuR7fHY57AY57yAW10HKtUf3z1o0qi0czfCLoS122goLTWrhDoziAdKxnYZL7n+biVb9s+Wq5ldcg74/7o0EfNKvC1WQY=$bxfMD97EotXSNI9b/8up+w==
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bq5XR%2BNuoDWanaQv9gDdTPpCcSqqElRNtChNVChblURkLp21SEv5NvO5WoXxPNcdYOClE03y58nQ3R5jXMBBHwzoiCO%2Fcy9myCMT%2FhCJiw%2Bfa7oxq1PenmZ5CCcl%2BXhSNm6PUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d8837d024968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=52552&min_rtt=46589&rtt_var=6843&sent=91&recv=68&lost=0&retrans=0&sent_bytes=75123&recv_bytes=12566&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3145&x=0"
GET

https://www.uncoverit.org/favicon.ico

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /favicon.ico HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/?__cf_chl_tk=qNTukBCzOj.jbd63YGvNmQWUt6Kgg2TPzbekYKhr4Cc-1737730327-1.0.1.1-dl5PPhkOotR5J.c6IK8fFiVJ0KbNvrqptpKTDkbnttk
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: EHiczu9epL6sdZ4UY9TalYvSX8i9GmLqjJ4esYAL10m/oORqt3q2am7Q8OvfnLObbRtxSC11wzwQybDI1CfwCWXvj5rOflFjfg6ft9OGmozIgMzsFVvPO+tsfu+Lc3bFZpwrE2TWJneKpdqlVcchsQ==$X8CWInZWixl4+t8xNXpx1w==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WnSubra0D6XR%2BXIeSQV6yHnwBzknHOAIb63WacPnS9D6kO%2F4Ni%2BQDSQ9Dd7fsX4tTc4BQqdSqjcGEdgVjm2P1rL39PDly9ShYusZ00AKNLRmLdTW2fOdu5Z64OvTMePnsWfSJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d8847e2b4968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=54713&min_rtt=46589&rtt_var=11422&sent=97&recv=76&lost=0&retrans=0&sent_bytes=79554&recv_bytes=17891&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3232&x=0"
POST

https://www.uncoverit.org/

msedge.exe

Remote address:

104.21.55.153:443

Request

POST / HTTP/2.0
host: www.uncoverit.org
content-length: 5037
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://www.uncoverit.org
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.uncoverit.org/?__cf_chl_tk=qNTukBCzOj.jbd63YGvNmQWUt6Kgg2TPzbekYKhr4Cc-1737730327-1.0.1.1-dl5PPhkOotR5J.c6IK8fFiVJ0KbNvrqptpKTDkbnttk
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/html; charset=utf-8
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.uncoverit.org; Priority=High; HttpOnly; Secure; SameSite=None
set-cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g; Path=/; Expires=Sat, 24-Jan-26 14:52:10 GMT; Domain=.uncoverit.org; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-matched-path: /
x-next-cache-tags: _N_T_/layout,_N_T_/page,_N_T_/
x-nextjs-prerender: 1
x-nextjs-stale-time: 4294967294
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GuWhJF3C8mcujNztrEy6Lq1aR%2B%2FNIdqayzUq4A331QJcsa2%2ByzDwkhSSJNcBimB1dvmcsU4qnLAfljjedk7%2Bbdj3X3acnLIQvUYibFU5r2Eu0om4rHvrNpldBrmz7sL5CAFgiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-cache-status: DYNAMIC
server-timing: cfCacheStatus;desc="DYNAMIC"
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d8847e2d4968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=56910&min_rtt=46589&rtt_var=15516&sent=104&recv=80&lost=0&retrans=0&sent_bytes=86527&recv_bytes=17891&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3478&x=0"
GET

https://www.uncoverit.org/_next/static/media/4473ecc91f70f139-s.p.woff

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/media/4473ecc91f70f139-s.p.woff HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.uncoverit.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
last-modified: Tue, 21 Jan 2025 17:41:52 GMT
etag: W/"678fdc60-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ndUWZ9P2XLahJfUzKGNnHNOEPIVBl2rs5KCAnrkvxy56zdot7DS%2B6Zr1q49XTadMSu1%2Bx9WWnxl8%2Fs9%2FdwvVx8%2Bp%2BN94tW4TrE3m9hPhsMiRIQa75HKmvlZBwbw0dZOqlzIxtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d886b8b54968-LHR
x-frame-options: DENY
expires: Sun, 26 Jan 2025 14:52:10 GMT
cache-control: max-age=172800
cache-control: public
content-encoding: gzip
GET

https://www.uncoverit.org/_next/static/media/463dafcda517f24f-s.p.woff

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/media/463dafcda517f24f-s.p.woff HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.uncoverit.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: font/woff
content-length: 66268
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: "54de17e35d80f9313bb2dd684041d8d8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2BE2HJw%2FLc5x%2BA7NtIyEXIhdOwcVpjsvrS7%2BseWnDWMzi3XV12JUcAkcuJYJR21E%2FpeC65qftWXKruIh8i%2BW%2FtHK6QCebGMx%2B6CmKFS0DCbyjaUSiBjwXIlJNGNgQOmu1G556MxGRT5y7jc7LQCpBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 872512
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=SCuMoG6Nk7L1gF3bnSYNXBoXmHYt7WyUEG_rycpPEJI-1737730330-1.0.1.1-FJq1EmMgyAfC4pgbznKe2CiF41aQDPpV5s1VqnByluMj5XHcTj6qjJJJf1Lc4t8f0gfAfL3cRQKWXHU1PaIA.VBclzD5nw.j_R.jrc1IZr9m0yRoO1iReVM_a5xSRW.JLAs7.XdVU136mGtw1Q3jZgVQdaYDAPAUF9mwm2LlpK4"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=SCuMoG6Nk7L1gF3bnSYNXBoXmHYt7WyUEG_rycpPEJI-1737730330-1.0.1.1-FJq1EmMgyAfC4pgbznKe2CiF41aQDPpV5s1VqnByluMj5XHcTj6qjJJJf1Lc4t8f0gfAfL3cRQKWXHU1PaIA.VBclzD5nw.j_R.jrc1IZr9m0yRoO1iReVM_a5xSRW.JLAs7.XdVU136mGtw1Q3jZgVQdaYDAPAUF9mwm2LlpK4; report-to cf-csp-endpoint
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d886a8a34968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58602&min_rtt=46589&rtt_var=18550&sent=120&recv=91&lost=0&retrans=0&sent_bytes=99398&recv_bytes=18796&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3598&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/webpack-b16b6fac8e0f6cc6.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/webpack-b16b6fac8e0f6cc6.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"ea60a73cbc1ea374cd99552c4fa2c25c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=igSd34P0TxrlAYaTw04wIjyi%2BkFxlOnvPCkS%2FataT9Jpm7CbPBweDbpYppIgEo4KvrJU%2BE58WbEISW9U9Tk%2BuNXewvpVUMsMWJ0uoMDwx3hQkUyOIq8a41NEb6bJPLrl58ATwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 41398
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d886b8b24968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58602&min_rtt=46589&rtt_var=18550&sent=159&recv=91&lost=0&retrans=0&sent_bytes=149424&recv_bytes=18796&delivery_rate=1124119&cwnd=256&unsent_bytes=17933&cid=3cf0b3e4002b9685&ts=3599&x=0"
GET

https://www.uncoverit.org/_next/static/css/1deee776b4393c3c.css

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/css/1deee776b4393c3c.css HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"96bbcaf518d5c2c75fb8ed0989d37093"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qH9kspc%2B073xJM9ZgXGk0%2FKjfksaChj0Zh4NN55T3DpYhwYHv3%2BtVGtzuKsTxVUYIisuc7B%2FLADKr8rQ%2BKPH8FqyWhq%2B2wsfc%2BIMYfr6SmRMdYQz6%2FkkA2zGvBO%2BVKP5hv01uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 121838
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d886b8ad4968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58602&min_rtt=46589&rtt_var=18550&sent=173&recv=91&lost=0&retrans=0&sent_bytes=167357&recv_bytes=18796&delivery_rate=1124119&cwnd=256&unsent_bytes=986&cid=3cf0b3e4002b9685&ts=3600&x=0"
GET

https://www.uncoverit.org/_next/static/css/164ebc3b1eea233f.css

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/css/164ebc3b1eea233f.css HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: font/woff
content-length: 67864
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: "f4b01dd0d653129e8387061b0c70ffc2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wTZQbh%2Fjbk17l8OXIgKcD9dQ6O4hjd0eWIrDTEmyKBfTs3O9kF0LGh3lrH4kIn7Lia4qFfj8Z%2FtPybc%2F5uXDf3PR6PLt6uj6mFkduMYcJ3aHfYuwaDdpj0S7lsM6W0iuKzQe%2Fjeb%2FNEVfr2IfQ6wWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 49255
accept-ranges: bytes
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d886a8a64968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58602&min_rtt=46589&rtt_var=18550&sent=179&recv=91&lost=0&retrans=0&sent_bytes=174324&recv_bytes=18796&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3601&x=0"
GET

https://www.uncoverit.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"137596b99aa2b293aef3f3c52ec34d3f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aXKTxZxBA4i0Ph6FeleAyeIU1RHUYd1UtNdhoq7t5ICYR3dx2ywzgAq7g9s6eAUI4JMkYgkogTQO1guejz2BUAUK8oSJfzy4vjpk62EvHcw6YlXOL4wJaUW%2FW0K%2BfgJCpr5wDUbwG%2Byk%2BjQ3vJkt8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 872511
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d886b8a84968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=58602&min_rtt=46589&rtt_var=18550&sent=230&recv=91&lost=0&retrans=0&sent_bytes=242922&recv_bytes=18796&delivery_rate=1124119&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3609&x=0"
POST

https://www.uncoverit.org/cdn-cgi/rum?

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: www.uncoverit.org
content-length: 1096
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/?__cf_chl_tk=qNTukBCzOj.jbd63YGvNmQWUt6Kgg2TPzbekYKhr4Cc-1737730327-1.0.1.1-dl5PPhkOotR5J.c6IK8fFiVJ0KbNvrqptpKTDkbnttk
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 204

date: Fri, 24 Jan 2025 14:52:10 GMT
access-control-allow-origin: https://www.uncoverit.org
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9070d886d90c4968-LHR
x-frame-options: DENY
x-content-type-options: nosniff
GET

https://www.uncoverit.org/_next/static/chunks/app/page-28f2f2f5f7b69c81.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/app/page-28f2f2f5f7b69c81.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"beac2a4a92fcde81dbbc17e915fb51e3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NfiMPTCs18Gw2kVOXM5hVGx1G%2BN2KgDRDVv2QxGv4%2BkZL6D%2FUnNVbHMAKBBhPWS%2FMI774Wh4nXqRcoG0keKCeiVtV9IXhY%2BQsarXe9zMM4zsk76CAvS3CI46jcNlfdSV2vmm4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 41398
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ba014968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=248&recv=208&lost=2&retrans=9&sent_bytes=257114&recv_bytes=21013&delivery_rate=1970561&cwnd=10&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3762&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/923-fb365082ec567bd5.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/923-fb365082ec567bd5.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"10852b39a17f4d728d575ff31f5ea495"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fxc2UXe%2FG6oBXoGs2MEu8jIM17QfvkeGZFK8l8cBiRB%2BrfO5F%2BAfp%2Bo42sAatCjl35r5WIbaQogKvyzsa2LSiqwK5czJVrFvnG8isaR6MUUS5bS0Cp1Hg51%2FelA6%2Fl3J%2FWpBpnAmvbHJi3Ku7qjEKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 872511
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887b9fe4968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=250&recv=208&lost=2&retrans=9&sent_bytes=258043&recv_bytes=21013&delivery_rate=1970561&cwnd=10&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3762&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/801-82f95be1bcb75dd7.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/801-82f95be1bcb75dd7.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"01c478c6a1d598b77f05652c984eed44"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yjFF3CwsG%2F7gHv6sLNGq2KRgdhiez1P4CCjNByZ43%2FMMZL7sPUmcSiSk7mCT%2B2qddI2%2BQ2F25doT9ORWyH%2FuylF8WE1uDp7XWOU1GIgTbg1qHmGckOjgLuR27WYhxbz%2Bc2apkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 409
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887b9f24968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=253&recv=210&lost=0&retrans=9&sent_bytes=259860&recv_bytes=21013&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3763&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/623e1c9f-e54c00be785d8657.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/623e1c9f-e54c00be785d8657.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"73838e79ebe13f2733783772f162b7ab"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ue28adcFxjMsSfULsAlqTxdwtAS%2FdRsgK6CLQtdzc95XoZXEGVt8L5JlFChTNcFJQkgqmU%2FQlaj0PMSDoeQFOrLACIKbYbNiB9tiY26AoAUE3TkO%2BriWB8RhIrfuUmYqOW9y%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 409
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887b9fa4968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=261&recv=210&lost=0&retrans=9&sent_bytes=268485&recv_bytes=21013&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3763&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/c556396d-2fbf278af260a4c9.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/c556396d-2fbf278af260a4c9.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"71de57c8aacdf6a9cdc1ac8c1513ca99"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QmRJerPFLvy0vrDuqHK98yQWl3QObxaeOipgaXH7pO%2BBwX%2FB%2FKc06KIF1i9IYbBLx02iNpx4P%2BBt5gW24r43ac6NoAVIuBRzwI%2Bl5B8EIa5wFdt%2BPlPnbYBD4TS%2F4R7el086MA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 409
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887b9f84968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=273&recv=210&lost=0&retrans=9&sent_bytes=281789&recv_bytes=21013&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3763&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/25a0ba94-4bd329d24b1e8639.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/25a0ba94-4bd329d24b1e8639.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"3f031e81a206066f4448eff9e914925a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BpgEbI5ZChoCOCwFpJgDaAOqceWTd86dixG42%2FglY1LP6CmjbICS%2BNj6clCJccr%2B797CMNH8QnlkPsRp%2BkGeEpdA4uoGVmkYmuFZ0g4NLe5KhQ%2FoSJ2VCgl6bdC0TDKlzRSunVr9nd5cTdsX6x0BYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 49255
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ca074968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=300&recv=211&lost=0&retrans=9&sent_bytes=315568&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3765&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/5e319edb-fbe4f7fcecf99afc.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/5e319edb-fbe4f7fcecf99afc.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"4693af3fb34b36172c7d228e7b26d94b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XLo8usPOuj4DbrKfVDCkEaeAGo2HaEDpOZJQeE7OM8cA%2Bl83u3s%2BdYA2jG55WoOoiZqzU%2BYXXviMkX%2BxsTo7AkoSoLMPUto%2FyTjuuWy6TUIymR2oFkY4L1QJT7410mL%2BKLPV5daPK1jvamwZrSNB2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 49255
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ca024968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=304&recv=211&lost=0&retrans=9&sent_bytes=319733&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=31&cid=3cf0b3e4002b9685&ts=3765&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/app/layout-f2139370064121f0.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/app/layout-f2139370064121f0.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"cfc644330d57abd76e579fb73db77a38"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JhO%2B21C8scn6fZx3E8IIjk1B3bRO3M2fMfWV%2BGNtdAfpCjKaOh3l8mXgsKWqtD956KyI44O3ob53BoyldELummQ0JVtZ7Wcx4HKmWBslc2xSQ4xVWly%2FOfIqUp6dbrSuyRtbk7%2F0fwnqwHdO7nxOZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 872511
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ca054968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=304&recv=211&lost=0&retrans=9&sent_bytes=319733&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=1392&cid=3cf0b3e4002b9685&ts=3765&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/main-app-d6d1ca59a1b97310.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/main-app-d6d1ca59a1b97310.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"b390c581182de399b9a3ebb93f0156e4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pqYgOIVKSHStB3wL7B5N%2FxrrQEDr4naKU%2BJ%2FNfl7gBX43yh88Nt0Jl04iyZWRLUbQ9uM32qTcRpjh7Rq%2FVjM7MBqDcqgYRIH106PnDHYsUXF9POK8KZz9EpwstJRxwDclBaUSLLp78ksgJQjVeENGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 872511
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ca0c4968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=306&recv=211&lost=0&retrans=9&sent_bytes=321985&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3767&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/139-1c65d3bf1798e2df.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/139-1c65d3bf1798e2df.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"1f507cb6b9509cefcd766be1c33a8fe0"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RVOrPtlYAEexvgP4wtSfYTKLnVEnHZypfgtTJknzLnShXNHBhM7yG%2FCMq4XgMH8FeToCuQSJ734mwGJQXfEqixw60e4O1WTe5xM7eYy4KIxdlJ1f%2BBGVsOsUTD4mZi6CmYyswm6gp3rhKMh98nJa5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 49255
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ca0a4968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=344&recv=211&lost=0&retrans=9&sent_bytes=369907&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=5884&cid=3cf0b3e4002b9685&ts=3768&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/a9d9791c-1f37140e0febae80.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/a9d9791c-1f37140e0febae80.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 302

date: Fri, 24 Jan 2025 14:52:10 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UocUivbRKAT6a5B5qNlvaf6M2ms1FGZbUnzckArd%2B2xr1HBQWnzHueK%2BxXxmi9bUiGWlpTCq4046Eoq4GaPAE4jABbOrHWHMiMhqPTxzFbchozpSZn2%2BGuLd4zulGsVkISfjRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d887da234968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=387&recv=211&lost=0&retrans=9&sent_bytes=427101&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3772&x=0"
GET

https://www.uncoverit.org/cdn-cgi/challenge-platform/scripts/jsd/main.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"ca01558ea58db98257b7e9d050770d1b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2sfVoYsyOswWqcy8dEj8QJbiWLmT5pLHG%2FH%2FTN44jmrFYcf6KVLKHeARyYiomNcr1Mfo%2FMVHpd4NmGz19GnuJD3s0bPUdTlFlwih2VoXR3f1JwjjtllheOeGd7ZyPv%2FoWKQUTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 41398
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d887ca094968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=57498&min_rtt=46589&rtt_var=1126&sent=388&recv=211&lost=0&retrans=9&sent_bytes=427725&recv_bytes=21099&delivery_rate=1970561&cwnd=256&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3778&x=0"
GET

https://www.uncoverit.org/favicon.ico

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /favicon.ico HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: image/x-icon
access-control-allow-origin: *
cache-control: public, max-age=86400, must-revalidate
etag: W/"1a166d6dc0b71587b08b71ba40e3d5da"
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-matched-path: /favicon.ico
x-next-cache-tags: _N_T_/layout,_N_T_/favicon.ico/layout,_N_T_/favicon.ico/route,_N_T_/favicon.ico
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NjizsegpuhENkO7uuLM%2FQzUTEb1eUAK0Xx0S2Sgn1SHGgoeONQ%2FgqqGGxib69lMhof46Z8cSZNotL0y%2BPIgO9iA%2BrVtb9KRsUL8Gb9TQP5JDoAE%2B5wp%2BlFMX%2BrT6yAjcTt9ibeiA3Ha6RmUe%2FOAw0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d8884a994968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=54446&min_rtt=46589&rtt_var=971&sent=408&recv=305&lost=11&retrans=26&sent_bytes=451582&recv_bytes=21166&delivery_rate=2604525&cwnd=10&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=3936&x=0"
POST

https://www.uncoverit.org/cdn-cgi/rum?

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: www.uncoverit.org
content-length: 1529
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 204

date: Fri, 24 Jan 2025 14:52:11 GMT
access-control-allow-origin: https://www.uncoverit.org
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9070d8893bcc4968-LHR
x-frame-options: DENY
x-content-type-options: nosniff
GET

https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js?

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js? HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gFtbLvr3tJe5be%2FcOcrlBdh6KJgQOxIcMAoo5UVNNcb9oC7%2B3GUkpIulBeiGfvvRGMpTBaeAl%2BHjbae6IyXDaycSXUEelugCuNaOxEybcNVa0DXiwJE3NJ%2BGyNzyPy2f8seWJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d8897c2e4968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=53165&min_rtt=46589&rtt_var=1226&sent=414&recv=322&lost=0&retrans=27&sent_bytes=455009&recv_bytes=22900&delivery_rate=2604525&cwnd=283&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=4037&x=0"
POST

https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/jsd/r/9070d8847e2d4968

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/challenge-platform/h/b/jsd/r/9070d8847e2d4968 HTTP/2.0
host: www.uncoverit.org
content-length: 14059
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.uncoverit.org; Priority=High; HttpOnly; Secure; SameSite=None
set-cookie: cf_clearance=AmFEw6GmUBDDNC1_EIDMlVF87BZpjWNThabOkiPx13w-1737730331-1.2.1.1-TpTk900B.RpCBcopYxYts7pIWCMHC5a0bqYmQ8dtmN_GncqE3tfgtF6pDVDpg.Tzih0T66rcxeMmUW6Dv2lNIJDDQ2J14AkGNwgvWWyh7bN3htcdUw3bxCtWbAJJ5QiJ6Zbe6w_9AcCsZptdH2Ey14WaFHe5rKSlFwccGq8ZNskpsB6862Atv3xot5SXJgBJN5wqAcPGp9u4qrbV0_2Q.bgks9DklUVz3nSsD7cu6m2hCFtcV9ZU0vsStfKuGjs_h6tPpT.1PbECEXGUFj7_BpXCeUiUgfzabh1MJKssynZRQQPJ_d9f3zqHJCurcDS7F0I9rgJ0R3nAt3aE7QLwmQ; Path=/; Expires=Sat, 24-Jan-26 14:52:11 GMT; Domain=.uncoverit.org; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F9QXNtMdHEwZJdIMBS9%2Bmqvufwed1KXZ%2B3orojFMITJKb0%2BI%2F7G4xHFnChglx2t1LxEpBzIjxQdx%2Bk%2FpfzYuTQQQy8%2FXVN0r4Sk52kzR9Wa6kHJhL%2FpfGh04SiDF%2FxqxanEtxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d88bdeca4968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=62664&min_rtt=46589&rtt_var=16606&sent=434&recv=350&lost=0&retrans=27&sent_bytes=459635&recv_bytes=51354&delivery_rate=2604525&cwnd=289&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=4426&x=0"
POST

https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/jsd/r/9070d8847e2d4968

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/challenge-platform/h/b/jsd/r/9070d8847e2d4968 HTTP/2.0
host: www.uncoverit.org
content-length: 14059
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.uncoverit.org; Priority=High; HttpOnly; Secure; SameSite=None
set-cookie: cf_clearance=HBvaNQK_65I7XqDCyEoYeyrxtrNQ32f6.4Fm2JMwdBU-1737730331-1.2.1.1-pYfLZTRI8IYTXzG.GIUnrCNkgUldOZSFHHsUKO.9s2I.abj2nFkJypvwNRFvLWHJ765P4qbAJdbvXBWCSrXYRTQM.7bpF.pL_No9PuWrNCiubaOHHB6dnQT7UeEw9wMlyWjF40mtIJNFMVC2aUPzVoTBZVYJnQPGBR4uXuMqii20yj9TbYiN1AkWxXENjLil5CV8xLzkBJ3mZKhpNaXcTjuWoifDmSoA45Ig2W_DJKa_VU3B0Q_DYHWgr7VvxGzNnsTSkRibxTbZnKI05XDDuAQLq4NYkNi0uVYGhiEv.lts9gfN8nbVNij9D70i9_vMtvC1pvXF8lHz.e5DWLj.dg; Path=/; Expires=Sat, 24-Jan-26 14:52:11 GMT; Domain=.uncoverit.org; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NYHnkscyMWx55k9Wi%2FDRB6e%2BVkjuzbvv30I5c43ljYwES2nDIUdrNzgnUCCtSf6vXAxz9gxsc10N5fuGpiJAtf3vgRozvZJOOQ5NFbvHTnVvGnfpLH%2BkDlQZv33AzpQpO8bCmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 9070d88beed04968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=62664&min_rtt=46589&rtt_var=16606&sent=435&recv=350&lost=0&retrans=27&sent_bytes=460688&recv_bytes=51354&delivery_rate=2604525&cwnd=289&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=4433&x=0"
GET

https://www.uncoverit.org/_vercel/speed-insights/script.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_vercel/speed-insights/script.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: text/x-component
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"68c626726a0e33c18f2502ee14a532cf"
vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Router-Segment-Prefetch, Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-matched-path: /about.rsc
x-next-cache-tags: _N_T_/layout,_N_T_/about/layout,_N_T_/about/page,_N_T_/about
x-nextjs-prerender: 1
x-nextjs-stale-time: 4294967294
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wp9nB%2Fqtv7qs7e%2FlCDrXwx2co0mt1KJkHoWwNQMzC96q5VaRuMAx9K1m9NVpElA9SYrNkRFRbWQIzRfRga6SHXGTg4urdGAgkBh4SxOxifMszqBOJsnrSVV4fFfHWlBlRYCKUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-cache-status: DYNAMIC
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d88c2f644968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=60915&min_rtt=46589&rtt_var=15952&sent=437&recv=353&lost=0&retrans=28&sent_bytes=462689&recv_bytes=51633&delivery_rate=2604525&cwnd=291&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=4723&x=0"
GET

https://www.uncoverit.org/about?_rsc=1ld0r

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /about?_rsc=1ld0r HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
next-router-state-tree: %5B%22%22%2C%7B%22children%22%3A%5B%22__PAGE__%22%2C%7B%7D%2C%22%2F%22%2C%22refresh%22%5D%7D%2Cnull%2Cnull%2Ctrue%5D
dnt: 1
next-router-prefetch: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
next-url: /
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
rsc: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: cf_clearance=SAO840K66zhwJ4OdJDsQdBq.etxmeIThJrDxyfENbIA-1737730327-1.2.1.1-f5t2WQlyv0RKJ.MrEGmdbfpORhIoxXtKKSm7U_74otxe.aeOCL0IgPG2S7UrpQ1eIeB9AES.cTrGHhaKR_r84cXdBEP9c3DrzeSPzI3ujOiVChHasbEfzDUlS81bvS9A6UzS2gBkXvF8CblslGkGxjQrD.RO0BavcQvlzkYAX5TbPl4s34hUqn9dsrMQc7Acnpf8rkuF6E0eDoihIbG51J_hf29GGKyp.mVWCAR5r87GV1wUPZmMRh4Sw7Z7q3YembPnY28_BkRcr.Dwy6ums6K4Dj5za.ExTDDJ2cavScjA7J5MC1FcTwNCBhf6xWUP4kOUlj5qVJZRA_XlKASI6g
cookie: _ga_46BHLDMYVM=GS1.1.1737730330.1.0.1737730330.60.0.236911425
cookie: _ga=GA1.1.674978887.1737730331

Response

HTTP/2.0 404

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=86400, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-matched-path: /404
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5gilWix6xQnpB8eqvGXcGklMZ%2BGaKv5NxTcDeAnftbd%2B4Nhm49X%2FdwY2dDxKOAryZjXV55e0NckR%2FDiDcQAGiKTzcUpAkwABWp%2BsdWhfaJSpidGow%2Bg8z4DvR50WNzs6eAOaUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: EXPIRED
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d88beed54968-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=60915&min_rtt=46589&rtt_var=15952&sent=441&recv=353&lost=0&retrans=28&sent_bytes=465608&recv_bytes=51633&delivery_rate=2604525&cwnd=291&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=4752&x=0"
GET

https://www.uncoverit.org/_next/static/chunks/app/about/page-9e64c734f974b059.js

msedge.exe

Remote address:

104.21.55.153:443

Request

GET /_next/static/chunks/app/about/page-9e64c734f974b059.js HTTP/2.0
host: www.uncoverit.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_46BHLDMYVM=GS1.1.1737730330.1.0.1737730330.60.0.236911425
cookie: _ga=GA1.1.674978887.1737730331
cookie: cf_clearance=HBvaNQK_65I7XqDCyEoYeyrxtrNQ32f6.4Fm2JMwdBU-1737730331-1.2.1.1-pYfLZTRI8IYTXzG.GIUnrCNkgUldOZSFHHsUKO.9s2I.abj2nFkJypvwNRFvLWHJ765P4qbAJdbvXBWCSrXYRTQM.7bpF.pL_No9PuWrNCiubaOHHB6dnQT7UeEw9wMlyWjF40mtIJNFMVC2aUPzVoTBZVYJnQPGBR4uXuMqii20yj9TbYiN1AkWxXENjLil5CV8xLzkBJ3mZKhpNaXcTjuWoifDmSoA45Ig2W_DJKa_VU3B0Q_DYHWgr7VvxGzNnsTSkRibxTbZnKI05XDDuAQLq4NYkNi0uVYGhiEv.lts9gfN8nbVNij9D70i9_vMtvC1pvXF8lHz.e5DWLj.dg

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:12 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
etag: W/"550b771d666c81699b8ff1c769828f79"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MBkgSYXTwwhvCf5TaqDePVQiIt79nkV0mVSILfYzTf%2BqO9JSU4u7h9WwsyWVSUv0YDYUiQoWNs%2BTvmrvLTbG1pfnZfzUv3i0%2F%2B6Apu3RQQhns0SdVry5ZYJE8sVxP%2FQl1ncJlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: MISS
strict-transport-security: max-age=0; preload
server: cloudflare
cf-ray: 9070d8900b264968-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=93764&min_rtt=46589&rtt_var=69146&sent=447&recv=359&lost=0&retrans=28&sent_bytes=469285&recv_bytes=52091&delivery_rate=2604525&cwnd=300&unsent_bytes=0&cid=3cf0b3e4002b9685&ts=5275&x=0"
POST

https://www.uncoverit.org/cdn-cgi/rum?

msedge.exe

Remote address:

104.21.55.153:443

Request

POST /cdn-cgi/rum? HTTP/2.0
host: www.uncoverit.org
content-length: 1488
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga=GA1.1.674978887.1737730331
cookie: cf_clearance=HBvaNQK_65I7XqDCyEoYeyrxtrNQ32f6.4Fm2JMwdBU-1737730331-1.2.1.1-pYfLZTRI8IYTXzG.GIUnrCNkgUldOZSFHHsUKO.9s2I.abj2nFkJypvwNRFvLWHJ765P4qbAJdbvXBWCSrXYRTQM.7bpF.pL_No9PuWrNCiubaOHHB6dnQT7UeEw9wMlyWjF40mtIJNFMVC2aUPzVoTBZVYJnQPGBR4uXuMqii20yj9TbYiN1AkWxXENjLil5CV8xLzkBJ3mZKhpNaXcTjuWoifDmSoA45Ig2W_DJKa_VU3B0Q_DYHWgr7VvxGzNnsTSkRibxTbZnKI05XDDuAQLq4NYkNi0uVYGhiEv.lts9gfN8nbVNij9D70i9_vMtvC1pvXF8lHz.e5DWLj.dg
cookie: _clck=btil0c%7C2%7Cfsu%7C0%7C1850
cookie: _clsk=104fysn%7C1737730332109%7C1%7C1%7Cu.clarity.ms%2Fcollect
cookie: _ga_46BHLDMYVM=GS1.1.1737730330.1.0.1737730338.52.0.236911425

Response

HTTP/2.0 204

date: Fri, 24 Jan 2025 14:52:46 GMT
access-control-allow-origin: https://www.uncoverit.org
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 9070d9659aba4968-LHR
x-frame-options: DENY
x-content-type-options: nosniff
DNS

47.149.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

47.149.67.172.in-addr.arpa

IN PTR

Response
DNS

153.55.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

153.55.21.104.in-addr.arpa

IN PTR

Response
DNS

challenges.cloudflare.com

msedge.exe

Remote address:

8.8.8.8:53

Request

challenges.cloudflare.com

IN A

Response

challenges.cloudflare.com

IN A

104.18.95.41

challenges.cloudflare.com

IN A

104.18.94.41
GET

https://challenges.cloudflare.com/turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.uncoverit.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 21 Jan 2025 23:46:19 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d8739fc3ef05-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://sourceforge.net
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 21 Jan 2025 23:46:19 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9ab59cbef05-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
server: cloudflare
cf-ray: 9070d874d9d76552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 9070d875caf76552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9070d874d9d76552&lang=auto

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9070d874d9d76552&lang=auto HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:07 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 9070d875caf36552-LHR
alt-svc: h3=":443"; ma=86400
POST

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1073475835:1737728173:P8fvC8NZ4cIEpzGR6386jPozHRMcrKSmbZnXgB4FXbQ/9070d874d9d76552/.2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0

msedge.exe

Remote address:

104.18.95.41:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1073475835:1737728173:P8fvC8NZ4cIEpzGR6386jPozHRMcrKSmbZnXgB4FXbQ/9070d874d9d76552/.2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0 HTTP/2.0
host: challenges.cloudflare.com
content-length: 3960
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
cf-chl-retryattempt: 0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
cf-challenge: .2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://challenges.cloudflare.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:08 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 6LhO1IhUhunrff4o3y6q5FJ0ew1tjuPzGFmerGJ9QJhqz18QKzqD9zwRq+/Y/8jYoQfk4XJZipgsDmZ+2hTFH41PEN1jRQGSHt5JG5wMlaqm0mHXvsT74VgcQMs2qPtwApe7c7kLlWXfMRi62hfcvPxhqSf6EStzTrIKhMDB09LXkcNUmlS6KnTj0Yy1hdKDsA5wkEdjAjLDJRavXfSW6QxUoZlkqARL5hDjbDsjZBMFkpG7p9LqDCmNNowSXuOyDSOGBE/QPqLTBY3y6f7uSH781ehXYDEL+m8sr8J8C76xLWx+YyqpqlrWenLplaFsXgbZt1/7eLtZFqIlqy6OR1OR1wlrmYODTnDXxyODJebpx5QSK/URwR9XN34N+5L7FTJE6t2z+WrJ2fqIH2aLr4mDRp/Z8cXkCUPETmE6z0hg3c4LhhdSArMJkuMM8+fwR9Vwu12oV22mdfGD/mt2HfHV05FC3pokJXMXnvRmfiA=$67rjd63jf08a37sE7G16Ng==
server: cloudflare
cf-ray: 9070d8774caf6552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/9070d874d9d76552/1737730328220/84ed4fe911c27464cfdd73343bfae0258da7c7037751aae5346cdc99d41c03e9/rSn1ps5SxKRYfo9

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/pat/9070d874d9d76552/1737730328220/84ed4fe911c27464cfdd73343bfae0258da7c7037751aae5346cdc99d41c03e9/rSn1ps5SxKRYfo9 HTTP/2.0
host: challenges.cloudflare.com
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 401

date: Fri, 24 Jan 2025 14:52:08 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20ghO1P6RHCdGTP3XM0O_rgJY2nxwN3UarlNGzcmdQcA-kAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIITtT-kRwnRkz91zNDv64CWNp8cDd1Gq5TRs3JnUHAPpABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIITtT-kRwnRkz91zNDv64CWNp8cDd1Gq5TRs3JnUHAPpABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA0Bg4_P76wfMEmDzHK9N8yyWImWxay1z7HPRnKoNyIW_Kt8Rk4JPinNDLa3LlBgTYMoR4v3RICP4X4zaAzY3cxkst6Rpr-Py-3J7VIv4tDxbhYpyAJpzUm3uLOHmGHY_CoipSic72M1Fa_ltrFceiOzvXMAMmq9kyyOOtf9OkrAyjZjlUWJke61DQJEIuvkzoa1TZ0vzYhu0Tk_PmJkQB7g-FiJne2dp-7uJFizTT0oatWJgKSOcI9bZpT__32BhyfyCjE-1JMrNXglwYWKaIdnnmWh-1b9zPsCSav_GOwSPUyhyqOykRladYl-k7vKxZJ2AtvfObQaF5muLp21p9sQIDAQAB", max-age=20
server: cloudflare
cf-ray: 9070d879ffb16552-LHR
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/9070d874d9d76552/1737730328225/5n4Jzbhs1cbAeJM

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/d/9070d874d9d76552/1737730328225/5n4Jzbhs1cbAeJM HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:09 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 9070d880cfce6552-LHR
alt-svc: h3=":443"; ma=86400
POST

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1073475835:1737728173:P8fvC8NZ4cIEpzGR6386jPozHRMcrKSmbZnXgB4FXbQ/9070d874d9d76552/.2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0

msedge.exe

Remote address:

104.18.95.41:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1073475835:1737728173:P8fvC8NZ4cIEpzGR6386jPozHRMcrKSmbZnXgB4FXbQ/9070d874d9d76552/.2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0 HTTP/2.0
host: challenges.cloudflare.com
content-length: 29656
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
cf-chl-retryattempt: 0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
cf-challenge: .2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://challenges.cloudflare.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: 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$EZA+wXRrDRLBefiL0NHkmA==
cf-chl-out: Po8V/ghC2zOzOV31znuzz46L0hvQ8aXqoSidX1CYScCuu36DKj6AceeHeAqImR257kxn5kKyoJOqP7tB1eLCHgaL5yNwDDMeEUixQKx/FMs=$ro1lK3D5YMaxSoDP3vx9aA==
server: cloudflare
cf-ray: 9070d88289db6552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
server: cloudflare
cf-ray: 9070d9accd786552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 9070d9ad8e536552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9070d9accd786552&lang=auto

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9070d9accd786552&lang=auto HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 9070d9ad8e506552-LHR
alt-svc: h3=":443"; ma=86400
POST

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

msedge.exe

Remote address:

104.18.95.41:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ HTTP/2.0
host: challenges.cloudflare.com
content-length: 3932
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
cf-chl-retryattempt: 0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
cf-challenge: qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://challenges.cloudflare.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:58 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: c+kODY2rdwQyZ6sMUWV9giprU84JOEkXUSvX9bg/rpuZY8HyLt9GmvOHO+uGFu6s5dpDfN4QHBJ5D65uCVcvQvvg+fkJeBnxM+bhqyj8xelCHi8JGcbmL4TN3BjMS4AmkGZFTs/h6V3WWK0YMDuzV+TfCsPHLKGA3/upS1tguzvkTx0VYs32G1xqFoZkZ00qKTdw/FXDeCzrq5vqihnISaPOUWzbz134Yf8O5AlP1VwLQtloMO5onVgPRsjy/CnhBLjm2spibR4ExddtJNSnAcxRY02kNMhEfIjM0rCWp9Tk694T9qzSE+eXRjGEaMULQERzmGy/rQ7VavUNJxY6wTQoMslaECGNB3eIsu6WmH2OZptVsh5fx+zCZo77MxRBzasfEnad6oXHjhpTh+n0XMREDoXjVrBZiK0u0kWPIqJ+xErWw3VliOHMntKzKuGyU0uWYv5580VsAOwuF8T0AR9pLEsAg7h4EbSMffYMJAs=$ABRoVS/ZmKqCI2IJLkywqA==
server: cloudflare
cf-ray: 9070d9aeefd46552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/9070d9accd786552/1737730378085/0660a23a1aea779144006f5f83c79ec3c321df50a265015c0439d676efa59ece/fMw1WVeJj94IZPZ

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/pat/9070d9accd786552/1737730378085/0660a23a1aea779144006f5f83c79ec3c321df50a265015c0439d676efa59ece/fMw1WVeJj94IZPZ HTTP/2.0
host: challenges.cloudflare.com
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 401

date: Fri, 24 Jan 2025 14:52:59 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gBmCiOhrqd5FEAG9fg8eew8Mh31CiZQFcBDnWdu-lns4AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIAZgojoa6neRRABvX4PHnsPDId9QomUBXAQ51nbvpZ7OABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIAZgojoa6neRRABvX4PHnsPDId9QomUBXAQ51nbvpZ7OABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA0Bg4_P76wfMEmDzHK9N8yyWImWxay1z7HPRnKoNyIW_Kt8Rk4JPinNDLa3LlBgTYMoR4v3RICP4X4zaAzY3cxkst6Rpr-Py-3J7VIv4tDxbhYpyAJpzUm3uLOHmGHY_CoipSic72M1Fa_ltrFceiOzvXMAMmq9kyyOOtf9OkrAyjZjlUWJke61DQJEIuvkzoa1TZ0vzYhu0Tk_PmJkQB7g-FiJne2dp-7uJFizTT0oatWJgKSOcI9bZpT__32BhyfyCjE-1JMrNXglwYWKaIdnnmWh-1b9zPsCSav_GOwSPUyhyqOykRladYl-k7vKxZJ2AtvfObQaF5muLp21p9sQIDAQAB", max-age=20
server: cloudflare
cf-ray: 9070d9b719136552-LHR
alt-svc: h3=":443"; ma=86400
GET

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/9070d9accd786552/1737730378087/tt7CggVIfsO7XbI

msedge.exe

Remote address:

104.18.95.41:443

Request

GET /cdn-cgi/challenge-platform/h/b/d/9070d9accd786552/1737730378087/tt7CggVIfsO7XbI HTTP/2.0
host: challenges.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:59 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 9070d9b85a7f6552-LHR
alt-svc: h3=":443"; ma=86400
POST

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

msedge.exe

Remote address:

104.18.95.41:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ HTTP/2.0
host: challenges.cloudflare.com
content-length: 29582
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
cf-chl-retryattempt: 0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
cf-challenge: qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://challenges.cloudflare.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:59 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: E5j0LTKbcFSiB32CRkGB4rDRc72vqVL8IZ6SPf6NpAC/8JhiJAD7F7sNR9wgFIcI$kIsQc1mbWjhbV1LXbTQLaw==
server: cloudflare
cf-ray: 9070d9b93ba16552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

msedge.exe

Remote address:

104.18.95.41:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ HTTP/2.0
host: challenges.cloudflare.com
content-length: 31968
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
cf-chl-retryattempt: 0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
cf-challenge: qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ
content-type: application/x-www-form-urlencoded
accept: */*
origin: https://challenges.cloudflare.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:01 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 8isNJmRgZELiSeCnTI+7Qe4oBb+qZXrZFMqu6SQmFUnZXIS1+ackx5+kNWlXCI91sJad+o1qJisx1TF7Eb6GLyiGXdkQm6HPVg61i9o8Kxg=$dJsmLglz6h6P0rf3gTNtxg==
cf-chl-out-s: 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$4ydTNU4uAscRXtes/aKrsw==
server: cloudflare
cf-ray: 9070d9c40f026552-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
DNS

41.95.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

41.95.18.104.in-addr.arpa

IN PTR

Response
GET

https://static.cloudflareinsights.com/beacon.min.js

msedge.exe

Remote address:

104.16.80.73:443

Request

GET /beacon.min.js HTTP/2.0
host: static.cloudflareinsights.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:10 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d8887a3c9421-LHR
content-encoding: gzip
DNS

www.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

www.clarity.ms

IN A

Response

www.clarity.ms

IN CNAME

clarity.azurefd.net

clarity.azurefd.net

IN CNAME

azurefd-t-prod.trafficmanager.net

azurefd-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
GET

https://www.clarity.ms/tag/p040quc4zq

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /tag/p040quc4zq HTTP/2.0
host: www.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:11 GMT
content-type: application/x-javascript
content-length: 689
cache-control: no-cache, no-store
expires: -1
set-cookie: CLID=3e029a276c784e409474b96cf511c500.20250124.20260124; expires=Sat, 24 Jan 2026 14:52:11 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:e55edbbe-e22b-46b4-8313-9ee2a4e71d12
x-azure-ref: 20250124T145211Z-r15774cf85d7rd8vhC1LONz7t000000006c000000001ener
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
GET

https://www.clarity.ms/s/0.7.63/clarity.js

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /s/0.7.63/clarity.js HTTP/2.0
host: www.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: CLID=3e029a276c784e409474b96cf511c500.20250124.20260124

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:12 GMT
content-type: application/javascript;charset=utf-8
vary: Accept-Encoding
last-modified: Wed, 22 Jan 2025 15:26:20 GMT
etag: W/"0x8DD3AF91FAF9239"
x-ms-request-id: bed078e0-b01e-0053-0428-6d0def000000
x-ms-version: 2018-03-28
access-control-allow-origin: *
x-azure-ref: 20250124T145212Z-r15774cf85d7rd8vhC1LONz7t000000006c000000001enhz
cache-control: public, max-age=86400
x-fd-int-roxy-purgeid: 79034942
x-cache: TCP_HIT
content-encoding: br
DNS

c.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

c.clarity.ms

IN A

Response

c.clarity.ms

IN CNAME

c.msn.com

c.msn.com

IN CNAME

c-msn-pme.trafficmanager.net

c-msn-pme.trafficmanager.net

IN A

13.74.129.1
DNS

c.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

c.clarity.ms

IN A
DNS

c.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

c.clarity.ms

IN A
DNS

u.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

u.clarity.ms

IN A

Response

u.clarity.ms

IN CNAME

clarity-ingest-eus-d-sc.eastus.cloudapp.azure.com

clarity-ingest-eus-d-sc.eastus.cloudapp.azure.com

IN A

4.227.249.197
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 6159
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:12 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 288
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:13 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 1582
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:19 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 4996
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:22 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 2852
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:26 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 736
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:32 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
DNS

64.246.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

64.246.107.13.in-addr.arpa

IN PTR

Response
GET

https://c.clarity.ms/c.gif

msedge.exe

Remote address:

13.74.129.1:443

Request

GET /c.gif HTTP/2.0
host: c.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&RedC=c.clarity.ms&MXFR=36A79636C8D266430F698348CCD268DB
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
set-cookie: MUID=36A79636C8D266430F698348CCD268DB; domain=.clarity.ms; expires=Wed, 18-Feb-2026 14:52:13 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 24 Jan 2025 14:52:12 GMT
content-length: 0
GET

https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&MUID=24D145E39B6565E401C7509D9ADE6415

msedge.exe

Remote address:

13.74.129.1:443

Request

GET /c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&MUID=24D145E39B6565E401C7509D9ADE6415 HTTP/2.0
host: c.clarity.ms
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: SM=T
cookie: MUID=36A79636C8D266430F698348CCD268DB

Response

HTTP/2.0 200

cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 21 Jan 2025 23:39:51 GMT
accept-ranges: bytes
etag: "9728f9c35d6cdb1:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=C; domain=c.clarity.ms; path=/; SameSite=None; Secure;
set-cookie: MUID=24D145E39B6565E401C7509D9ADE6415; domain=.clarity.ms; expires=Wed, 18-Feb-2026 14:52:13 GMT; path=/; SameSite=None; Secure; Priority=High;
set-cookie: MR=0; domain=c.clarity.ms; expires=Fri, 31-Jan-2025 14:52:13 GMT; path=/; SameSite=None; Secure;
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 24-Jan-2025 15:02:13 GMT; path=/; SameSite=None; Secure;
date: Fri, 24 Jan 2025 14:52:12 GMT
content-length: 42
DNS

c.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

c.bing.com

IN A

Response

c.bing.com

IN CNAME

c-bing-com.dual-a-0034.a-msedge.net

c-bing-com.dual-a-0034.a-msedge.net

IN CNAME

dual-a-0034.a-msedge.net

dual-a-0034.a-msedge.net

IN A

204.79.197.237

dual-a-0034.a-msedge.net

IN A

13.107.21.237
GET

https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&RedC=c.clarity.ms&MXFR=36A79636C8D266430F698348CCD268DB

msedge.exe

Remote address:

204.79.197.237:443

Request

GET /c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&RedC=c.clarity.ms&MXFR=36A79636C8D266430F698348CCD268DB HTTP/2.0
host: c.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&MUID=24D145E39B6565E401C7509D9ADE6415
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: MUID=24D145E39B6565E401C7509D9ADE6415; domain=.bing.com; expires=Wed, 18-Feb-2026 14:52:13 GMT; path=/; SameSite=None; Secure; Priority=High;
set-cookie: MR=0; domain=c.bing.com; expires=Fri, 31-Jan-2025 14:52:13 GMT; path=/; SameSite=None; Secure;
set-cookie: SRM_B=24D145E39B6565E401C7509D9ADE6415; domain=c.bing.com; expires=Wed, 18-Feb-2026 14:52:13 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C1815E8C04814C61AD49228FA51EB3F3 Ref B: LON04EDGE0819 Ref C: 2025-01-24T14:52:13Z
date: Fri, 24 Jan 2025 14:52:13 GMT
content-length: 0
DNS

197.249.227.4.in-addr.arpa

Remote address:

8.8.8.8:53

Request

197.249.227.4.in-addr.arpa

IN PTR

Response
DNS

1.129.74.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.129.74.13.in-addr.arpa

IN PTR

Response
DNS

237.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.197.79.204.in-addr.arpa

IN PTR

Response
DNS

api.uncover.us.kg

msedge.exe

Remote address:

8.8.8.8:53

Request

api.uncover.us.kg

IN A

Response

api.uncover.us.kg

IN A

104.21.32.1

api.uncover.us.kg

IN A

104.21.80.1

api.uncover.us.kg

IN A

104.21.48.1

api.uncover.us.kg

IN A

104.21.112.1

api.uncover.us.kg

IN A

104.21.64.1

api.uncover.us.kg

IN A

104.21.96.1

api.uncover.us.kg

IN A

104.21.16.1
DNS

api.uncover.us.kg

msedge.exe

Remote address:

8.8.8.8:53

Request

api.uncover.us.kg

IN A

Response

api.uncover.us.kg

IN A

104.21.16.1

api.uncover.us.kg

IN A

104.21.32.1

api.uncover.us.kg

IN A

104.21.48.1

api.uncover.us.kg

IN A

104.21.80.1

api.uncover.us.kg

IN A

104.21.112.1

api.uncover.us.kg

IN A

104.21.96.1

api.uncover.us.kg

IN A

104.21.64.1
OPTIONS

https://api.uncover.us.kg/hash

msedge.exe

Remote address:

104.21.32.1:443

Request

OPTIONS /hash HTTP/2.0
host: api.uncover.us.kg
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type
origin: https://www.uncoverit.org
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:19 GMT
content-type: text/html; charset=utf-8
access-control-allow-headers: content-type
access-control-allow-methods: GET, HEAD, POST, OPTIONS, PUT, PATCH, DELETE
access-control-allow-origin: *
access-control-expose-headers: ""
allow: POST, OPTIONS
ratelimit-limit: 10
ratelimit-remaining: 9
ratelimit-reset: 5
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o04LGA3BFhat%2FgMly4fSjPyvrUy38cXZ2%2FEAmaMsP34dArRcMVlguAZHcri7wbwkQ2tZu0IoCYzlIYY%2FcdUO9Gd%2FfJpDNZcaynTcfRzmrX92LBJUrPU1grZz%2B3kURF4Bl2PtGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d8ba0c75a690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=49964&min_rtt=47279&rtt_var=15625&sent=6&recv=8&lost=0&retrans=0&sent_bytes=2849&recv_bytes=1067&delivery_rate=57403&cwnd=244&unsent_bytes=0&cid=201ca3205ca14e91&ts=208&x=0"
POST

https://api.uncover.us.kg/hash

msedge.exe

Remote address:

104.21.32.1:443

Request

POST /hash HTTP/2.0
host: api.uncover.us.kg
content-length: 74
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:19 GMT
content-type: application/json
content-length: 16
access-control-allow-origin: *
access-control-expose-headers: ""
ratelimit-limit: 10
ratelimit-remaining: 8
ratelimit-reset: 11
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LCBCyjugcn6IhCvlgNA%2BQeUC%2Bm2PGcnCpzw9FMJiP1BzPVaa0msXsZf%2FI%2F0h%2ByxsMroYlzm3BCQwO6TEte%2BaP2mMa5K6WfkqjSHB5KBJ4Yjj58RSka9dxmTGwWBKlW%2FmyDXsiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d8bb580ba690-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=50627&min_rtt=47112&rtt_var=11352&sent=11&recv=11&lost=0&retrans=0&sent_bytes=3695&recv_bytes=1332&delivery_rate=70443&cwnd=247&unsent_bytes=0&cid=201ca3205ca14e91&ts=352&x=0"
GET

https://api.uncover.us.kg/sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24

msedge.exe

Remote address:

104.21.32.1:443

Request

GET /sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24 HTTP/2.0
host: api.uncover.us.kg
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:20 GMT
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: ""
ratelimit-limit: 20
ratelimit-remaining: 19
ratelimit-reset: 2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cC8O5%2BcrA0ya5C%2FNEAZ5Se1tjDTW9ZLUk0LtuznWHwBs7voYvmHIzteskAavrRu3BcujP7Es%2Be8veld%2FD9T4rvLCwe%2F4PWa56%2BB5vksm3Cf6dCWfwMFK6Jxp7NgrrztBweQi0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d8c4fff8a690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=50484&min_rtt=47112&rtt_var=8799&sent=14&recv=13&lost=0&retrans=0&sent_bytes=4230&recv_bytes=1436&delivery_rate=70443&cwnd=249&unsent_bytes=0&cid=201ca3205ca14e91&ts=1942&x=0"
GET

https://api.uncover.us.kg/sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24

msedge.exe

Remote address:

104.21.32.1:443

Request

GET /sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24 HTTP/2.0
host: api.uncover.us.kg
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.uncoverit.org
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.uncoverit.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:20 GMT
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: ""
ratelimit-limit: 20
ratelimit-remaining: 18
ratelimit-reset: 5
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZhWRZTt4RNki2%2BKPThFLTaDA6RD8drHg0Oowhj85Zz%2FuNT4Z9Xs1NaYuY%2FvlFnD2KYvvLUNEhYtec6A%2BCUKrn3MxdPFQdP4TuScyxSvj6cJjG1L%2BeZoAiqkzP1kTd6Eg7U4daQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070d8c62af9a690-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=51245&min_rtt=47112&rtt_var=6390&sent=18&recv=15&lost=0&retrans=0&sent_bytes=5025&recv_bytes=1540&delivery_rate=73367&cwnd=249&unsent_bytes=0&cid=201ca3205ca14e91&ts=2071&x=0"
DNS

1.32.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.32.21.104.in-addr.arpa

IN PTR

Response
DNS

147.255.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

147.255.221.88.in-addr.arpa

IN PTR

Response

147.255.221.88.in-addr.arpa

IN PTR

a88-221-255-147deploystaticakamaitechnologiescom
DNS

processhacker.sourceforge.io

ProcessHacker.exe

Remote address:

8.8.8.8:53

Request

processhacker.sourceforge.io

IN A

Response

processhacker.sourceforge.io

IN CNAME

prwebsecure.sourceforge.io.cdn.cloudflare.net

prwebsecure.sourceforge.io.cdn.cloudflare.net

IN A

104.18.11.31

prwebsecure.sourceforge.io.cdn.cloudflare.net

IN A

104.18.10.31
GET

https://processhacker.sourceforge.io/downloads.php

msedge.exe

Remote address:

104.18.11.31:443

Request

GET /downloads.php HTTP/2.0
host: processhacker.sourceforge.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
vary: Host,X-Forwarded-Proto
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: upgrade-insecure-requests; frame-ancestors 'none';
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
strict-transport-security: max-age=31536000
cache-control: public, max-age=7200, s-maxage=3600
expires: Fri, 24 Jan 2025 15:52:48 GMT
x-from: sfp-ioweb82-5
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070d9728928368f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://processhacker.sourceforge.io/include/css/custom.css

msedge.exe

Remote address:

104.18.11.31:443

Request

GET /include/css/custom.css HTTP/2.0
host: processhacker.sourceforge.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://processhacker.sourceforge.io/downloads.php
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: text/css
vary: Accept-Encoding
vary: Host,X-Forwarded-Proto
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: upgrade-insecure-requests; frame-ancestors 'none';
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
strict-transport-security: max-age=31536000
last-modified: Tue, 30 Jul 2024 19:26:50 GMT
etag: W/"167f-61e7bf5911280"
cache-control: public, max-age=7200, s-maxage=3600
expires: Fri, 24 Jan 2025 14:48:40 GMT
x-from: sfp-ioweb82-2
cf-cache-status: HIT
age: 1945
server: cloudflare
cf-ray: 9070d9741af4368f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://processhacker.sourceforge.io/include/js/custom.js

msedge.exe

Remote address:

104.18.11.31:443

Request

GET /include/js/custom.js HTTP/2.0
host: processhacker.sourceforge.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://processhacker.sourceforge.io/downloads.php
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: text/javascript
vary: Accept-Encoding
vary: Host,X-Forwarded-Proto
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: upgrade-insecure-requests; frame-ancestors 'none';
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
strict-transport-security: max-age=31536000
last-modified: Fri, 28 May 2021 10:36:23 GMT
etag: W/"572-5c3617273f7c0"
cache-control: public, max-age=7200, s-maxage=3600
expires: Fri, 24 Jan 2025 15:17:47 GMT
x-from: sfp-ioweb82-3
cf-cache-status: HIT
age: 1945
server: cloudflare
cf-ray: 9070d9742afd368f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://processhacker.sourceforge.io/favicon.ico

msedge.exe

Remote address:

104.18.11.31:443

Request

GET /favicon.ico HTTP/2.0
host: processhacker.sourceforge.io
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://processhacker.sourceforge.io/downloads.php
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _ga_7H00X2X1J4=GS1.1.1737730368.1.0.1737730368.0.0.0
cookie: _ga=GA1.2.436559282.1737730369
cookie: _gid=GA1.2.1556285730.1737730369
cookie: _gat_gtag_UA_22023876_1=1

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:49 GMT
content-type: image/vnd.microsoft.icon
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: upgrade-insecure-requests; frame-ancestors 'none';
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
strict-transport-security: max-age=31536000
vary: Host,X-Forwarded-Proto
vary: Accept-Encoding
last-modified: Sat, 27 Feb 2016 08:25:40 GMT
etag: W/"47e-52cbc292f6900"
cache-control: public, max-age=7200, s-maxage=3600
expires: Fri, 24 Jan 2025 15:52:49 GMT
x-from: sfp-ioweb82-3
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 9070d978af62368f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
DNS

cdnjs.cloudflare.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdnjs.cloudflare.com

IN A

Response

cdnjs.cloudflare.com

IN A

104.17.25.14

cdnjs.cloudflare.com

IN A

104.17.24.14
DNS

sourceforge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

sourceforge.net

IN A

Response

sourceforge.net

IN A

104.18.12.149

sourceforge.net

IN A

104.18.13.149
DNS

sourceforge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

sourceforge.net

IN A

Response

sourceforge.net

IN A

104.18.12.149

sourceforge.net

IN A

104.18.13.149
GET

https://cdnjs.cloudflare.com/ajax/libs/bootswatch/4.5.0/darkly/bootstrap.min.css

msedge.exe

Remote address:

104.17.25.14:443

Request

GET /ajax/libs/bootswatch/4.5.0/darkly/bootstrap.min.css HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://processhacker.sourceforge.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 27446
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ed75bb-6b36"
last-modified: Tue, 29 Aug 2023 04:36:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 146701
expires: Wed, 14 Jan 2026 14:52:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2BNBlqot0S5G7RiwXVFSxK6MR2Cy6fh98UNjorKWSybsRTKCLurXe7qrKrgaOxvnlDCEUSyb5r%2F95QeQSd4NgSSaOBsaN0Jgap6wvZdB9GI3qtNxnEMSOv50fUBiXThZ2xDuQUxp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9070d9751a7aedf7-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/css/all.min.css

msedge.exe

Remote address:

104.17.25.14:443

Request

GET /ajax/libs/font-awesome/6.5.2/css/all.min.css HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://processhacker.sourceforge.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: application/javascript; charset=utf-8
content-length: 13102
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60f6203f-332e"
last-modified: Tue, 20 Jul 2021 01:00:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 50676
expires: Wed, 14 Jan 2026 14:52:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FsK8V3qBHBJcOdPmYKh4nBS1MkQvO5hKXZMUZP9eTAELnmgskq4OSECd%2FlnDxjBywiw8z3%2FhIfOS6pkv5eaD62PMgf123LmSozgn9t0wKhJJR%2ByT3Q1YUrUmgOd6tOq4P2IkkRaB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9070d9751a7cedf7-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js

msedge.exe

Remote address:

104.17.25.14:443

Request

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://processhacker.sourceforge.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: text/css; charset=utf-8
content-length: 18405
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ebc9cf9-2d073"
last-modified: Thu, 14 May 2020 01:20:57 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 604162
expires: Wed, 14 Jan 2026 14:52:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qhfr5QHs9EDyU7IyXW1YuGKGJj4v22bydFHZPJeN9wfunN8sJlkLA3lLw6V3hSklw9Ag9V3rH4deiG0Z5wprz7Ik%2BQFsKYLVfAbhi6ptF%2F%2BwHXZsdUdqZyHFepZa0gv4FCTG6Vvg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9070d9751a76edf7-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/bootstrap/4.5.3/js/bootstrap.min.js

msedge.exe

Remote address:

104.17.25.14:443

Request

GET /ajax/libs/bootstrap/4.5.3/js/bootstrap.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://processhacker.sourceforge.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:48 GMT
content-type: text/css; charset=utf-8
content-length: 18938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "660cc074-49fa"
last-modified: Wed, 03 Apr 2024 02:35:32 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 149801
expires: Wed, 14 Jan 2026 14:52:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=em%2BQMrul4AMFxhez6NctV3T3CDlTKIkqHRelECKIkGgwMiWI0yoTxMyRRDuFkDtByHD4cvpp0E6stw4kwctNzMTuwFuExnUmD0fApQXyjkkRpDaMEb0ymcPdnXO5zx2NPXClLALj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9070d9751a79edf7-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/webfonts/fa-solid-900.woff2

msedge.exe

Remote address:

104.17.25.14:443

Request

GET /ajax/libs/font-awesome/6.5.2/webfonts/fa-solid-900.woff2 HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://processhacker.sourceforge.io
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/css/all.min.css
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:49 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 156400
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "660cc074-262f0"
last-modified: Wed, 03 Apr 2024 02:35:32 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 144203
expires: Wed, 14 Jan 2026 14:52:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HD0ok%2By5nncBrZwtjuvx%2FlmIhK%2BZfyKt5JUuZ3s0QYGk%2Bk0kZEuYzxnUZ0Kr5jR%2FjR7v0Tl0XtotTrDSkLW4dG5%2BulxAedqgSUgHVNjWNyzMwLCMolwubXyf3fHm2aj%2FfHJ1GwKN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9070d977b942edf7-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/sflogo.php?type=17&group_id=242527

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /sflogo.php?type=17&group_id=242527 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://processhacker.sourceforge.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:49 GMT
content-type: image/svg+xml
last-modified: Fri, 12 Feb 2021 20:54:59 GMT
etag: W/"6026eb23-3ff8"
pragma: no-cache
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q; path=/; expires=Fri, 24-Jan-25 15:22:49 GMT; domain=.sourceforge.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 9070d9754f274134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/projects/processhacker/

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /projects/processhacker/ HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q

Response

HTTP/2.0 403

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-options: nosniff
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: UwcVjDkuO6u0R5hOnG9HdSfPX5mBqnHp2JFd65vxnMzVSSJh8AsUJoklbk2KB6gx6anzjYxahnka++q9p/gM3YdQva4HiQpnF/p1W7YuWuUMZMwrvUXVECvheP1TX8ry/2SytbUKFGSSHzLWcUndvA==$Y1FmU9Cqm1QF+AbQmAfY8A==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9a9692e4134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d9a9692e4134

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d9a9692e4134 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/projects/processhacker/?__cf_chl_rt_tk=PzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 9070d9aa7a534134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/favicon.ico

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /favicon.ico HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: JPSVd7ky6gOS5Yc/c/lR5nVQ8D0GliFezuuvHlBQmF8=$Kd+R9qv0x2joDtaMwTJ1ZA==
server: cloudflare
cf-ray: 9070d9abcbe14134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST

https://sourceforge.net/cdn-cgi/challenge-platform/h/b/flow/ov1/480978294:1737728056:M960XY5nQsOLgM191aPCzcwNTHodjwgKBiXJ8xcP_Dg/9070d9a9692e4134/KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1

msedge.exe

Remote address:

104.18.12.149:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/480978294:1737728056:M960XY5nQsOLgM191aPCzcwNTHodjwgKBiXJ8xcP_Dg/9070d9a9692e4134/KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1 HTTP/2.0
host: sourceforge.net
content-length: 4139
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cf-chl-retryattempt: 0
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
cf-challenge: KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://sourceforge.net
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:52:57 GMT
content-type: image/x-icon
last-modified: Mon, 19 Jul 2021 18:27:03 GMT
etag: W/"60f5c3f7-5e8"
expires: Fri, 31 Jan 2025 14:52:57 GMT
cache-control: max-age=604800
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070d9ab1b274134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST

https://sourceforge.net/cdn-cgi/challenge-platform/h/b/flow/ov1/480978294:1737728056:M960XY5nQsOLgM191aPCzcwNTHodjwgKBiXJ8xcP_Dg/9070d9a9692e4134/KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1

msedge.exe

Remote address:

104.18.12.149:443

Request

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/480978294:1737728056:M960XY5nQsOLgM191aPCzcwNTHodjwgKBiXJ8xcP_Dg/9070d9a9692e4134/KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1 HTTP/2.0
host: sourceforge.net
content-length: 6390
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cf-chl-retryattempt: 0
content-type: application/x-www-form-urlencoded
sec-ch-ua-model:
cf-challenge: KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://sourceforge.net
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:01 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 22RpFNGmhdHoc6c0PSJVJwf5tvDGKWOKMmTY5T/oZ6GDHtfh+KEuNJ2QZ1PKSPiho5X8CjiItoZAA9+QmuCC7A==$+yE5jdn8dMxuhZAVeaaBGQ==
cf-chl-out-s: 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$fisLOHnxkUwDdjDbi8Eh3Q==
set-cookie: cf_chl_rc_m=;Expires=Thu, 23 Jan 2025 14:53:01 GMT;SameSite=Strict
server: cloudflare
cf-ray: 9070d9c4ccea4134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST

https://sourceforge.net/projects/processhacker/

msedge.exe

Remote address:

104.18.12.149:443

Request

POST /projects/processhacker/ HTTP/2.0
host: sourceforge.net
content-length: 5549
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://sourceforge.net
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://sourceforge.net/projects/processhacker/?__cf_chl_tk=PzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: text/html; charset=utf-8
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.sourceforge.net; Priority=High; HttpOnly; Secure; SameSite=None
set-cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A; Path=/; Expires=Sat, 24-Jan-26 14:53:01 GMT; Domain=.sourceforge.net; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
cache-control: no-cache
pragma: no-cache
link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; rel=preload; as=script, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/lato.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; rel=preload; as=script
x-ua-compatible: IE=edge,chrome=1
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
x-frame-options: SAMEORIGIN
content-security-policy: fenced-frame-src https:; frame-ancestors 'self'; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; object-src 'none'; script-src 'self' adservice.google.co.zm ml314.com blob: *.id5-sync.com adservice.google.co.nz adservice.google.ga adservice.google.ml adservice.google.ne adservice.google.ie recaptcha.net adservice.google.com.br a.fsdn.com *.content-loader.com adservice.google.com.om adservice.google.co.ve *.css-load.com adservice.google.pl adservice.google.mw adservice.google.ht btloader.com adservice.google.co.jp adservice.google.fi adservice.google.lk adservice.google.co.cr *.tiny.cloud adservice.google.com.sg adservice.google.rw adservice.google.ps adservice.google.com.pe adservice.google.tt adservice.google.ki adservice.google.com.na adservice.google.com.ag adservice.google.sn adservice.google.com.cy adservice.google.co.uz adservice.google.dk adservice.google.jo adservice.google.lv adservice.google.ge adservice.google.tm adservice.google.com.gi adservice.google.bs adservice.google.com.tj *.trustarc.com adservice.google.co.ls adservice.google.so adservice.google.com.bd adservice.google.lt http://*.pro-market.net *.gstatic.com js.hsadspixel.net adservice.google.ca adservice.google.com.ph adservice.google.com.gh adservice.google.com.sa adservice.google.com.ni adservice.google.al adservice.google.nr *.googlesyndication.com adservice.google.com.kh cdn.jsdelivr.net adservice.google.com.pg adservice.google.mk adservice.google.de adservice.google.ms adservice.google.me adservice.google.com.kw adservice.google.tl adservice.google.com.ua adservice.google.co.ao *.adsafeprotected.com *.adtrafficquality.google *.07c225f3.online *.script.ac *.googleadsserving.cn adservice.google.dz adservice.google.co.mz adservice.google.fm adservice.google.gr adservice.google.at adservice.google.bf *.googletagmanager.com *.uidapi.com 07c225f3.online *.im-apps.net adservice.google.co.zw adservice.google.cd adservice.google.td adservice.google.com.vn adservice.google.co.uk adservice.google.com.sb adservice.google.as adservice.google.com.py adservice.google.co.ke adservice.google.vg *.flashtalking.com js.hs-analytics.net *.html-load.com html-load.com adservice.google.com.bo j.6sc.co *.btmessage.com adservice.google.com.ec adservice.google.com.bn *.googletagservices.com adservice.google.pt adservice.google.bt adservice.google.com.tw adservice.google.co.vi adservice.google.com.ai adservice.google.com.hk adservice.google.com.ly *.recaptcha.net adservice.google.com.np adservice.google.com.uy adservice.google.cm adservice.google.is adservice.google.com.eg translate.googleapis.com adservice.google.gy adservice.google.no adservice.google.tg adservice.google.com.ng *.ampproject.org css-load.com adservice.google.dj http://c.sf-syn.com adservice.google.ee adservice.google.com.co adservice.google.sr adservice.google.st adservice.google.com.et *.microsoft.com adservice.google.nl *.creativecdn.com adservice.google.com.jm adservice.google.com.au adservice.google.ci adservice.google.li adservice.google.com.mm *.google.com adservice.google.ws adservice.google.ro as.sourceforge.net adservice.google.tn *.adnxs.com adservice.google.mg adservice.google.ae adservice.google.ad adservice.google.com.pk *.criteo.net adservice.google.mu adservice.google.com.pr *.fb.html-load.com adservice.google.co.tz adservice.google.co.bw adservice.google.gg *.lijit.com adservice.google.co.kr adservice.google.dm adservice.google.to *.doubleverify.com js.hscollectedforms.net adservice.google.sc *.crsspxl.com adservice.google.si adservice.google.com.sv adservice.google.com.fj *.fb.content-loader.com adservice.google.com.mx *.hs-scripts.com *.microsofttranslator.com adservice.google.cg adservice.google.rs adservice.google.md adservice.google.kg *.openxcdn.net *.slashdotmedia.com adservice.google.be *.euid.eu adservice.google.com.lb adservice.google.com.bz adservice.google.mn adservice.google.hr *.sharethrough.com adservice.google.co.id adservice.google.cl adservice.google.com.my *.cloudflareinsights.com adservice.google.co.in *.moatads.com *.doubleclick.net adservice.google.com.pa adservice.google.com.cu adservice.google.hu adservice.google.lu adservice.google.ch adservice.google.es adservice.google.gt adservice.google.com.tr adservice.google.sm adservice.google.vu *.as.sourceforge.net adservice.google.bi http://b.sf-syn.com *.licdn.com adservice.google.gl adservice.google.im js.hs-banner.com adservice.google.iq adservice.google.nu adservice.google.se content-loader.com adservice.google.sk adservice.google.it *.google-analytics.com adservice.google.az adservice.google.cv adservice.google.mv adservice.google.bj adservice.google.co.za adservice.google.com.mt adservice.google.com.qa js.usemessages.com *.2mdn.net adservice.google.bg adservice.google.ru adservice.google.cz adservice.google.com.vc adservice.google.com.ar cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.com.af *.s-onetag.com translate.google.cn adservice.google.co.ug adservice.google.gm *.gstatic.cn *.crwdcntrl.net *.consentmanager.net adservice.google.co.ck adservice.google.fr adservice.google.hn adservice.google.co.th *.4dex.io adservice.google.la adservice.google.cf adservice.google.je adservice.google.co.il adservice.google.com.gt adservice.google.kz adservice.google.com.bh 'unsafe-inline' 'unsafe-eval'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; upgrade-insecure-requests; form-action 'self' lists.sourceforge.net
set-cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74; Max-Age=315360000; Path=/; expires=Mon, 22-Jan-2035 14:53:02 GMT; secure; HttpOnly
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070d9c5cde04134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/rest/p/processhacker/activity?limit=5

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /rest/p/processhacker/activity?limit=5 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
accept: application/json, text/javascript, */*; q=0.01
sec-ch-ua-platform-version: "10.0"
x-requested-with: XMLHttpRequest
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: application/json; charset=utf-8
cache-control: no-cache
pragma: no-cache
content-security-policy: frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com *.criteo.com *.openx.net; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce; script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.ampproject.org *.criteo.net *.creativecdn.com *.crwdcntrl.net *.uidapi.com *.im-apps.net *.euid.eu *.openxcdn.net *.id5-sync.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'; frame-ancestors 'self'; object-src 'none'; script-src-attr 'none' 'report-sample'; form-action 'self'; upgrade-insecure-requests
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2586
last-modified: Fri, 24 Jan 2025 14:09:57 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cf3fa14134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=70311&c=13569&z=67693&cb=1c31a9a5ff

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=70311&c=13569&z=67693&cb=1c31a9a5ff HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:14 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da1499c24134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/projects/processhacker/files/latest/download

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /projects/processhacker/files/latest/download HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3

Response

HTTP/2.0 103

link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; as=script; rel=preload, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; as=font; crossorigin; rel=preload, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; as=font; crossorigin; rel=preload, <https://a.fsdn.com/con/css/lato.css?1737649919>; as=style; rel=preload, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; as=style; rel=preload, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; as=script; rel=preload
PUT

https://sourceforge.net/p/sfapi/push_vid

msedge.exe

Remote address:

104.18.12.149:443

Request

PUT /p/sfapi/push_vid HTTP/2.0
host: sourceforge.net
content-length: 163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
accept: */*
sec-ch-ua-platform-version: "10.0"
x-requested-with: XMLHttpRequest
content-type: application/x-www-form-urlencoded; charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
origin: https://sourceforge.net
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730395.1737730395.
cookie: _pk_ses.39.0d7e=*

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
pragma: no-cache
link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; rel=preload; as=script, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/lato.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; rel=preload; as=script
x-ua-compatible: IE=edge,chrome=1
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
x-frame-options: SAMEORIGIN
content-security-policy: script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; fenced-frame-src https:; upgrade-insecure-requests; script-src 'self' adservice.google.com.ng adservice.google.co.il adservice.google.pl adservice.google.sr adservice.google.co.ug adservice.google.nl adservice.google.com.mt adservice.google.co.za http://c.sf-syn.com *.creativecdn.com adservice.google.co.kr adservice.google.me *.googlesyndication.com adservice.google.gr as.sourceforge.net *.html-load.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.s-onetag.com *.lijit.com adservice.google.co.zm adservice.google.com.ag adservice.google.com.tj adservice.google.fr *.ampproject.org adservice.google.mw adservice.google.mv *.hs-scripts.com adservice.google.ae adservice.google.gy adservice.google.dk translate.googleapis.com adservice.google.com.af adservice.google.de adservice.google.com.mm adservice.google.fm adservice.google.com.kw adservice.google.dm content-loader.com *.07c225f3.online *.doubleverify.com adservice.google.co.bw *.fb.html-load.com adservice.google.gl adservice.google.ru *.adnxs.com adservice.google.com.ly adservice.google.ms adservice.google.be js.usemessages.com *.gstatic.com *.microsoft.com adservice.google.co.th adservice.google.ci *.euid.eu adservice.google.ps adservice.google.cd adservice.google.com.pa adservice.google.je adservice.google.cf adservice.google.com.bz adservice.google.jo adservice.google.bj html-load.com adservice.google.com.bo adservice.google.rs adservice.google.com.sv *.script.ac *.css-load.com *.uidapi.com adservice.google.fi cdn.jsdelivr.net adservice.google.co.in js.hscollectedforms.net adservice.google.at adservice.google.bg adservice.google.ch adservice.google.hu adservice.google.co.zw adservice.google.ie adservice.google.co.mz adservice.google.tg adservice.google.it adservice.google.gg *.consentmanager.net adservice.google.to adservice.google.com.ai adservice.google.si adservice.google.com.py adservice.google.ht adservice.google.as j.6sc.co adservice.google.tm adservice.google.co.jp *.recaptcha.net *.moatads.com adservice.google.gt adservice.google.kg adservice.google.lv *.trustarc.com adservice.google.com.tr adservice.google.ne adservice.google.com.pe adservice.google.cv adservice.google.ga *.id5-sync.com *.criteo.net *.fb.content-loader.com adservice.google.tl *.slashdotmedia.com adservice.google.com.kh adservice.google.com.ua adservice.google.mk adservice.google.ge *.im-apps.net adservice.google.al adservice.google.com.ec adservice.google.vg adservice.google.com.mx adservice.google.co.tz adservice.google.is adservice.google.com.bd adservice.google.com.ni adservice.google.com.uy adservice.google.dz adservice.google.kz *.microsofttranslator.com a.fsdn.com adservice.google.co.ve adservice.google.rw *.btmessage.com adservice.google.ki adservice.google.se adservice.google.com.ar recaptcha.net adservice.google.cl adservice.google.sn adservice.google.lk adservice.google.mg adservice.google.co.ke adservice.google.com.gt adservice.google.la http://*.pro-market.net *.google-analytics.com adservice.google.com.sb adservice.google.tn adservice.google.com.hk adservice.google.com.na adservice.google.nu adservice.google.com.vn js.hs-analytics.net adservice.google.com.my adservice.google.bs adservice.google.md adservice.google.bf adservice.google.com.pr adservice.google.ml adservice.google.co.uk adservice.google.no adservice.google.co.uz adservice.google.com.eg adservice.google.com.bh adservice.google.com.om adservice.google.com.gh adservice.google.com.vc adservice.google.com.gi adservice.google.im adservice.google.lt adservice.google.cm adservice.google.com.et adservice.google.es adservice.google.com.br adservice.google.com.pk adservice.google.li adservice.google.ws adservice.google.nr adservice.google.co.vi ml314.com adservice.google.bi adservice.google.com.co *.doubleclick.net adservice.google.gm *.googletagmanager.com *.adsafeprotected.com adservice.google.az adservice.google.com.lb btloader.com adservice.google.td *.openxcdn.net js.hsadspixel.net adservice.google.cz adservice.google.sm adservice.google.com.sg adservice.google.hr adservice.google.mu adservice.google.vu adservice.google.com.sa adservice.google.com.cu adservice.google.mn adservice.google.co.ls translate.google.cn *.tiny.cloud *.4dex.io blob: adservice.google.com.np *.crwdcntrl.net adservice.google.com.au adservice.google.com.pg adservice.google.com.bn *.flashtalking.com adservice.google.co.nz adservice.google.com.tw adservice.google.co.id adservice.google.ee adservice.google.pt adservice.google.dj *.2mdn.net adservice.google.tt adservice.google.co.cr *.content-loader.com *.cloudflareinsights.com *.gstatic.cn adservice.google.ro adservice.google.sc adservice.google.com.ph http://b.sf-syn.com css-load.com adservice.google.iq adservice.google.co.ao adservice.google.st *.licdn.com adservice.google.com.cy adservice.google.so 07c225f3.online adservice.google.co.ck *.crsspxl.com adservice.google.com.qa *.as.sourceforge.net *.google.com adservice.google.ca js.hs-banner.com *.sharethrough.com adservice.google.sk adservice.google.com.jm adservice.google.bt adservice.google.cg adservice.google.com.fj adservice.google.hn adservice.google.ad adservice.google.lu *.googletagservices.com *.adtrafficquality.google *.googleadsserving.cn 'unsafe-inline' 'unsafe-eval'; form-action 'self' lists.sourceforge.net; frame-ancestors 'self'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; object-src 'none'
set-cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74; Max-Age=315360000; Path=/; expires=Mon, 22-Jan-2035 14:53:15 GMT; secure; HttpOnly
set-cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM; expires=Tue, 19-Jan-2038 03:14:07 GMT; HttpOnly; Path=/; SameSite=Lax; Secure
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da19ef854134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=76573&c=14775&z=73969&cb=86302c138e

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=76573&c=14775&z=73969&cb=86302c138e HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730395.1737730395.
cookie: _pk_ses.39.0d7e=*
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:16 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da204f3e4134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=67785&c=13077&z=65157&cb=0a8860b39c

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=67785&c=13077&z=65157&cb=0a8860b39c HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730395.1737730395.
cookie: _pk_ses.39.0d7e=*
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:16 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da204f3c4134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=74567&c=14365&z=71959&cb=b0e02e0b26

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=74567&c=14365&z=71959&cb=b0e02e0b26 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730395.1737730395.
cookie: _pk_ses.39.0d7e=*
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:16 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da204f3f4134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=74417&c=14331&z=71809&cb=fe1c382b3f

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=74417&c=14331&z=71809&cb=fe1c382b3f HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730395.1737730395.
cookie: _pk_ses.39.0d7e=*
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: application/json; charset=utf-8
content-length: 16
cache-control: no-cache
pragma: no-cache
content-security-policy: upgrade-insecure-requests; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com *.criteo.com *.openx.net; frame-ancestors 'self'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce; object-src 'none'; form-action 'self'; script-src-attr 'none' 'report-sample'; script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.ampproject.org *.criteo.net *.creativecdn.com *.crwdcntrl.net *.uidapi.com *.im-apps.net *.euid.eu *.openxcdn.net *.id5-sync.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
set-cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE48YkhqNEcweVNlcWkobmMlPUt8NGI-blBIPnI_VUY-JDdxR1lUNzM_aS0xWWcxQzVVaXx4M01hU0tSV3R3aDRMYHxEMEEkS3AqYXJaVjRRVllhWU4pUD5iVz1fMUBAUTYtTWpBYENnPyNXeDBvTTV6KUA7fGg1YUU7ZXlvQzJPMkgpU0hpRXpweDN2S1Y_VDtDeVZhYiNzTWdqU25kXnBHdzJIdUxrNUAxMmNlQ3MyQmdkZHM9YVZ-MDgqVD1RS0w8VF8wRD4qWX5vREopd0d3dWRZQWF5MXJtR0NlSz0jYHxHezQrdEFwTX0qaHMmNXNMX2VnWi1uazI8PTN1QTx8e3ItUX1pLXx5bD9Dflo7PStMOFohP19NUGl7fnF-WFF-In0.47LDeRQ4C3Z6vC7mc2ZOztAZaLCkNJRYS65aQRjCA-4; HttpOnly; Path=/; SameSite=Lax; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da20cfca4134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=71073&c=13701&z=68459&cb=62602a44fd

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=71073&c=13701&z=68459&cb=62602a44fd HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730395.1737730395.
cookie: _pk_ses.39.0d7e=*
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:16 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da204f3d4134-LHR
alt-svc: h3=":443"; ma=86400
PUT

https://sourceforge.net/p/sfapi/push_vid

msedge.exe

Remote address:

104.18.12.149:443

Request

PUT /p/sfapi/push_vid HTTP/2.0
host: sourceforge.net
content-length: 163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
accept: */*
sec-ch-ua-platform-version: "10.0"
x-requested-with: XMLHttpRequest
content-type: application/x-www-form-urlencoded; charset=UTF-8
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
origin: https://sourceforge.net
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.0.1737730394.60.0.0
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdUY7MnVWNUprcmM2YksxODAlKz9qaThyaTdOck5ibmtTTVZ4X0U8NTVPPUtHaEU8aTs_I1REcWNxKFJ-ZUd9fXtnM2RTM250IURtdnFjM3xkMDVhdGE5MDM1eSN2O25mSG55JjwjaXA5bzw7bEQld2JhSmUySipwXjRZMTkodXd9WnxnJFE0fj1PdWlrRzVHJExiY0F5YlMhakQ3N2tFI3ckQn50JDVMKG9DPFJNJTBlZGQ9VktmRDtsTDlwcEhZTUZETHI7YWNYLTApb3opXihLWl91R0BtUWRxWVhZPnprVTx6Xzc4YmFxKzxpVndxLTl0bX5-TXVQWCgtT25xTGVnWjtpUFooWGxQfDxQWV5KSTFYYD9FUnwzVSNVPkd4Qz56NHUyYmlVSXoifQ.x4Do7wYYn8E3e7706IR3Bfm3BHV2pOWma9e9378e6sM
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730396.1737730395.

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:16 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da204f384134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://downloads.sourceforge.net/project/processhacker/processhacker2/processhacker-2.39-setup.exe?ts=gAAAAABnk6lbKR7DSa7L33lHn38s9qUhyvqzaLVXM1pnPgp9mnl5owr94FzV9NsShy1EY-jcPdeU7L5jXDQwkIqJB_Xf3nemSg%3D%3D&use_mirror=netix&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /project/processhacker/processhacker2/processhacker-2.39-setup.exe?ts=gAAAAABnk6lbKR7DSa7L33lHn38s9qUhyvqzaLVXM1pnPgp9mnl5owr94FzV9NsShy1EY-jcPdeU7L5jXDQwkIqJB_Xf3nemSg%3D%3D&use_mirror=netix&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F HTTP/2.0
host: downloads.sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: _ga=GA1.1.757150557.1737730394
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730396.58.0.0

Response

HTTP/2.0 302

date: Fri, 24 Jan 2025 14:53:21 GMT
content-type: text/html; charset=UTF-8
content-length: 395
location: https://netix.dl.sourceforge.net/project/processhacker/processhacker2/processhacker-2.39-setup.exe?viasf=1
content-disposition: attachment; filename="processhacker-2.39-setup.exe"
set-cookie: sf_mirror_attempt=processhacker:netix:processhacker2/processhacker-2.39-setup.exe; Max-Age=120; Path=/; expires=Fri, 24-Jan-2025 14:55:21 GMT; secure
cf-cache-status: DYNAMIC
content-security-policy: upgrade-insecure-requests
server: cloudflare
cf-ray: 9070da412cc74134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/projects/processhacker/postdownload

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /projects/processhacker/postdownload HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://sourceforge.net/projects/processhacker/files/latest/download
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730396.1737730395.
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE48YkhqNEcweVNlcWkobmMlPUt8NGI-blBIPnI_VUY-JDdxR1lUNzM_aS0xWWcxQzVVaXx4M01hU0tSV3R3aDRMYHxEMEEkS3AqYXJaVjRRVllhWU4pUD5iVz1fMUBAUTYtTWpBYENnPyNXeDBvTTV6KUA7fGg1YUU7ZXlvQzJPMkgpU0hpRXpweDN2S1Y_VDtDeVZhYiNzTWdqU25kXnBHdzJIdUxrNUAxMmNlQ3MyQmdkZHM9YVZ-MDgqVD1RS0w8VF8wRD4qWX5vREopd0d3dWRZQWF5MXJtR0NlSz0jYHxHezQrdEFwTX0qaHMmNXNMX2VnWi1uazI8PTN1QTx8e3ItUX1pLXx5bD9Dflo7PStMOFohP19NUGl7fnF-WFF-In0.47LDeRQ4C3Z6vC7mc2ZOztAZaLCkNJRYS65aQRjCA-4
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730396.58.0.0

Response

HTTP/2.0 103

link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; as=script; rel=preload, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; as=font; crossorigin; rel=preload, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; as=font; crossorigin; rel=preload, <https://a.fsdn.com/con/css/lato.css?1737649919>; as=style; rel=preload, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; as=style; rel=preload, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; as=script; rel=preload
GET

https://sourceforge.net/directory/tp3/?b=70311&c=13569&z=67693&cb=1c31a9a5ff

msedge.exe

Remote address:

104.18.12.149:443

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:36 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
pragma: no-cache
link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; rel=preload; as=script, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/lato.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; rel=preload; as=script
x-ua-compatible: IE=edge,chrome=1
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
x-frame-options: SAMEORIGIN
content-security-policy: fenced-frame-src https:; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; form-action 'self' lists.sourceforge.net; object-src 'none'; upgrade-insecure-requests; script-src 'self' adservice.google.gg adservice.google.bg adservice.google.ie *.gstatic.cn adservice.google.bf adservice.google.co.bw adservice.google.rw adservice.google.la translate.googleapis.com *.google.com adservice.google.hr adservice.google.si adservice.google.nu adservice.google.com.qa adservice.google.com.vc *.html-load.com adservice.google.tl adservice.google.md adservice.google.com.fj adservice.google.com.br *.microsoft.com adservice.google.cg adservice.google.co.ve *.id5-sync.com adservice.google.li adservice.google.ch blob: adservice.google.lt adservice.google.com.af adservice.google.ci adservice.google.com.vn adservice.google.sc adservice.google.bt *.crwdcntrl.net html-load.com adservice.google.com.co adservice.google.com.gi adservice.google.co.uk adservice.google.com.om adservice.google.it *.adnxs.com adservice.google.at *.google-analytics.com adservice.google.iq adservice.google.be adservice.google.com.eg adservice.google.co.th adservice.google.co.ke adservice.google.ru adservice.google.kz adservice.google.nl 07c225f3.online adservice.google.co.ug adservice.google.com.tj adservice.google.cf cdn.jsdelivr.net adservice.google.mg *.gstatic.com adservice.google.bj adservice.google.kg *.consentmanager.net adservice.google.cm adservice.google.co.uz js.hs-banner.com adservice.google.co.tz adservice.google.gt adservice.google.com.py adservice.google.nr adservice.google.com.na adservice.google.com.pg as.sourceforge.net adservice.google.co.za adservice.google.co.zm adservice.google.mn js.hscollectedforms.net adservice.google.com.ng content-loader.com http://c.sf-syn.com adservice.google.ca adservice.google.com.lb *.googletagmanager.com adservice.google.com.pa adservice.google.com.cy adservice.google.com.kw adservice.google.no adservice.google.ae adservice.google.gr ml314.com adservice.google.td adservice.google.me adservice.google.co.id *.4dex.io adservice.google.com.sv adservice.google.cd *.im-apps.net adservice.google.fr adservice.google.ki adservice.google.com.ai a.fsdn.com adservice.google.co.kr adservice.google.ge adservice.google.com.gt adservice.google.com.cu adservice.google.com.ly adservice.google.tt adservice.google.hn adservice.google.es adservice.google.tg adservice.google.so adservice.google.ms *.sharethrough.com adservice.google.ps adservice.google.co.ao *.s-onetag.com adservice.google.ad adservice.google.com.tw translate.google.cn *.2mdn.net adservice.google.hu adservice.google.al adservice.google.to *.googletagservices.com adservice.google.lk adservice.google.vg *.adsafeprotected.com adservice.google.com.bo adservice.google.sm *.as.sourceforge.net adservice.google.je adservice.google.com.sb *.trustarc.com adservice.google.ml adservice.google.mw adservice.google.co.jp adservice.google.com.gh adservice.google.fi *.microsofttranslator.com adservice.google.dm *.ampproject.org *.flashtalking.com adservice.google.de adservice.google.com.ag adservice.google.lu adservice.google.se js.hs-analytics.net *.creativecdn.com adservice.google.gm adservice.google.com.bn adservice.google.ht adservice.google.cz adservice.google.sr adservice.google.st adservice.google.jo adservice.google.sk adservice.google.co.ck adservice.google.vu btloader.com *.07c225f3.online *.moatads.com recaptcha.net adservice.google.co.il js.usemessages.com adservice.google.mv cdn.jsdelivr.net/gh/prebid/shared-id/ *.criteo.net adservice.google.cv *.hs-scripts.com adservice.google.co.mz *.btmessage.com *.tiny.cloud adservice.google.com.my adservice.google.gl adservice.google.com.mx http://b.sf-syn.com adservice.google.com.pe adservice.google.co.zw adservice.google.dj *.content-loader.com adservice.google.co.in adservice.google.ee adservice.google.lv *.css-load.com adservice.google.az css-load.com adservice.google.com.hk adservice.google.dz adservice.google.com.pr adservice.google.com.sa js.hsadspixel.net adservice.google.fm adservice.google.com.mm adservice.google.ga *.openxcdn.net *.fb.html-load.com *.euid.eu *.recaptcha.net adservice.google.is adservice.google.com.au adservice.google.im adservice.google.com.pk adservice.google.com.ph adservice.google.co.vi adservice.google.com.ar adservice.google.ws http://*.pro-market.net adservice.google.mu adservice.google.com.ec adservice.google.rs adservice.google.com.kh *.adtrafficquality.google *.googlesyndication.com adservice.google.com.bd adservice.google.ro *.cloudflareinsights.com *.googleadsserving.cn *.licdn.com adservice.google.com.tr *.doubleverify.com adservice.google.cl adservice.google.com.uy adservice.google.tn adservice.google.com.bz adservice.google.sn adservice.google.pl adservice.google.com.ua adservice.google.com.ni *.crsspxl.com adservice.google.pt adservice.google.co.cr adservice.google.com.mt adservice.google.co.nz adservice.google.gy adservice.google.dk adservice.google.co.ls *.doubleclick.net adservice.google.bs *.uidapi.com *.fb.content-loader.com j.6sc.co adservice.google.tm adservice.google.com.et *.slashdotmedia.com *.lijit.com adservice.google.bi adservice.google.com.np adservice.google.com.jm adservice.google.as adservice.google.com.sg *.script.ac adservice.google.mk adservice.google.com.bh adservice.google.ne 'unsafe-inline' 'unsafe-eval'; frame-ancestors 'self'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com
set-cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74; Max-Age=315360000; Path=/; expires=Mon, 22-Jan-2035 14:53:36 GMT; secure; HttpOnly
set-cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmZAMTVReVNlcXkobmMlPSFBY0NYJCVLdXJ3QFZVMVUlKm5aQCloaFlaM0pKej02V2xpIXBVdVEpeSk1VyElczMzMEdWPElfNWdyblYtYU8jOChZYGJWcEMxKUBAUTYtVDU0bCExTnE-fDIzWTQ_U1RrTWdMV0ZQTF5BYk1PNzxfK0FJPkglO0VWUjlrYkcjP207PmIhPDJyY1M2QHtsZTBIdUg7LUAxQm9oQylvNUZeXnRSKHI7YWNYLTApb3opXihLWiYpYnY4UWRxVldZITZySjwhVVZDV09gQnJpVndxdDl0ayFLTXVQWCgmOTYoNWVnWjtpUFooVzRTSjgzZl5adyVNP3t7JTM2eld0JVg1PEdpJEpkRiZLTm1QJWNLIn0.N8_0QcwfATvTQhNLvsPU3gIEKf3LHWinpw2r7Zwr02E; expires=Tue, 19-Jan-2038 03:14:07 GMT; HttpOnly; Path=/; SameSite=Lax; Secure
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070da9e7e604134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

Request

GET /directory/tp3/?b=70311&c=13569&z=67693&cb=1c31a9a5ff HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/postdownload
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730396.1737730395.
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730396.58.0.0
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmZAMTVReVNlcXkobmMlPSFBY0NYJCVLdXJ3QFZVMVUlKm5aQCloaFlaM0pKej02V2xpIXBVdVEpeSk1VyElczMzMEdWPElfNWdyblYtYU8jOChZYGJWcEMxKUBAUTYtVDU0bCExTnE-fDIzWTQ_U1RrTWdMV0ZQTF5BYk1PNzxfK0FJPkglO0VWUjlrYkcjP207PmIhPDJyY1M2QHtsZTBIdUg7LUAxQm9oQylvNUZeXnRSKHI7YWNYLTApb3opXihLWiYpYnY4UWRxVldZITZySjwhVVZDV09gQnJpVndxdDl0ayFLTXVQWCgmOTYoNWVnWjtpUFooVzRTSjgzZl5adyVNP3t7JTM2eld0JVg1PEdpJEpkRiZLTm1QJWNLIn0.N8_0QcwfATvTQhNLvsPU3gIEKf3LHWinpw2r7Zwr02E
GET

https://sourceforge.net/directory/tp3/?b=70769&c=13647&z=68149&cb=22f270a2e4

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=70769&c=13647&z=68149&cb=22f270a2e4 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/postdownload
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730396.1737730395.
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730396.58.0.0
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmZAMTVReVNlcXkobmMlPSFBY0NYJCVLdXJ3QFZVMVUlKm5aQCloaFlaM0pKej02V2xpIXBVdVEpeSk1VyElczMzMEdWPElfNWdyblYtYU8jOChZYGJWcEMxKUBAUTYtVDU0bCExTnE-fDIzWTQ_U1RrTWdMV0ZQTF5BYk1PNzxfK0FJPkglO0VWUjlrYkcjP207PmIhPDJyY1M2QHtsZTBIdUg7LUAxQm9oQylvNUZeXnRSKHI7YWNYLTApb3opXihLWiYpYnY4UWRxVldZITZySjwhVVZDV09gQnJpVndxdDl0ayFLTXVQWCgmOTYoNWVnWjtpUFooVzRTSjgzZl5adyVNP3t7JTM2eld0JVg1PEdpJEpkRiZLTm1QJWNLIn0.N8_0QcwfATvTQhNLvsPU3gIEKf3LHWinpw2r7Zwr02E

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:38 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:38 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070daa81ff24134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/directory/tp3/?b=67939&c=13111&z=65311&cb=8fcf8e6c12

msedge.exe

Remote address:

104.18.12.149:443

Request

GET /directory/tp3/?b=67939&c=13111&z=65311&cb=8fcf8e6c12 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/postdownload
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730396.1737730395.
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730396.58.0.0
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmZAMTVReVNlcXkobmMlPSFBY0NYJCVLdXJ3QFZVMVUlKm5aQCloaFlaM0pKej02V2xpIXBVdVEpeSk1VyElczMzMEdWPElfNWdyblYtYU8jOChZYGJWcEMxKUBAUTYtVDU0bCExTnE-fDIzWTQ_U1RrTWdMV0ZQTF5BYk1PNzxfK0FJPkglO0VWUjlrYkcjP207PmIhPDJyY1M2QHtsZTBIdUg7LUAxQm9oQylvNUZeXnRSKHI7YWNYLTApb3opXihLWiYpYnY4UWRxVldZITZySjwhVVZDV09gQnJpVndxdDl0ayFLTXVQWCgmOTYoNWVnWjtpUFooVzRTSjgzZl5adyVNP3t7JTM2eld0JVg1PEdpJEpkRiZLTm1QJWNLIn0.N8_0QcwfATvTQhNLvsPU3gIEKf3LHWinpw2r7Zwr02E

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:38 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:38 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070daa81ff44134-LHR
alt-svc: h3=":443"; ma=86400
GET

https://sourceforge.net/projects/processhacker/

msedge.exe

Remote address:

104.18.12.149:443

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:38 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:38 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070daa81fee4134-LHR
alt-svc: h3=":443"; ma=86400

Request

GET /projects/processhacker/ HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://sourceforge.net/projects/processhacker/postdownload
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmZAMTVReVNlcXkobmMlPSFBY0NYJCVLdXJ3QFZVMVUlKm5aQCloaFlaM0pKej02V2xpIXBVdVEpeSk1VyElczMzMEdWPElfNWdyblYtYU8jOChZYGJWcEMxKUBAUTYtVDU0bCExTnE-fDIzWTQ_U1RrTWdMV0ZQTF5BYk1PNzxfK0FJPkglO0VWUjlrYkcjP207PmIhPDJyY1M2QHtsZTBIdUg7LUAxQm9oQylvNUZeXnRSKHI7YWNYLTApb3opXihLWiYpYnY4UWRxVldZITZySjwhVVZDV09gQnJpVndxdDl0ayFLTXVQWCgmOTYoNWVnWjtpUFooVzRTSjgzZl5adyVNP3t7JTM2eld0JVg1PEdpJEpkRiZLTm1QJWNLIn0.N8_0QcwfATvTQhNLvsPU3gIEKf3LHWinpw2r7Zwr02E
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730418.1737730395.
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730419.35.0.0
GET

https://sourceforge.net/directory/tp3/?b=77405&c=14943&z=74801&cb=226f3cfef7

msedge.exe

Remote address:

104.18.12.149:443

Response

HTTP/2.0 103

link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; as=script; rel=preload, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; as=font; crossorigin; rel=preload, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; as=font; crossorigin; rel=preload, <https://a.fsdn.com/con/css/lato.css?1737649919>; as=style; rel=preload, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; as=style; rel=preload, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; as=script; rel=preload

Request

GET /directory/tp3/?b=77405&c=14943&z=74801&cb=226f3cfef7 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730418.1737730395.
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730419.35.0.0
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmY_fmJyWmYtcld2PUt8O3p8eHBhWDR2UkB5Q2V-YHUoY0dkZDxBPDs4Xktxd3ghJWdCYUJeRStIUz5TcEBSUTYwSyZHNjkwe31xVGtrKyFJaFUlSX5IYFROKms3cmVCcV9JPzYkT24lVVYzVGlRISo7Qzs1eCNsUE9aWkc8QGNqKiUyeGxDIShEcHRxXmN9KHVNXioreVh0bFhUNTd-PEVHUVN4NHtgbn5PMDtTaWVrRFRpfmNCbGl3NzJoUjZ1RVMpMS1YMkFrIW02Y1VkJGQrQipKQnxrKH59fSN5ZE5nYGZVc3FDTTBrSlF7K2YmUTZBO1JIKVkwX3w2JipKfEExKktkZXdVfDBYX0lRdWp7TkNtZXd7ZXswfitSQz1LIn0.XC5Oct0E5RQkK863RWyWw0xhqGk86gI1sfZ11f7GstI
GET

https://sourceforge.net/rest/p/processhacker/activity?limit=5

msedge.exe

Remote address:

104.18.12.149:443

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:53 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache
pragma: no-cache
link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919>; rel=preload; as=script, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/lato.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/css/sandiego.css?1737649919>; rel=preload; as=style, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919>; rel=preload; as=script
x-ua-compatible: IE=edge,chrome=1
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
x-frame-options: SAMEORIGIN
content-security-policy: script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; fenced-frame-src https:; form-action 'self' lists.sourceforge.net; object-src 'none'; frame-ancestors 'self'; script-src 'self' adservice.google.lv adservice.google.st adservice.google.it adservice.google.tm adservice.google.com.my adservice.google.bg *.googletagservices.com adservice.google.com.vn adservice.google.dz adservice.google.com.py adservice.google.com.bh adservice.google.la adservice.google.tt *.script.ac *.btmessage.com adservice.google.com.gi ml314.com adservice.google.co.ck adservice.google.com.hk adservice.google.co.ve adservice.google.lu adservice.google.vg adservice.google.com.mm adservice.google.com.cu *.4dex.io adservice.google.kz adservice.google.ws adservice.google.to adservice.google.com.fj adservice.google.hn 07c225f3.online j.6sc.co adservice.google.mu adservice.google.co.in adservice.google.com.mx adservice.google.hr adservice.google.com.ec adservice.google.com.sv adservice.google.com.kw adservice.google.com.qa adservice.google.co.zw adservice.google.com.sg adservice.google.co.cr adservice.google.cv a.fsdn.com cdn.jsdelivr.net adservice.google.com.eg adservice.google.be adservice.google.com.bn *.googletagmanager.com adservice.google.co.vi adservice.google.vu adservice.google.com.pr *.doubleclick.net adservice.google.al *.microsofttranslator.com adservice.google.com.ar adservice.google.iq adservice.google.hu adservice.google.gm adservice.google.ro *.crwdcntrl.net adservice.google.fi adservice.google.ee adservice.google.es adservice.google.rs adservice.google.com.ng adservice.google.com.np http://b.sf-syn.com adservice.google.co.il adservice.google.com.ph adservice.google.gl adservice.google.dk *.creativecdn.com *.euid.eu *.s-onetag.com adservice.google.as adservice.google.tn adservice.google.bj adservice.google.com.vc adservice.google.com.pe adservice.google.td adservice.google.is adservice.google.com.sa adservice.google.az cdn.jsdelivr.net/gh/prebid/shared-id/ content-loader.com adservice.google.com.bz translate.googleapis.com adservice.google.nr adservice.google.mg adservice.google.mk *.fb.content-loader.com adservice.google.fm adservice.google.bi *.tiny.cloud adservice.google.co.ke js.hsadspixel.net adservice.google.md adservice.google.mv adservice.google.fr adservice.google.sk adservice.google.com.lb *.adnxs.com adservice.google.ch adservice.google.cz adservice.google.com.tr adservice.google.com.pa adservice.google.com.ai adservice.google.co.mz adservice.google.sn *.crsspxl.com *.2mdn.net *.css-load.com adservice.google.im adservice.google.tg adservice.google.cl adservice.google.cd adservice.google.bf adservice.google.jo js.hs-analytics.net blob: *.uidapi.com adservice.google.li adservice.google.lt adservice.google.com.mt *.licdn.com adservice.google.com.na recaptcha.net adservice.google.lk *.gstatic.cn *.fb.html-load.com adservice.google.com.kh *.ampproject.org adservice.google.co.th *.as.sourceforge.net adservice.google.sm adservice.google.sr translate.google.cn adservice.google.ae adservice.google.com.co adservice.google.ml *.lijit.com css-load.com adservice.google.com.af adservice.google.co.jp adservice.google.cg adservice.google.co.ls *.microsoft.com *.adtrafficquality.google adservice.google.ps adservice.google.dj adservice.google.je adservice.google.gg adservice.google.mw adservice.google.ms *.cloudflareinsights.com *.im-apps.net adservice.google.cm adservice.google.co.kr adservice.google.com.gh adservice.google.com.tj adservice.google.co.ug adservice.google.ru adservice.google.so adservice.google.sc js.usemessages.com adservice.google.co.ao adservice.google.co.tz adservice.google.com.gt *.googleadsserving.cn *.slashdotmedia.com adservice.google.mn *.googlesyndication.com adservice.google.ci adservice.google.com.tw adservice.google.ad *.html-load.com adservice.google.ne *.consentmanager.net *.moatads.com adservice.google.pt html-load.com adservice.google.co.zm adservice.google.com.bo adservice.google.dm *.google.com *.criteo.net adservice.google.com.pk adservice.google.com.br adservice.google.ga *.doubleverify.com *.google-analytics.com *.content-loader.com adservice.google.com.bd js.hscollectedforms.net adservice.google.ie adservice.google.com.ly adservice.google.co.bw adservice.google.com.et adservice.google.com.cy adservice.google.cf adservice.google.si adservice.google.kg adservice.google.de adservice.google.com.sb adservice.google.ge adservice.google.co.id *.sharethrough.com adservice.google.tl adservice.google.com.om adservice.google.nl adservice.google.com.jm adservice.google.com.au adservice.google.bs adservice.google.ki adservice.google.ht adservice.google.bt *.flashtalking.com adservice.google.co.uz adservice.google.pl as.sourceforge.net adservice.google.com.ni adservice.google.me adservice.google.com.pg js.hs-banner.com adservice.google.gt *.id5-sync.com *.adsafeprotected.com http://c.sf-syn.com adservice.google.com.ua *.07c225f3.online adservice.google.co.uk *.openxcdn.net *.trustarc.com *.gstatic.com *.hs-scripts.com adservice.google.gr adservice.google.co.za adservice.google.co.nz adservice.google.gy adservice.google.ca adservice.google.rw adservice.google.com.ag *.recaptcha.net adservice.google.se adservice.google.com.uy adservice.google.nu adservice.google.no adservice.google.at http://*.pro-market.net btloader.com 'unsafe-inline' 'unsafe-eval'; upgrade-insecure-requests
set-cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74; Max-Age=315360000; Path=/; expires=Mon, 22-Jan-2035 14:53:53 GMT; secure; HttpOnly
set-cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmY_fmJyWmYtcld2PUt8O3p8eHBhWDR2UkB5Q2V-YHUoY0dkZDxBPDs4Xktxd3ghJWdCYUJeRStIUz5TcEBSUTYwSyZHNjkwe31xVGtrKyFJaFUlSX5IYFROKms3cmVCcV9JPzYkT24lVVYzVGlRISo7Qzs1eCNsUE9aWkc8QGNqKiUyeGxDIShEcHRxXmN9KHVNXioreVh0bFhUNTd-PEVHUVN4NHtgbn5PMDtTaWVrRFRpfmNCbGl3NzJoUjZ1RVMpMS1YMkFrIW02Y1VkJGQrQipKQnxrKH59fSN5ZE5nYGZVc3FDTTBrSlF7K2YmUTZBO1JIKVkwX3w2JipKfEExKktkZXdVfDBYX0lRdWp7TkNtZXd7ZXswfitSQz1LIn0.XC5Oct0E5RQkK863RWyWw0xhqGk86gI1sfZ11f7GstI; expires=Tue, 19-Jan-2038 03:14:07 GMT; HttpOnly; Path=/; SameSite=Lax; Secure
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070db050a824134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

Request

GET /rest/p/processhacker/activity?limit=5 HTTP/2.0
host: sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
accept: application/json, text/javascript, */*; q=0.01
sec-ch-ua-platform-version: "10.0"
x-requested-with: XMLHttpRequest
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/projects/processhacker/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: VISITOR=e0962269-8ee8-4284-9495-244685befe74
cookie: __cmpcc=1
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__
cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3
cookie: _ga=GA1.1.757150557.1737730394
cookie: _gd_visitor=df00f312-3690-4142-826e-69b5a5d0a619
cookie: _gd_session=aebd156d-09df-4efc-816a-5b1a64caf4f3
cookie: _pk_ses.39.0d7e=*
cookie: __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA
cookie: __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw
cookie: __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW
cookie: _pk_id.39.0d7e=be499c5e5f9d08e6.1737730395.1.1737730418.1737730395.
cookie: _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730419.35.0.0
cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmY_fmJyWmYtcld2PUt8O3p8eHBhWDR2UkB5Q2V-YHUoY0dkZDxBPDs4Xktxd3ghJWdCYUJeRStIUz5TcEBSUTYwSyZHNjkwe31xVGtrKyFJaFUlSX5IYFROKms3cmVCcV9JPzYkT24lVVYzVGlRISo7Qzs1eCNsUE9aWkc8QGNqKiUyeGxDIShEcHRxXmN9KHVNXioreVh0bFhUNTd-PEVHUVN4NHtgbn5PMDtTaWVrRFRpfmNCbGl3NzJoUjZ1RVMpMS1YMkFrIW02Y1VkJGQrQipKQnxrKH59fSN5ZE5nYGZVc3FDTTBrSlF7K2YmUTZBO1JIKVkwX3w2JipKfEExKktkZXdVfDBYX0lRdWp7TkNtZXd7ZXswfitSQz1LIn0.XC5Oct0E5RQkK863RWyWw0xhqGk86gI1sfZ11f7GstI
if-modified-since: Fri, 24 Jan 2025 14:09:57 GMT
DNS

msedge.exe

Remote address:

104.18.12.149:443

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:54 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
cache-control: private, max-age=0, no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=e35e1b89ffde0f51f2de7f879d963ac3; expires=Sat, 24-Jan-2026 14:53:54 GMT; path=/
x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; upgrade-insecure-requests
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070db0d4b444134-LHR
alt-svc: h3=":443"; ma=86400
DNS

msedge.exe

Remote address:

104.18.12.149:443

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:54 GMT
content-type: application/json; charset=utf-8
cache-control: no-cache
pragma: no-cache
content-security-policy: upgrade-insecure-requests; form-action 'self'; object-src 'none'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com *.criteo.com *.openx.net; script-src-attr 'none' 'report-sample'; script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.ampproject.org *.criteo.net *.creativecdn.com *.crwdcntrl.net *.uidapi.com *.im-apps.net *.euid.eu *.openxcdn.net *.id5-sync.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'; frame-ancestors 'self'
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
set-cookie: sourceforge=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJic1oiOiJjLW1FdXV9VENuNVFabmFUOE4tTmY_fmJyWmYtclc1cDJYIzVHOyteV1FMOGR3QFZVMVUlPWk8ZDtyMVQobmp6VllfN05SRFYqRl5TSXp3Mkh-Yl9zMGd4JFlWR2pVTUhsKCR6c0crKGgob0hxMyVmbmUhOGZoJW03Vl5PKDF6NmA-U2hIUjBMV0ZQTF5BYk1PNzxfKyZDYy1JKUVWUjlrYkE1LWYjZ1VjNDVMI18rKEw9VzYrc3d-THpJISVgb2p-YXw-TGNlbWp-KGlPYUsoMj9rbjFxbnBPOzZHckxiJSUqZERDWiVoZyFPJEBIaVE4MUlKKEp8SnZaOVRERTJIQF99S2BVd2JTSm5IRUJ4ciZZKHBZfDcqZjRfP3BwfG5YZ1hoKGtoYGdXWi1gfnc_QlVJaCJ9.aENzCBJXmT_DZaRGZzcu9Gkr2SzImBfT990C-aawSvQ; HttpOnly; Path=/; SameSite=Lax; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 9070db0f4d3c4134-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
DNS

31.11.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

31.11.18.104.in-addr.arpa

IN PTR

Response
DNS

14.25.17.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

14.25.17.104.in-addr.arpa

IN PTR

Response
DNS

149.12.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

149.12.18.104.in-addr.arpa

IN PTR

Response
DNS

region1.google-analytics.com

msedge.exe

Remote address:

8.8.8.8:53

Request

region1.google-analytics.com

IN A

Response

region1.google-analytics.com

IN A

216.239.32.36

region1.google-analytics.com

IN A

216.239.34.36
POST

https://region1.google-analytics.com/g/collect?v=2&tid=G-7H00X2X1J4&gtm=45je51n0v9101840464za200&_p=1737730368671&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=102067555~102067808~102081485~102123608&cid=436559282.1737730369&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730368&sct=1&seg=0&dl=https%3A%2F%2Fprocesshacker.sourceforge.io%2Fdownloads.php&dr=https%3A%2F%2Fwww.bing.com%2F&dt=Downloads%20-%20Process%20Hacker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1080

msedge.exe

Remote address:

216.239.32.36:443

Request

POST /g/collect?v=2&tid=G-7H00X2X1J4&gtm=45je51n0v9101840464za200&_p=1737730368671&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=102067555~102067808~102081485~102123608&cid=436559282.1737730369&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730368&sct=1&seg=0&dl=https%3A%2F%2Fprocesshacker.sourceforge.io%2Fdownloads.php&dr=https%3A%2F%2Fwww.bing.com%2F&dt=Downloads%20-%20Process%20Hacker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1080 HTTP/2.0
host: region1.google-analytics.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://processhacker.sourceforge.io
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://processhacker.sourceforge.io/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

42.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

42.200.250.142.in-addr.arpa

IN PTR

Response

42.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f101e100net
DNS

227.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.179.250.142.in-addr.arpa

IN PTR

Response

227.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f31e100net
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

2.22.54.122

e86303.dscx.akamaiedge.net

IN A

2.22.54.105
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

2.22.54.122

e86303.dscx.akamaiedge.net

IN A

2.22.54.105
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 1187
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:52:51 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
DNS

122.54.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

122.54.22.2.in-addr.arpa

IN PTR

Response

122.54.22.2.in-addr.arpa

IN PTR

a2-22-54-122deploystaticakamaitechnologiescom
DNS

11.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.227.111.52.in-addr.arpa

IN PTR

Response
DNS

a.fsdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

a.fsdn.com

IN A

Response

a.fsdn.com

IN CNAME

a.fsdn.com.cdn.cloudflare.net

a.fsdn.com.cdn.cloudflare.net

IN A

104.18.16.56

a.fsdn.com.cdn.cloudflare.net

IN A

104.18.17.56
DNS

a.fsdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

a.fsdn.com

IN A

Response

a.fsdn.com

IN CNAME

a.fsdn.com.cdn.cloudflare.net

a.fsdn.com.cdn.cloudflare.net

IN A

104.18.16.56

a.fsdn.com.cdn.cloudflare.net

IN A

104.18.17.56
GET

https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://sourceforge.net
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: font/woff2
content-length: 24712
last-modified: Mon, 17 Jan 2022 17:18:46 GMT
etag: "61e5a4f6-6088"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 50694
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0d10ef13-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://sourceforge.net
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: font/woff2
content-length: 25320
last-modified: Tue, 30 Nov 2021 16:01:18 GMT
etag: "61a64ace-62e8"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 41931
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0d0def13-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/css/lato.css?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/css/lato.css?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: text/css
content-length: 37
last-modified: Tue, 27 Aug 2024 15:46:58 GMT
etag: "66cdf4f2-25"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80199
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0af2a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/css/sandiego.css?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/css/sandiego.css?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: text/css
last-modified: Thu, 26 Oct 2023 18:19:52 GMT
etag: W/"653aadc8-304"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80185
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0aeba67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/css/sftheme/sandiego/cmp.css?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/css/sftheme/sandiego/cmp.css?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Thu, 02 Jan 2025 18:24:14 GMT
etag: W/"6776d9ce-7b2c"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 41932
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0af3a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/css/disallow.css?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/css/disallow.css?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: text/css
last-modified: Fri, 06 Dec 2024 20:00:54 GMT
etag: W/"675357f6-1691"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80199
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0aefa67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-cmp-top.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Wed, 05 Jun 2024 19:46:52 GMT
etag: W/"6660c0ac-1e86c"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 50690
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0af4a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-head.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
content-length: 35
last-modified: Thu, 17 Oct 2024 20:32:58 GMT
etag: "6711747a-23"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80196
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0af8a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/adpopup.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/adpopup.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: text/css
last-modified: Thu, 23 Jan 2025 16:35:39 GMT
etag: W/"67926fdb-655b2"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 46578
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cb0aeda67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-base.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-base.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Wed, 04 Dec 2024 20:14:08 GMT
etag: W/"6750b810-1b1f0"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80183
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbac85a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-foundation-base.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-foundation-base.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Wed, 29 Jul 2020 18:09:01 GMT
etag: W/"5f21bb3d-1582f"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80183
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbac8ba67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-foundation-tooltip.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-foundation-tooltip.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Sat, 07 Sep 2019 00:24:36 GMT
etag: W/"5d72f8c4-3d79"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 41927
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbdce5a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-project.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-project.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/webp
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=4122
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: script-src-attr 'none' 'report-sample'; upgrade-insecure-requests; object-src 'none'; form-action 'self'; script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.ampproject.org *.criteo.net *.creativecdn.com *.crwdcntrl.net *.uidapi.com *.im-apps.net *.euid.eu *.openxcdn.net *.id5-sync.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'; frame-ancestors 'self'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com *.criteo.com *.openx.net
etag: "ProcessHacker.png?2013-07-28 12:32:27+00:00"
expires: Mon, 24 Feb 2025 14:53:02 GMT
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
last-modified: Sun, 28 Jul 2013 12:32:27 GMT
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 40640
server: cloudflare
cf-ray: 9070d9cbdcf6a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/images/sandiego/sf-logo-full.svg

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/images/sandiego/sf-logo-full.svg HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Thu, 09 Jan 2025 18:54:22 GMT
etag: W/"67801b5e-1eddb"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80172
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbdceca67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/assets/maxnav/sourceforge/okta300-7baad53c.png

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/assets/maxnav/sourceforge/okta300-7baad53c.png HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 19:46:29 GMT
etag: W/"6334a495-3ff8"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 474290
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbdcefa67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/allura/p/processhacker/icon?1518244867

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /allura/p/processhacker/icon?1518244867 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/webp
content-length: 7734
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=10307
content-disposition: inline; filename="okta300-7baad53c.webp"
vary: Accept
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "6764866a-2843"
expires: Mon, 24 Feb 2025 14:53:02 GMT
last-modified: Thu, 19 Dec 2024 20:47:38 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 226353
accept-ranges: bytes
server: cloudflare
cf-ray: 9070d9cbdcf4a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/images/sandiego/sf-icon-black.svg

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/images/sandiego/sf-icon-black.svg HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/svg+xml
last-modified: Tue, 29 Nov 2022 21:50:13 GMT
etag: W/"63867e95-9f5"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 196441
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbdcfea67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/sandiego/vendor/owl.carousel.min.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/sandiego/vendor/owl.carousel.min.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Thu, 20 Jan 2022 20:46:35 GMT
etag: W/"61e9ca2b-a70e"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 50688
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbdd01a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/sandiego/vendor/featherlight.min.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/sandiego/vendor/featherlight.min.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Thu, 20 Jan 2022 20:46:35 GMT
etag: W/"61e9ca2b-ca5"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 41936
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbed0fa67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/sandiego/vendor/featherlight.gallery.min.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/sandiego/vendor/featherlight.gallery.min.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: application/javascript
last-modified: Thu, 20 Jan 2022 20:46:35 GMT
etag: W/"61e9ca2b-21c0"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 50705
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cbdd04a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/17763

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/17763 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/webp
content-length: 6996
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=10041
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: frame-ancestors 'self'; form-action 'self' lists.sourceforge.net; upgrade-insecure-requests; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; script-src 'self' recaptcha.net adservice.google.com.qa adservice.google.al adservice.google.ga adservice.google.com.et adservice.google.gr *.tiny.cloud adservice.google.je adservice.google.vg adservice.google.ee adservice.google.co.ve adservice.google.sr adservice.google.com.co adservice.google.ie adservice.google.pl *.microsofttranslator.com *.google.com adservice.google.co.ck adservice.google.mv adservice.google.hu js.usemessages.com adservice.google.com.lb adservice.google.co.nz adservice.google.im adservice.google.bf adservice.google.ht html-load.com cdn.jsdelivr.net adservice.google.com.au adservice.google.com.ph adservice.google.cg adservice.google.az adservice.google.st *.lijit.com adservice.google.cl adservice.google.so adservice.google.to adservice.google.com.pr adservice.google.co.jp ml314.com adservice.google.com.tw *.doubleverify.com *.adnxs.com adservice.google.co.mz adservice.google.tl adservice.google.com.gh adservice.google.cf adservice.google.com.ai *.googletagservices.com *.as.sourceforge.net adservice.google.com.pk btloader.com adservice.google.com.na *.gstatic.cn adservice.google.dm adservice.google.co.ke adservice.google.li adservice.google.mg adservice.google.com.py adservice.google.com.gi adservice.google.sm *.crsspxl.com adservice.google.gl adservice.google.be *.doubleclick.net *.cloudflareinsights.com *.2mdn.net js.hscollectedforms.net adservice.google.cz adservice.google.co.cr *.btmessage.com adservice.google.com.mt adservice.google.com.ar a.fsdn.com adservice.google.kz *.creativecdn.com adservice.google.rs adservice.google.co.tz adservice.google.com.gt adservice.google.co.ug adservice.google.gt adservice.google.hr adservice.google.es *.hs-scripts.com adservice.google.is *.fb.content-loader.com *.microsoft.com *.slashdotmedia.com content-loader.com *.googlesyndication.com adservice.google.com.tr adservice.google.com.cy *.fb.html-load.com adservice.google.com.ec *.consentmanager.net adservice.google.mk adservice.google.it *.4dex.io adservice.google.com.bo adservice.google.co.ao adservice.google.rw adservice.google.com.eg adservice.google.ml adservice.google.com.om adservice.google.co.th adservice.google.com.af j.6sc.co adservice.google.tg *.s-onetag.com adservice.google.gg cdn.jsdelivr.net/gh/prebid/shared-id/ http://b.sf-syn.com adservice.google.td adservice.google.bt http://*.pro-market.net adservice.google.lu adservice.google.dj adservice.google.com.pa adservice.google.ws *.im-apps.net adservice.google.ae adservice.google.pt adservice.google.com.sa adservice.google.tt adservice.google.nu adservice.google.md adservice.google.com.vc adservice.google.co.vi adservice.google.lv adservice.google.co.id *.sharethrough.com adservice.google.gy adservice.google.com.ua adservice.google.si adservice.google.com.np adservice.google.com.vn *.googleadsserving.cn adservice.google.mn adservice.google.dz adservice.google.com.uy *.gstatic.com adservice.google.com.jm adservice.google.com.tj adservice.google.vu adservice.google.no adservice.google.com.br *.adtrafficquality.google *.crwdcntrl.net *.html-load.com *.euid.eu adservice.google.com.pg adservice.google.bj *.flashtalking.com adservice.google.com.bz adservice.google.ki *.script.ac adservice.google.ca adservice.google.co.kr adservice.google.com.sv *.licdn.com *.openxcdn.net adservice.google.la *.content-loader.com adservice.google.de adservice.google.fr *.criteo.net adservice.google.co.bw adservice.google.lt adservice.google.com.bd *.moatads.com adservice.google.com.bn adservice.google.com.ni adservice.google.co.zm adservice.google.sn adservice.google.com.sg 07c225f3.online adservice.google.ne translate.googleapis.com *.07c225f3.online blob: adservice.google.se adservice.google.com.cu *.recaptcha.net adservice.google.com.mx js.hs-analytics.net adservice.google.ch adservice.google.ps adservice.google.cv adservice.google.dk *.css-load.com adservice.google.bs adservice.google.jo adservice.google.co.ls adservice.google.gm adservice.google.com.sb adservice.google.cd *.ampproject.org adservice.google.co.il css-load.com adservice.google.fm adservice.google.fi adservice.google.com.fj adservice.google.com.bh adservice.google.co.in adservice.google.ge adservice.google.com.hk adservice.google.iq adservice.google.co.uz adservice.google.as adservice.google.ci *.adsafeprotected.com adservice.google.mw *.google-analytics.com adservice.google.kg adservice.google.me http://c.sf-syn.com as.sourceforge.net adservice.google.ro adservice.google.tn adservice.google.cm adservice.google.mu adservice.google.tm *.uidapi.com *.id5-sync.com adservice.google.co.uk adservice.google.sc adservice.google.com.ag adservice.google.co.za adservice.google.co.zw adservice.google.sk adservice.google.com.kw adservice.google.com.ly adservice.google.ms adservice.google.com.ng adservice.google.nr adservice.google.lk *.googletagmanager.com adservice.google.hn adservice.google.ad translate.google.cn *.trustarc.com adservice.google.com.pe adservice.google.bi js.hsadspixel.net js.hs-banner.com adservice.google.at adservice.google.nl adservice.google.com.mm adservice.google.com.my adservice.google.com.kh adservice.google.bg adservice.google.ru 'unsafe-inline' 'unsafe-eval'; object-src 'none'; fenced-frame-src https:
expires: Mon, 24 Feb 2025 14:53:02 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 13:49:18 GMT
cf-cache-status: HIT
age: 1970
accept-ranges: bytes
server: cloudflare
cf-ray: 9070d9cbed12a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/syndication/badge_img_direct/oss-open-source-excellence/oss-open-source-excellence/?variant_id=sf

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/syndication/badge_img_direct/oss-open-source-excellence/oss-open-source-excellence/?variant_id=sf HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/svg+xml; charset=utf-8
x-ua-compatible: IE=edge,chrome=1
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
x-frame-options: SAMEORIGIN
content-security-policy: frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com app.hubspot.com; object-src 'none'; form-action 'self' lists.sourceforge.net; upgrade-insecure-requests; script-src-attr 'none' 'report-sample'; script-src 'self' adservice.google.com.ag adservice.google.no *.im-apps.net adservice.google.co.id *.flashtalking.com adservice.google.ws adservice.google.kg adservice.google.gr adservice.google.bi adservice.google.com.na adservice.google.gm adservice.google.com.qa adservice.google.com.bd *.tiny.cloud adservice.google.sk adservice.google.com.tw adservice.google.com.mx adservice.google.com.ua adservice.google.ru adservice.google.mu adservice.google.com.et adservice.google.com.ni *.slashdotmedia.com adservice.google.com.bz adservice.google.com.mt adservice.google.sm *.4dex.io adservice.google.ca adservice.google.cz adservice.google.co.cr adservice.google.hu adservice.google.lu adservice.google.md adservice.google.com.au adservice.google.com.jm js.hs-banner.com *.google.com adservice.google.com.gi adservice.google.com.sb adservice.google.sn adservice.google.com.fj *.creativecdn.com adservice.google.co.th http://*.pro-market.net adservice.google.com.sg adservice.google.co.tz adservice.google.co.mz translate.googleapis.com adservice.google.com.sa *.microsoft.com adservice.google.com.cy adservice.google.cm *.trustarc.com adservice.google.com.gh *.adtrafficquality.google adservice.google.bg adservice.google.com.om adservice.google.gy adservice.google.si adservice.google.co.zm adservice.google.mk adservice.google.az adservice.google.vg a.fsdn.com adservice.google.jo adservice.google.al *.moatads.com adservice.google.is adservice.google.ht adservice.google.as adservice.google.co.uk adservice.google.ad adservice.google.com.sv adservice.google.so adservice.google.com.eg adservice.google.com.kw adservice.google.td *.doubleclick.net adservice.google.com.ph adservice.google.com.vn adservice.google.com.ar adservice.google.com.ng adservice.google.bj adservice.google.tm adservice.google.mw adservice.google.ne adservice.google.lv *.doubleverify.com adservice.google.co.ke adservice.google.ge adservice.google.at adservice.google.mn adservice.google.ps adservice.google.co.il adservice.google.com.lb http://c.sf-syn.com adservice.google.rs *.gstatic.cn adservice.google.ee adservice.google.cl adservice.google.co.nz adservice.google.com.ai adservice.google.co.uz adservice.google.gl adservice.google.tt *.2mdn.net adservice.google.ci adservice.google.fm adservice.google.com.cu adservice.google.de adservice.google.tl js.hscollectedforms.net *.id5-sync.com adservice.google.gt adservice.google.cf adservice.google.co.za adservice.google.com.bh adservice.google.cv adservice.google.dk adservice.google.com.mm adservice.google.bt adservice.google.co.bw adservice.google.bs *.google-analytics.com adservice.google.nl adservice.google.ki js.hsadspixel.net adservice.google.com.pk *.googlesyndication.com adservice.google.gg adservice.google.vu adservice.google.sr adservice.google.ro adservice.google.com.np adservice.google.co.kr *.euid.eu adservice.google.ch adservice.google.dm adservice.google.nr adservice.google.com.tj cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.co.ck adservice.google.dj js.hs-analytics.net cdn.jsdelivr.net adservice.google.lk adservice.google.com.pa adservice.google.hn adservice.google.com.co adservice.google.hr adservice.google.ml adservice.google.mv adservice.google.pt http://b.sf-syn.com adservice.google.sc *.cloudflareinsights.com adservice.google.lt adservice.google.fr *.sharethrough.com adservice.google.ae adservice.google.tn adservice.google.it adservice.google.dz adservice.google.com.ly ml314.com *.adsafeprotected.com adservice.google.com.af recaptcha.net *.s-onetag.com adservice.google.com.hk *.hs-scripts.com adservice.google.com.uy *.uidapi.com adservice.google.co.ug adservice.google.com.pg adservice.google.com.bn adservice.google.com.ec *.licdn.com *.openxcdn.net adservice.google.com.tr adservice.google.kz *.btmessage.com *.consentmanager.net *.crsspxl.com adservice.google.co.ve *.recaptcha.net *.lijit.com adservice.google.be adservice.google.com.bo *.googletagservices.com adservice.google.fi adservice.google.es adservice.google.li *.microsofttranslator.com adservice.google.im adservice.google.rw adservice.google.co.ls adservice.google.cg adservice.google.com.br *.ampproject.org adservice.google.co.vi btloader.com *.adnxs.com adservice.google.com.vc adservice.google.iq adservice.google.st js.usemessages.com adservice.google.ie *.googleadsserving.cn adservice.google.com.my *.script.ac j.6sc.co adservice.google.co.in *.criteo.net adservice.google.je adservice.google.bf *.googletagmanager.com adservice.google.pl adservice.google.to adservice.google.se adservice.google.ga adservice.google.co.zw adservice.google.co.ao adservice.google.co.jp adservice.google.mg adservice.google.la adservice.google.nu adservice.google.com.py adservice.google.ms *.gstatic.com translate.google.cn adservice.google.com.gt adservice.google.com.pr adservice.google.com.kh *.crwdcntrl.net adservice.google.com.pe adservice.google.tg adservice.google.cd adservice.google.me 'unsafe-inline' 'unsafe-eval'; fenced-frame-src https:; frame-ancestors 'self'
x-content-type-options: nosniff
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
last-modified: Fri, 24 Jan 2025 08:05:35 GMT
cf-cache-status: HIT
age: 14283
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cd386fa67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/proj/processhacker/screenshots/283033.jpg/245/183/1

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/proj/processhacker/screenshots/283033.jpg/245/183/1 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/jpeg
content-length: 14095
cf-bgj: imgq:100,h2pri
cf-polished: origSize=14683
cache-control: public, max-age=2678400
content-security-policy: frame-ancestors 'self'; fenced-frame-src https:; script-src 'self' adservice.google.co.kr *.licdn.com *.google.com adservice.google.com.bn *.html-load.com *.google-analytics.com adservice.google.se adservice.google.ru adservice.google.bt adservice.google.rw ml314.com adservice.google.sk adservice.google.hr adservice.google.ki adservice.google.sc adservice.google.jo adservice.google.dj adservice.google.im adservice.google.com.my adservice.google.bi adservice.google.com.bo adservice.google.ci adservice.google.kg adservice.google.ca adservice.google.rs *.as.sourceforge.net adservice.google.gg *.id5-sync.com adservice.google.co.il adservice.google.com.sg adservice.google.hu *.openxcdn.net adservice.google.cl adservice.google.com.ly adservice.google.nl adservice.google.com.sv adservice.google.com.au j.6sc.co adservice.google.sr adservice.google.mv adservice.google.tn *.doubleverify.com *.07c225f3.online adservice.google.bg adservice.google.fi adservice.google.pl adservice.google.com.ar adservice.google.ge adservice.google.co.mz adservice.google.com.om adservice.google.co.zw recaptcha.net adservice.google.tm adservice.google.st adservice.google.to *.googleadsserving.cn adservice.google.cz *.microsofttranslator.com a.fsdn.com adservice.google.com.pk adservice.google.co.ve *.tiny.cloud cdn.jsdelivr.net btloader.com adservice.google.co.th adservice.google.as content-loader.com html-load.com adservice.google.vu adservice.google.com.np adservice.google.ad adservice.google.com.vc js.hscollectedforms.net http://*.pro-market.net adservice.google.je *.slashdotmedia.com js.hs-analytics.net adservice.google.co.zm *.creativecdn.com adservice.google.mw adservice.google.com.br *.uidapi.com *.doubleclick.net http://b.sf-syn.com adservice.google.com.kh adservice.google.com.sb adservice.google.cd adservice.google.com.na *.adsafeprotected.com adservice.google.sn adservice.google.ro adservice.google.tl adservice.google.co.id adservice.google.com.bh adservice.google.cg *.css-load.com adservice.google.com.mt adservice.google.td adservice.google.ps js.hs-banner.com adservice.google.co.ao *.criteo.net 07c225f3.online adservice.google.co.in adservice.google.cv *.recaptcha.net adservice.google.dk *.s-onetag.com adservice.google.mg adservice.google.com.pr adservice.google.com.tr adservice.google.li adservice.google.com.uy adservice.google.bs adservice.google.kz adservice.google.az adservice.google.com.jm adservice.google.com.kw adservice.google.com.af adservice.google.com.ni adservice.google.com.fj adservice.google.com.ua *.gstatic.cn *.2mdn.net adservice.google.com.tw adservice.google.dz adservice.google.la adservice.google.co.ke adservice.google.tt adservice.google.fr adservice.google.com.pe adservice.google.com.mm adservice.google.com.gh adservice.google.com.qa *.adnxs.com adservice.google.co.cr adservice.google.mk adservice.google.ga js.usemessages.com adservice.google.lk adservice.google.mn *.btmessage.com *.lijit.com adservice.google.tg adservice.google.com.lb *.fb.content-loader.com adservice.google.nu adservice.google.es adservice.google.bj adservice.google.iq adservice.google.com.bz *.googletagmanager.com adservice.google.pt adservice.google.cm *.flashtalking.com adservice.google.gm adservice.google.co.uk adservice.google.com.cy *.cloudflareinsights.com adservice.google.co.tz adservice.google.co.bw adservice.google.com.sa *.adtrafficquality.google adservice.google.ml adservice.google.fm adservice.google.co.vi adservice.google.me adservice.google.no adservice.google.com.tj adservice.google.ie adservice.google.co.nz adservice.google.com.gt adservice.google.it adservice.google.lu adservice.google.lt adservice.google.ch adservice.google.ee *.hs-scripts.com adservice.google.com.ai *.script.ac adservice.google.ne adservice.google.at adservice.google.com.cu *.googletagservices.com adservice.google.ht adservice.google.vg adservice.google.ae *.fb.html-load.com adservice.google.gt adservice.google.com.et adservice.google.com.pa adservice.google.com.bd adservice.google.ws adservice.google.co.ck adservice.google.hn *.sharethrough.com *.4dex.io *.content-loader.com adservice.google.com.ec *.trustarc.com adservice.google.md cdn.jsdelivr.net/gh/prebid/shared-id/ *.microsoft.com adservice.google.gr adservice.google.com.mx *.consentmanager.net adservice.google.co.uz adservice.google.cf adservice.google.com.vn adservice.google.lv adservice.google.al adservice.google.gl css-load.com js.hsadspixel.net adservice.google.com.pg http://c.sf-syn.com adservice.google.com.eg *.moatads.com adservice.google.bf adservice.google.ms adservice.google.sm *.crwdcntrl.net adservice.google.co.jp adservice.google.co.ug translate.google.cn adservice.google.nr adservice.google.si adservice.google.is adservice.google.be adservice.google.com.ag adservice.google.co.za adservice.google.com.hk adservice.google.mu adservice.google.de as.sourceforge.net adservice.google.com.gi *.crsspxl.com *.ampproject.org adservice.google.com.ng adservice.google.gy *.gstatic.com *.euid.eu blob: adservice.google.com.ph adservice.google.com.py *.googlesyndication.com adservice.google.so adservice.google.com.co *.im-apps.net adservice.google.dm adservice.google.co.ls translate.googleapis.com 'unsafe-inline' 'unsafe-eval'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; form-action 'self' lists.sourceforge.net; upgrade-insecure-requests; object-src 'none'; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'
expires: Mon, 24 Feb 2025 14:53:02 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Tue, 21 Jan 2025 04:34:33 GMT
cf-cache-status: HIT
age: 182136
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cd3872a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/proj/processhacker/screenshots/318705.jpg/245/183/1

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/proj/processhacker/screenshots/318705.jpg/245/183/1 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/jpeg
content-length: 9435
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9616
cache-control: public, max-age=2678400
content-security-policy: frame-ancestors 'self'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; upgrade-insecure-requests; script-src 'self' 07c225f3.online adservice.google.com.gt adservice.google.cd *.id5-sync.com as.sourceforge.net adservice.google.co.in *.googlesyndication.com http://*.pro-market.net *.as.sourceforge.net adservice.google.hu a.fsdn.com adservice.google.sk adservice.google.jo http://b.sf-syn.com adservice.google.kz adservice.google.com.ly adservice.google.co.mz adservice.google.tt adservice.google.com.ni adservice.google.li adservice.google.com.mm blob: adservice.google.co.za adservice.google.com.ag adservice.google.st content-loader.com *.trustarc.com adservice.google.cg adservice.google.com.pe adservice.google.rs js.hscollectedforms.net adservice.google.co.jp adservice.google.dz adservice.google.dm js.hsadspixel.net adservice.google.hn adservice.google.ws adservice.google.je adservice.google.ps *.im-apps.net adservice.google.mv adservice.google.com.sb http://c.sf-syn.com adservice.google.md *.doubleclick.net adservice.google.com.co adservice.google.mu *.criteo.net *.fb.html-load.com adservice.google.com.om *.cloudflareinsights.com html-load.com adservice.google.ro *.flashtalking.com js.usemessages.com adservice.google.com.bd adservice.google.dk adservice.google.gy adservice.google.cm *.adsafeprotected.com adservice.google.fm adservice.google.cz adservice.google.com.sv adservice.google.com.uy adservice.google.to adservice.google.ki adservice.google.mk adservice.google.kg adservice.google.com.bo cdn.jsdelivr.net adservice.google.co.ao adservice.google.tl adservice.google.co.id adservice.google.fi adservice.google.lt adservice.google.si adservice.google.td adservice.google.co.ls adservice.google.se adservice.google.co.th *.creativecdn.com adservice.google.vg *.html-load.com adservice.google.com.tr adservice.google.sc adservice.google.ci adservice.google.com.mx adservice.google.com.ua adservice.google.com.br adservice.google.co.ve adservice.google.bj adservice.google.co.ug adservice.google.com.mt btloader.com *.moatads.com js.hs-analytics.net adservice.google.ht *.crwdcntrl.net adservice.google.sm adservice.google.be adservice.google.com.cy *.slashdotmedia.com adservice.google.sr *.2mdn.net *.tiny.cloud *.consentmanager.net j.6sc.co adservice.google.com.bz adservice.google.gt adservice.google.co.nz *.google-analytics.com adservice.google.iq adservice.google.vu adservice.google.co.zw *.gstatic.com adservice.google.al adservice.google.com.eg adservice.google.com.bn adservice.google.com.au *.css-load.com adservice.google.so adservice.google.com.na adservice.google.is adservice.google.com.sa *.recaptcha.net adservice.google.at adservice.google.co.uk adservice.google.sn adservice.google.com.bh translate.googleapis.com *.07c225f3.online adservice.google.lv adservice.google.co.zm *.doubleverify.com adservice.google.as adservice.google.bi adservice.google.tm adservice.google.nu adservice.google.rw adservice.google.cl adservice.google.co.ck adservice.google.com.ph adservice.google.com.fj *.uidapi.com adservice.google.ml adservice.google.dj adservice.google.lu *.licdn.com *.microsofttranslator.com adservice.google.it *.adtrafficquality.google adservice.google.com.np adservice.google.lk adservice.google.tg adservice.google.com.gi adservice.google.co.ke *.crsspxl.com cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.es adservice.google.ge *.content-loader.com *.4dex.io adservice.google.co.kr css-load.com adservice.google.co.bw adservice.google.com.tw adservice.google.az adservice.google.com.pa translate.google.cn adservice.google.com.pk adservice.google.com.tj adservice.google.com.cu *.gstatic.cn *.adnxs.com adservice.google.cf adservice.google.nl adservice.google.tn adservice.google.de adservice.google.gr adservice.google.bt *.googletagmanager.com adservice.google.bs adservice.google.ch *.google.com adservice.google.gg *.ampproject.org adservice.google.bg adservice.google.ad adservice.google.com.ng adservice.google.com.ai adservice.google.ga adservice.google.ne adservice.google.ae adservice.google.com.pr adservice.google.me *.hs-scripts.com adservice.google.ie recaptcha.net adservice.google.gl *.sharethrough.com ml314.com adservice.google.co.il adservice.google.bf adservice.google.ca adservice.google.cv adservice.google.com.af *.fb.content-loader.com adservice.google.im adservice.google.no adservice.google.com.py adservice.google.com.vn adservice.google.com.kh adservice.google.la adservice.google.ru *.microsoft.com adservice.google.fr adservice.google.co.vi adservice.google.ms adservice.google.com.sg *.openxcdn.net *.btmessage.com adservice.google.com.lb adservice.google.ee *.googletagservices.com adservice.google.com.kw adservice.google.mg *.googleadsserving.cn js.hs-banner.com adservice.google.co.uz adservice.google.com.et adservice.google.com.qa adservice.google.hr *.script.ac adservice.google.com.ar adservice.google.gm adservice.google.com.gh adservice.google.mw adservice.google.mn adservice.google.co.tz adservice.google.pt adservice.google.co.cr adservice.google.com.jm adservice.google.nr adservice.google.com.hk adservice.google.com.pg *.s-onetag.com *.lijit.com adservice.google.pl *.euid.eu adservice.google.com.ec adservice.google.com.my adservice.google.com.vc 'unsafe-inline' 'unsafe-eval'; form-action 'self' lists.sourceforge.net; fenced-frame-src https:; object-src 'none'; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'
expires: Mon, 24 Feb 2025 14:53:02 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Thu, 23 Jan 2025 12:45:40 GMT
cf-cache-status: HIT
age: 40610
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cd387da67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/img/sandiego/svg/originals/sf_star_yellow.svg

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/img/sandiego/svg/originals/sf_star_yellow.svg HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://a.fsdn.com/con/css/sandiego.css?1737649919
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:02 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Jul 2021 18:27:03 GMT
etag: W/"60f5c3f7-236"
expires: Mon, 24 Feb 2025 14:53:02 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 125946
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9cd78f8a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/allura/p/portableapps/icon?1706738669?&w=48

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /allura/p/portableapps/icon?1706738669?&w=48 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: image/webp
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3286
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: object-src 'none'; upgrade-insecure-requests; script-src-attr 'none' 'report-sample'; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com *.criteo.com *.openx.net; form-action 'self'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce; frame-ancestors 'self'; script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.ampproject.org *.criteo.net *.creativecdn.com *.crwdcntrl.net *.uidapi.com *.im-apps.net *.euid.eu *.openxcdn.net *.id5-sync.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'
etag: "largeVLC.png?2012-09-03 22:32:17+00:00"
expires: Mon, 24 Feb 2025 14:53:03 GMT
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
last-modified: Mon, 03 Sep 2012 22:32:17 GMT
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 41551
server: cloudflare
cf-ray: 9070d9ce2a96a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/allura/p/sevenzip/icon?1715850074?&w=48

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /allura/p/sevenzip/icon?1715850074?&w=48 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: image/webp
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1779
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: form-action 'self'; script-src-attr 'none' 'report-sample'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce; frame-ancestors 'self'; upgrade-insecure-requests; script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.ampproject.org *.criteo.net *.creativecdn.com *.crwdcntrl.net *.uidapi.com *.im-apps.net *.euid.eu *.openxcdn.net *.id5-sync.com cdn.jsdelivr.net/gh/prebid/shared-id/ *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'; object-src 'none'; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com *.criteo.com *.openx.net
etag: "sevenzip.png?2017-12-19 21:04:41+00:00"
expires: Mon, 24 Feb 2025 14:53:03 GMT
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
last-modified: Tue, 19 Dec 2017 21:04:41 GMT
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 50689
server: cloudflare
cf-ray: 9070d9ce2a8da67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/allura/p/vlc/icon?1400654415

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /allura/p/vlc/icon?1400654415 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: image/webp
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2723
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'; frame-ancestors 'self'; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com; script-src-attr 'none' 'report-sample'; form-action 'self'; upgrade-insecure-requests; object-src 'none'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce
etag: "Captura.JPG?2021-05-18 21:24:08+00:00"
expires: Mon, 24 Feb 2025 14:53:03 GMT
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
last-modified: Tue, 18 May 2021 21:24:08 GMT
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 68072
server: cloudflare
cf-ray: 9070d9ce3a9aa67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/allura/mirror/arduino/icon?fb8cf3e7fcfd4388d7a8183b8efe839dcfceeb92a0308245ca8027f05c872701?&w=48

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /allura/mirror/arduino/icon?fb8cf3e7fcfd4388d7a8183b8efe839dcfceeb92a0308245ca8027f05c872701?&w=48 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: image/webp
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3315
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: script-src 'self' a.fsdn.com *.sf-syn.com *.slashdotmedia.com ml314.com *.cloudflareinsights.com *.doubleclick.net *.google.com *.googlesyndication.com *.adtrafficquality.google *.google-analytics.com *.googletagmanager.com *.googletagservices.com *.consentmanager.net *.microsofttranslator.com *.googleapis.com cdn.mxpnl.com *.hs-scripts.com js.hsadspixel.net js.hs-analytics.net js.hs-banner.com js.hscollectedforms.net js.usemessages.com *.licdn.com 'unsafe-inline' 'unsafe-eval' 'report-sample'; form-action 'self'; object-src 'none'; frame-src 'self' *.sf-syn.com *.google.com *.googlesyndication.com *.safeframe.usercontent.goog *.googletagmanager.com *.doubleclick.net *.googleadservices.com *.adtrafficquality.google *.recaptcha.net recaptcha.net www.youtube-nocookie.com *.youtube.com *.stripe.com *.plaid.com *.prosperstack.com *.consentmanager.net app.hubspot.com; script-src-attr 'none' 'report-sample'; upgrade-insecure-requests; frame-ancestors 'self'; report-uri https://sourceforge.report-uri.com/r/d/csp/enforce
etag: "portableapps.png?2017-12-19 21:04:37+00:00"
expires: Mon, 24 Feb 2025 14:53:03 GMT
feature-policy: microphone 'none'; geolocation 'none'; camera 'none'; document-domain 'none'; display 'none'; autoplay 'none'
last-modified: Tue, 19 Dec 2017 21:04:37 GMT
permissions-policy: microphone=(), geolocation=(), camera=(), document-domain=(), display-capture=(), autoplay=()
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 48309
server: cloudflare
cf-ray: 9070d9ce2a87a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/img/sandiego/svg/originals/sf-icon-orange-no_sf.svg

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/img/sandiego/svg/originals/sf-icon-orange-no_sf.svg HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: image/svg+xml
last-modified: Sat, 07 Sep 2019 00:24:36 GMT
etag: W/"5d72f8c4-526"
expires: Mon, 24 Feb 2025 14:53:03 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 286605
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9d1bb76a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/min/sf.sandiego-dwnld.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/min/sf.sandiego-dwnld.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/webp
content-length: 556
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=668
content-disposition: inline; filename="netix-large.webp"
vary: Accept
cache-control: public, max-age=2678400
etag: "5d72f8bf-29c"
expires: Mon, 24 Feb 2025 14:53:15 GMT
last-modified: Sat, 07 Sep 2019 00:24:31 GMT
cf-cache-status: HIT
age: 487825
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da1d1f65a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/mirrorimages/netix-large.png

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /mirrorimages/netix-large.png HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 21:55:07 GMT
etag: W/"6757673b-1b509"
expires: Mon, 24 Feb 2025 14:53:15 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 33134
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da1d0f5aa67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/18981

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/18981 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/webp
content-length: 7482
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=9951
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: frame-ancestors 'self'; object-src 'none'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; fenced-frame-src https:; upgrade-insecure-requests; script-src 'self' adservice.google.com.uy adservice.google.co.ke translate.googleapis.com adservice.google.bs adservice.google.com.bo adservice.google.rw *.adsafeprotected.com adservice.google.co.il adservice.google.com.af *.im-apps.net *.adtrafficquality.google adservice.google.nu adservice.google.com.np adservice.google.nl js.hs-analytics.net adservice.google.ru *.doubleverify.com adservice.google.com.sg adservice.google.bt *.crsspxl.com adservice.google.com.ph adservice.google.dz adservice.google.dj adservice.google.kz *.gstatic.com html-load.com adservice.google.com.kw adservice.google.co.ve adservice.google.co.uz adservice.google.vu adservice.google.com.sb *.flashtalking.com adservice.google.cz *.css-load.com *.hs-scripts.com adservice.google.com.cy *.googleadsserving.cn adservice.google.com.gt adservice.google.ki *.microsofttranslator.com adservice.google.vg adservice.google.com.jm adservice.google.com.py adservice.google.gm *.googletagmanager.com adservice.google.ca adservice.google.com.et http://b.sf-syn.com adservice.google.bg adservice.google.co.nz adservice.google.cd adservice.google.nr *.fb.content-loader.com *.btmessage.com adservice.google.cf btloader.com adservice.google.com.my adservice.google.com.tw *.euid.eu adservice.google.co.cr adservice.google.de adservice.google.gr adservice.google.so *.content-loader.com adservice.google.md adservice.google.al adservice.google.tt adservice.google.je adservice.google.com.om adservice.google.mk *.googlesyndication.com adservice.google.ps adservice.google.com.cu *.slashdotmedia.com js.usemessages.com adservice.google.com.ar adservice.google.mg adservice.google.com.ec adservice.google.sn adservice.google.co.id adservice.google.dm *.trustarc.com adservice.google.ie adservice.google.gt adservice.google.com.pe adservice.google.co.mz as.sourceforge.net adservice.google.com.gi recaptcha.net adservice.google.com.ua *.script.ac adservice.google.rs adservice.google.co.bw adservice.google.it adservice.google.com.bn adservice.google.co.kr *.creativecdn.com adservice.google.com.hk adservice.google.co.th content-loader.com css-load.com adservice.google.iq adservice.google.com.mt adservice.google.cv adservice.google.me adservice.google.sk adservice.google.com.tr adservice.google.ms *.lijit.com *.gstatic.cn *.google.com adservice.google.dk adservice.google.com.pr adservice.google.at *.uidapi.com adservice.google.bf *.ampproject.org *.crwdcntrl.net adservice.google.co.jp adservice.google.cl adservice.google.ge adservice.google.st adservice.google.com.na adservice.google.sm *.doubleclick.net adservice.google.com.pg adservice.google.com.mx adservice.google.com.au http://*.pro-market.net adservice.google.ga a.fsdn.com adservice.google.mw adservice.google.bi blob: 07c225f3.online cdn.jsdelivr.net *.microsoft.com adservice.google.pt adservice.google.ro adservice.google.im adservice.google.sr adservice.google.gg adservice.google.com.pa js.hscollectedforms.net adservice.google.co.ls adservice.google.co.za adservice.google.kg adservice.google.co.ao adservice.google.com.eg adservice.google.td adservice.google.com.vc *.html-load.com adservice.google.com.br adservice.google.com.sv adservice.google.az *.consentmanager.net adservice.google.co.ck adservice.google.hr adservice.google.co.zw adservice.google.cm adservice.google.tl *.adnxs.com *.openxcdn.net *.sharethrough.com adservice.google.co.zm adservice.google.lk adservice.google.mn adservice.google.com.ag *.4dex.io adservice.google.is cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.si adservice.google.pl adservice.google.fr *.fb.html-load.com adservice.google.bj adservice.google.ee adservice.google.co.tz adservice.google.gy adservice.google.tm *.recaptcha.net adservice.google.no adservice.google.com.lb adservice.google.com.ni adservice.google.ch adservice.google.mu adservice.google.cg adservice.google.com.qa *.licdn.com adservice.google.hn adservice.google.com.ai adservice.google.as adservice.google.lv adservice.google.com.pk js.hs-banner.com *.s-onetag.com *.cloudflareinsights.com js.hsadspixel.net adservice.google.fi adservice.google.com.ly *.google-analytics.com adservice.google.com.kh adservice.google.com.gh adservice.google.tn adservice.google.sc adservice.google.ml adservice.google.ht j.6sc.co adservice.google.jo adservice.google.lt adservice.google.ws adservice.google.co.in adservice.google.co.vi adservice.google.com.co adservice.google.ne adservice.google.com.bd adservice.google.se adservice.google.co.uk adservice.google.com.mm ml314.com *.tiny.cloud adservice.google.ae adservice.google.to *.as.sourceforge.net *.criteo.net *.2mdn.net adservice.google.mv adservice.google.es *.id5-sync.com adservice.google.com.bz http://c.sf-syn.com adservice.google.com.sa adservice.google.hu adservice.google.be adservice.google.lu adservice.google.com.ng adservice.google.ci adservice.google.com.vn adservice.google.la *.07c225f3.online adservice.google.ad adservice.google.com.bh adservice.google.com.tj adservice.google.li translate.google.cn *.moatads.com *.googletagservices.com adservice.google.tg adservice.google.com.fj adservice.google.fm adservice.google.co.ug adservice.google.gl 'unsafe-inline' 'unsafe-eval'; form-action 'self' lists.sourceforge.net
expires: Mon, 24 Feb 2025 14:53:15 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 14:32:22 GMT
cf-cache-status: HIT
age: 1197
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da1da88da67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/17209

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/17209 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/webp
content-length: 5844
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=9095
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; fenced-frame-src https:; object-src 'none'; form-action 'self' lists.sourceforge.net; frame-ancestors 'self'; script-src 'self' js.hscollectedforms.net adservice.google.co.ke *.adnxs.com *.adsafeprotected.com *.lijit.com adservice.google.jo a.fsdn.com *.microsofttranslator.com *.2mdn.net as.sourceforge.net adservice.google.fi adservice.google.com.mm adservice.google.com.ni js.usemessages.com *.fb.html-load.com adservice.google.com.sv adservice.google.is adservice.google.co.mz adservice.google.cg adservice.google.ca adservice.google.co.uk *.07c225f3.online adservice.google.com.om adservice.google.co.kr adservice.google.com.co js.hs-banner.com adservice.google.co.id *.tiny.cloud *.moatads.com adservice.google.iq *.cloudflareinsights.com *.css-load.com adservice.google.com.eg adservice.google.kg adservice.google.mn http://c.sf-syn.com adservice.google.lt adservice.google.ms cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.lk *.as.sourceforge.net recaptcha.net adservice.google.co.tz adservice.google.az adservice.google.as *.hs-scripts.com adservice.google.sc adservice.google.st adservice.google.tt adservice.google.no *.html-load.com adservice.google.cf adservice.google.la *.trustarc.com adservice.google.im adservice.google.it adservice.google.ps adservice.google.sm adservice.google.dm adservice.google.ht js.hsadspixel.net adservice.google.pl *.adtrafficquality.google j.6sc.co adservice.google.es adservice.google.nl adservice.google.com.bn *.recaptcha.net adservice.google.com.sg adservice.google.com.bz cdn.jsdelivr.net *.slashdotmedia.com adservice.google.com.pr adservice.google.co.zw adservice.google.gr translate.google.cn adservice.google.ro adservice.google.de adservice.google.to adservice.google.ws adservice.google.com.uy adservice.google.com.kw adservice.google.ci adservice.google.cm adservice.google.at adservice.google.com.au *.gstatic.cn *.crsspxl.com adservice.google.com.et *.doubleclick.net adservice.google.co.th *.euid.eu *.fb.content-loader.com adservice.google.rs adservice.google.vg adservice.google.co.nz adservice.google.ru adservice.google.be adservice.google.com.na adservice.google.bj adservice.google.fm http://b.sf-syn.com *.licdn.com adservice.google.com.np adservice.google.al *.googleadsserving.cn adservice.google.com.pa *.doubleverify.com adservice.google.bt adservice.google.dk adservice.google.cz adservice.google.rw adservice.google.bg *.flashtalking.com adservice.google.com.ar *.microsoft.com adservice.google.co.za adservice.google.com.cy adservice.google.tm *.uidapi.com adservice.google.co.ve *.googlesyndication.com adservice.google.hu adservice.google.com.bh adservice.google.sk *.google.com adservice.google.tl html-load.com adservice.google.se adservice.google.com.ly adservice.google.ch adservice.google.mv adservice.google.co.uz content-loader.com adservice.google.com.tw adservice.google.com.jm *.script.ac adservice.google.cv adservice.google.com.tj adservice.google.co.ug adservice.google.lv http://*.pro-market.net *.id5-sync.com adservice.google.je adservice.google.mw adservice.google.com.ng adservice.google.com.ag adservice.google.com.qa adservice.google.com.bo adservice.google.tg adservice.google.com.af adservice.google.me *.sharethrough.com adservice.google.com.gh *.content-loader.com adservice.google.co.jp adservice.google.com.bd translate.googleapis.com *.s-onetag.com *.creativecdn.com adservice.google.ee adservice.google.lu adservice.google.ge adservice.google.co.bw adservice.google.gy *.ampproject.org adservice.google.hr adservice.google.co.in adservice.google.kz adservice.google.com.sa adservice.google.td adservice.google.fr adservice.google.com.lb *.googletagservices.com adservice.google.co.il adservice.google.mg adservice.google.com.ec adservice.google.com.pe adservice.google.co.ls adservice.google.ad adservice.google.com.mx adservice.google.com.tr adservice.google.com.vn adservice.google.com.gt *.openxcdn.net *.googletagmanager.com adservice.google.hn adservice.google.com.gi adservice.google.com.mt *.consentmanager.net adservice.google.ae adservice.google.mu adservice.google.com.my adservice.google.pt adservice.google.co.ck adservice.google.ki js.hs-analytics.net adservice.google.com.vc adservice.google.dj adservice.google.md adservice.google.co.cr adservice.google.co.vi *.4dex.io adservice.google.ml adservice.google.com.kh adservice.google.com.cu ml314.com adservice.google.cl adservice.google.com.sb adservice.google.li *.criteo.net adservice.google.co.ao adservice.google.com.ai *.crwdcntrl.net adservice.google.com.py adservice.google.co.zm adservice.google.gl adservice.google.ie adservice.google.com.hk 07c225f3.online adservice.google.nr adservice.google.si adservice.google.gt *.im-apps.net adservice.google.cd *.btmessage.com adservice.google.sr adservice.google.gm *.gstatic.com css-load.com btloader.com adservice.google.bf blob: adservice.google.nu adservice.google.com.ph adservice.google.so adservice.google.com.ua adservice.google.ne adservice.google.com.pg adservice.google.gg adservice.google.sn adservice.google.bi adservice.google.com.pk adservice.google.ga adservice.google.vu adservice.google.mk *.google-analytics.com adservice.google.tn adservice.google.dz adservice.google.bs adservice.google.com.br adservice.google.com.fj 'unsafe-inline' 'unsafe-eval'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; upgrade-insecure-requests
expires: Mon, 24 Feb 2025 14:53:15 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 13:23:25 GMT
cf-cache-status: HIT
age: 1963
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da1da88ea67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/18473

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/18473 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/webp
content-length: 11254
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=16259
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: fenced-frame-src https:; form-action 'self' lists.sourceforge.net; upgrade-insecure-requests; object-src 'none'; script-src 'self' adservice.google.com.bo adservice.google.sn adservice.google.hn *.googletagservices.com http://c.sf-syn.com *.4dex.io adservice.google.co.ug blob: adservice.google.ps adservice.google.co.uk adservice.google.vg adservice.google.az html-load.com adservice.google.co.ls adservice.google.li adservice.google.com.pa adservice.google.ga adservice.google.com.vc adservice.google.mk *.gstatic.com adservice.google.co.cr adservice.google.com.cu adservice.google.com.ar adservice.google.com.tw *.id5-sync.com translate.google.cn *.openxcdn.net adservice.google.co.nz *.cloudflareinsights.com *.adnxs.com adservice.google.co.jp adservice.google.de adservice.google.com.cy adservice.google.fi adservice.google.fm adservice.google.com.bd css-load.com adservice.google.co.tz *.btmessage.com adservice.google.co.il adservice.google.com.co adservice.google.dm adservice.google.co.ke *.hs-scripts.com adservice.google.com.pr adservice.google.lv adservice.google.com.eg js.hs-banner.com http://*.pro-market.net *.2mdn.net js.hscollectedforms.net adservice.google.com.tr adservice.google.com.mt adservice.google.nl adservice.google.co.in *.adsafeprotected.com *.s-onetag.com adservice.google.com.ni adservice.google.com.ai adservice.google.com.au adservice.google.co.bw *.adtrafficquality.google adservice.google.dz *.slashdotmedia.com adservice.google.rw adservice.google.es adservice.google.al adservice.google.com.sv adservice.google.com.ag *.script.ac adservice.google.com.kw js.hs-analytics.net *.google.com adservice.google.com.vn adservice.google.mn *.criteo.net adservice.google.ro adservice.google.ch adservice.google.co.mz *.flashtalking.com adservice.google.iq cdn.jsdelivr.net/gh/prebid/shared-id/ *.uidapi.com *.googleadsserving.cn adservice.google.be adservice.google.si adservice.google.ht adservice.google.is content-loader.com adservice.google.bi translate.googleapis.com adservice.google.com.om adservice.google.com.tj adservice.google.ie adservice.google.co.id adservice.google.bs adservice.google.com.bn *.microsofttranslator.com adservice.google.gr adservice.google.rs adservice.google.sr adservice.google.com.br adservice.google.com.np adservice.google.co.kr adservice.google.pl adservice.google.com.uy adservice.google.to adservice.google.com.ly adservice.google.com.et *.microsoft.com *.recaptcha.net adservice.google.com.py adservice.google.ru *.crsspxl.com *.euid.eu adservice.google.com.af adservice.google.td adservice.google.lu adservice.google.cf adservice.google.ws js.hsadspixel.net adservice.google.co.vi *.html-load.com adservice.google.com.sa *.content-loader.com adservice.google.jo adservice.google.nr adservice.google.dj adservice.google.com.hk adservice.google.ci adservice.google.com.ng *.doubleverify.com adservice.google.at adservice.google.com.kh adservice.google.co.zw adservice.google.tn adservice.google.com.fj adservice.google.st adservice.google.com.pe adservice.google.bj adservice.google.ae 07c225f3.online *.07c225f3.online adservice.google.ki adservice.google.gl adservice.google.com.lb *.tiny.cloud adservice.google.cd adservice.google.com.pk adservice.google.lt *.trustarc.com adservice.google.tm adservice.google.lk adservice.google.ca adservice.google.gg adservice.google.cg adservice.google.ms adservice.google.com.bh ml314.com adservice.google.mv adservice.google.kz adservice.google.com.ua adservice.google.com.gi *.google-analytics.com adservice.google.bf adservice.google.com.ph js.usemessages.com adservice.google.ee *.sharethrough.com adservice.google.com.my adservice.google.cl adservice.google.mg recaptcha.net adservice.google.co.th adservice.google.com.qa adservice.google.co.ck *.crwdcntrl.net adservice.google.dk adservice.google.com.jm adservice.google.cz adservice.google.hu adservice.google.ml adservice.google.co.zm adservice.google.co.uz adservice.google.ad *.licdn.com *.creativecdn.com *.gstatic.cn *.moatads.com adservice.google.no adservice.google.bt adservice.google.cv adservice.google.im adservice.google.gm adservice.google.mw adservice.google.sc adservice.google.com.sg adservice.google.me http://b.sf-syn.com adservice.google.com.bz adservice.google.kg adservice.google.je adservice.google.tt adservice.google.se adservice.google.sm *.doubleclick.net adservice.google.pt adservice.google.it *.googlesyndication.com *.googletagmanager.com adservice.google.hr a.fsdn.com adservice.google.com.ec adservice.google.md adservice.google.com.mm adservice.google.com.gt *.consentmanager.net adservice.google.bg adservice.google.nu adservice.google.gy *.as.sourceforge.net adservice.google.com.gh j.6sc.co adservice.google.co.ve adservice.google.gt adservice.google.com.mx adservice.google.cm adservice.google.sk adservice.google.la *.im-apps.net as.sourceforge.net adservice.google.tl adservice.google.vu adservice.google.com.na adservice.google.com.pg adservice.google.co.ao adservice.google.tg btloader.com *.fb.content-loader.com *.lijit.com *.fb.html-load.com adservice.google.ne cdn.jsdelivr.net adservice.google.so adservice.google.com.sb adservice.google.as *.css-load.com adservice.google.mu adservice.google.fr adservice.google.ge adservice.google.co.za *.ampproject.org 'unsafe-inline' 'unsafe-eval'; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; frame-ancestors 'self'
expires: Mon, 24 Feb 2025 14:53:15 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 14:16:54 GMT
cf-cache-status: HIT
age: 149
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da1da889a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/18443

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/18443 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/webp
content-length: 3490
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=4989
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: script-src 'self' adservice.google.gl adservice.google.co.ls *.consentmanager.net *.btmessage.com content-loader.com as.sourceforge.net adservice.google.com.uy adservice.google.com.gi adservice.google.ms adservice.google.ro adservice.google.az http://c.sf-syn.com *.openxcdn.net adservice.google.at adservice.google.dz adservice.google.gt adservice.google.com.ua *.microsofttranslator.com js.hs-analytics.net *.4dex.io adservice.google.com.ai adservice.google.com.ng adservice.google.lu adservice.google.com.kh adservice.google.fm adservice.google.co.za adservice.google.co.id cdn.jsdelivr.net recaptcha.net *.ampproject.org adservice.google.la *.adtrafficquality.google adservice.google.co.zw adservice.google.st adservice.google.co.uz translate.googleapis.com adservice.google.tt adservice.google.bg *.adsafeprotected.com adservice.google.com.om adservice.google.to *.hs-scripts.com adservice.google.com.ec *.slashdotmedia.com adservice.google.co.ck adservice.google.co.ve adservice.google.al adservice.google.ge adservice.google.tl adservice.google.com.pr adservice.google.co.th adservice.google.se *.script.ac adservice.google.dk adservice.google.ml adservice.google.tg adservice.google.cm j.6sc.co adservice.google.as adservice.google.fi adservice.google.com.cy adservice.google.bs adservice.google.com.py adservice.google.ht adservice.google.ga adservice.google.com.tr adservice.google.cf adservice.google.mg adservice.google.sn adservice.google.fr adservice.google.com.ph adservice.google.de adservice.google.com.bd *.microsoft.com adservice.google.mv adservice.google.cl adservice.google.ae adservice.google.ne adservice.google.com.eg adservice.google.com.au adservice.google.gy adservice.google.com.pe adservice.google.co.ke *.html-load.com adservice.google.co.in adservice.google.td adservice.google.co.ao adservice.google.co.uk adservice.google.com.ag adservice.google.sr adservice.google.pl adservice.google.hr http://*.pro-market.net adservice.google.tn adservice.google.sk adservice.google.co.ug adservice.google.li adservice.google.dm adservice.google.gg adservice.google.bt *.crwdcntrl.net adservice.google.com.ni adservice.google.com.mm adservice.google.com.bn *.licdn.com *.2mdn.net *.07c225f3.online a.fsdn.com adservice.google.kz *.googletagmanager.com *.moatads.com *.doubleverify.com adservice.google.com.lb adservice.google.nu adservice.google.co.tz adservice.google.si adservice.google.ee btloader.com adservice.google.iq *.adnxs.com adservice.google.com.br adservice.google.com.mt adservice.google.com.sv adservice.google.lt adservice.google.ci adservice.google.com.tw adservice.google.com.et adservice.google.ch adservice.google.sm *.criteo.net adservice.google.ad adservice.google.es adservice.google.vg *.euid.eu js.hsadspixel.net js.hscollectedforms.net adservice.google.lk ml314.com html-load.com adservice.google.me adservice.google.co.bw adservice.google.cg adservice.google.bf adservice.google.com.gh adservice.google.com.ly adservice.google.com.pg adservice.google.no adservice.google.com.bz css-load.com adservice.google.com.my adservice.google.com.bh *.im-apps.net adservice.google.vu *.gstatic.cn adservice.google.ie adservice.google.com.sg adservice.google.com.kw *.google-analytics.com js.hs-banner.com adservice.google.com.np adservice.google.co.cr translate.google.cn *.fb.html-load.com adservice.google.md adservice.google.bj *.creativecdn.com js.usemessages.com *.id5-sync.com *.googleadsserving.cn adservice.google.com.jm adservice.google.bi adservice.google.com.pa adservice.google.hn adservice.google.is adservice.google.com.cu adservice.google.sc adservice.google.ru adservice.google.com.sb adservice.google.com.sa cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.be adservice.google.com.tj *.s-onetag.com *.css-load.com adservice.google.com.hk adservice.google.com.vn *.lijit.com *.sharethrough.com adservice.google.tm 07c225f3.online *.gstatic.com adservice.google.co.nz adservice.google.ws *.content-loader.com adservice.google.com.qa adservice.google.so adservice.google.co.vi adservice.google.com.mx adservice.google.rs *.as.sourceforge.net adservice.google.com.ar adservice.google.mn adservice.google.co.mz adservice.google.co.zm *.flashtalking.com *.crsspxl.com http://b.sf-syn.com blob: adservice.google.hu adservice.google.com.vc *.trustarc.com *.googletagservices.com adservice.google.com.pk adservice.google.ps adservice.google.dj adservice.google.ki adservice.google.ca adservice.google.gr *.cloudflareinsights.com *.tiny.cloud adservice.google.pt adservice.google.rw adservice.google.je adservice.google.im adservice.google.it adservice.google.nl adservice.google.cz adservice.google.com.gt adservice.google.com.na adservice.google.co.kr *.doubleclick.net adservice.google.co.jp *.google.com adservice.google.com.bo adservice.google.gm adservice.google.com.fj adservice.google.cd adservice.google.lv adservice.google.kg *.uidapi.com adservice.google.co.il *.recaptcha.net adservice.google.com.co *.fb.content-loader.com adservice.google.nr adservice.google.mu adservice.google.cv adservice.google.jo adservice.google.com.af adservice.google.mk adservice.google.mw *.googlesyndication.com 'unsafe-inline' 'unsafe-eval'; frame-ancestors 'self'; fenced-frame-src https:; object-src 'none'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; upgrade-insecure-requests; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; form-action 'self' lists.sourceforge.net
expires: Mon, 24 Feb 2025 14:53:15 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 14:20:35 GMT
cf-cache-status: HIT
age: 498
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da1da88aa67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/17887

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/17887 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/webp
content-length: 7238
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=10908
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: frame-ancestors 'self'; form-action 'self' lists.sourceforge.net; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; fenced-frame-src https:; object-src 'none'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; upgrade-insecure-requests; script-src 'self' adservice.google.bf adservice.google.ro adservice.google.je adservice.google.gm html-load.com adservice.google.al js.usemessages.com ml314.com *.script.ac adservice.google.com.pr adservice.google.com.bh adservice.google.com.kh adservice.google.rw content-loader.com http://b.sf-syn.com translate.google.cn adservice.google.com.ar adservice.google.com.ec adservice.google.sr adservice.google.dk adservice.google.com.bo *.crwdcntrl.net adservice.google.tg adservice.google.bi translate.googleapis.com adservice.google.com.ni adservice.google.co.za adservice.google.com.cu *.4dex.io adservice.google.fr *.googlesyndication.com adservice.google.at adservice.google.pl adservice.google.is adservice.google.bt *.fb.content-loader.com adservice.google.ch adservice.google.com.tr adservice.google.jo blob: adservice.google.bj adservice.google.com.bn adservice.google.com.pe css-load.com adservice.google.com.my adservice.google.co.jp adservice.google.mv adservice.google.com.ng adservice.google.co.ls adservice.google.ne adservice.google.co.mz adservice.google.lt adservice.google.mu adservice.google.gg adservice.google.mg recaptcha.net adservice.google.co.in adservice.google.com.ly adservice.google.tm adservice.google.nu adservice.google.cg *.as.sourceforge.net adservice.google.nl adservice.google.sc *.doubleverify.com adservice.google.st adservice.google.ee adservice.google.im adservice.google.com.et adservice.google.gl adservice.google.ru adservice.google.com.mx adservice.google.tl adservice.google.gr adservice.google.com.uy adservice.google.dz adservice.google.com.mm *.googletagservices.com adservice.google.gt *.crsspxl.com *.adtrafficquality.google *.licdn.com adservice.google.cm adservice.google.ht adservice.google.co.cr adservice.google.com.vn adservice.google.tt adservice.google.com.eg adservice.google.com.na *.criteo.net *.flashtalking.com adservice.google.sn adservice.google.td adservice.google.la adservice.google.com.py cdn.jsdelivr.net adservice.google.co.uz adservice.google.vu *.consentmanager.net adservice.google.vg adservice.google.ca adservice.google.cv adservice.google.hn adservice.google.pt *.hs-scripts.com adservice.google.co.kr adservice.google.com.hk *.sharethrough.com *.slashdotmedia.com j.6sc.co *.ampproject.org adservice.google.com.ph adservice.google.mn adservice.google.com.gi adservice.google.co.ck adservice.google.li adservice.google.co.il adservice.google.co.th *.cloudflareinsights.com *.microsofttranslator.com adservice.google.com.gh adservice.google.com.bd *.googletagmanager.com adservice.google.ie adservice.google.com.ag adservice.google.co.ug *.gstatic.com adservice.google.com.om *.id5-sync.com *.google.com adservice.google.si *.euid.eu adservice.google.com.pk adservice.google.com.br adservice.google.com.co adservice.google.ps adservice.google.sk adservice.google.com.vc *.microsoft.com adservice.google.co.nz adservice.google.md adservice.google.ki adservice.google.tn adservice.google.co.zm cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.bg adservice.google.com.kw adservice.google.ad *.lijit.com adservice.google.co.zw adservice.google.com.sg adservice.google.mw adservice.google.com.tw js.hs-banner.com adservice.google.mk *.2mdn.net adservice.google.ml *.openxcdn.net js.hsadspixel.net adservice.google.co.ve *.im-apps.net *.css-load.com *.adsafeprotected.com *.07c225f3.online adservice.google.com.jm js.hs-analytics.net adservice.google.com.af adservice.google.com.qa adservice.google.bs *.recaptcha.net *.trustarc.com adservice.google.com.sv adservice.google.az *.content-loader.com adservice.google.com.pa adservice.google.sm adservice.google.com.sb adservice.google.hu adservice.google.ci *.creativecdn.com adservice.google.cz adservice.google.cl adservice.google.co.tz adservice.google.be adservice.google.com.tj adservice.google.com.sa adservice.google.co.vi *.fb.html-load.com adservice.google.ms *.gstatic.cn adservice.google.co.uk http://c.sf-syn.com adservice.google.com.au *.moatads.com adservice.google.as adservice.google.fm adservice.google.co.ke adservice.google.lk *.uidapi.com adservice.google.co.bw *.adnxs.com adservice.google.com.mt *.googleadsserving.cn adservice.google.de adservice.google.it adservice.google.ws adservice.google.lv *.html-load.com 07c225f3.online btloader.com adservice.google.rs adservice.google.hr adservice.google.kz adservice.google.ge adservice.google.com.np adservice.google.fi *.doubleclick.net *.btmessage.com adservice.google.com.gt adservice.google.nr adservice.google.com.cy adservice.google.com.pg adservice.google.me adservice.google.cd adservice.google.com.ua adservice.google.com.fj adservice.google.com.bz adservice.google.com.lb adservice.google.to adservice.google.ga adservice.google.kg adservice.google.com.ai *.s-onetag.com adservice.google.no adservice.google.co.ao adservice.google.so adservice.google.ae adservice.google.cf *.tiny.cloud adservice.google.dm as.sourceforge.net adservice.google.co.id a.fsdn.com js.hscollectedforms.net adservice.google.se adservice.google.iq adservice.google.es *.google-analytics.com adservice.google.dj adservice.google.lu http://*.pro-market.net adservice.google.gy 'unsafe-inline' 'unsafe-eval'
expires: Mon, 24 Feb 2025 14:53:15 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 13:52:44 GMT
cf-cache-status: HIT
age: 2558
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da1da88fa67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/img/sandiego/logo-180x180.png

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/img/sandiego/logo-180x180.png HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:17 GMT
content-type: image/webp
content-length: 1148
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1512
content-disposition: inline; filename="logo-180x180.webp"
vary: Accept
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "60f5c3f7-5e8"
expires: Mon, 24 Feb 2025 14:53:17 GMT
last-modified: Mon, 19 Jul 2021 18:27:03 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 154898
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da25ef14a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/js/lib/big-text.js?1737649919

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/js/lib/big-text.js?1737649919 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:37 GMT
content-type: application/javascript
last-modified: Sat, 07 Sep 2019 00:24:36 GMT
etag: W/"5d72f8c4-2654"
expires: Mon, 24 Feb 2025 14:53:37 GMT
cache-control: public, max-age=2678400
access-control-allow-origin: *
timing-allow-origin: *
cf-cache-status: HIT
age: 80198
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070daa31cb8a67e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/18069

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/18069 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:37 GMT
content-type: image/webp
content-length: 3220
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=4903
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: frame-ancestors 'self'; form-action 'self' lists.sourceforge.net; fenced-frame-src https:; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; object-src 'none'; script-src 'self' adservice.google.ki adservice.google.com.qa adservice.google.com.hk adservice.google.com.lb *.consentmanager.net adservice.google.co.za cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.md adservice.google.com.tr js.hs-banner.com adservice.google.lu *.crsspxl.com http://b.sf-syn.com adservice.google.lk http://c.sf-syn.com adservice.google.hr adservice.google.com.kw adservice.google.ie adservice.google.com.na ml314.com adservice.google.lv adservice.google.gm *.ampproject.org adservice.google.com.bn adservice.google.com.ec adservice.google.com.co adservice.google.com.vn adservice.google.tg adservice.google.bt adservice.google.dk 07c225f3.online *.googleadsserving.cn *.btmessage.com adservice.google.se translate.googleapis.com adservice.google.com.mt adservice.google.tl adservice.google.jo *.microsofttranslator.com adservice.google.sc *.criteo.net adservice.google.si adservice.google.at adservice.google.ch http://*.pro-market.net adservice.google.as *.s-onetag.com *.google.com *.doubleclick.net adservice.google.co.ve adservice.google.dz adservice.google.mk adservice.google.com.ni adservice.google.cl adservice.google.com.gi adservice.google.nl adservice.google.com.fj adservice.google.es *.2mdn.net *.fb.html-load.com adservice.google.dm adservice.google.co.ug *.microsoft.com adservice.google.sr cdn.jsdelivr.net adservice.google.co.il content-loader.com *.euid.eu *.adnxs.com adservice.google.sk adservice.google.co.jp btloader.com adservice.google.hu adservice.google.com.gh adservice.google.com.sv adservice.google.rw *.googlesyndication.com adservice.google.bi *.cloudflareinsights.com adservice.google.je adservice.google.mv *.html-load.com adservice.google.so adservice.google.ci *.openxcdn.net adservice.google.com.np adservice.google.gl *.moatads.com a.fsdn.com adservice.google.co.kr adservice.google.no html-load.com adservice.google.az adservice.google.td adservice.google.com.tw adservice.google.sn adservice.google.ro adservice.google.gy adservice.google.nr adservice.google.it adservice.google.co.uk adservice.google.com.cy *.uidapi.com *.adtrafficquality.google *.google-analytics.com adservice.google.al adservice.google.co.ck adservice.google.kg *.gstatic.cn *.googletagservices.com *.adsafeprotected.com adservice.google.com.ai adservice.google.com.my j.6sc.co adservice.google.bj adservice.google.cg *.creativecdn.com adservice.google.vu adservice.google.co.uz adservice.google.com.pg *.slashdotmedia.com adservice.google.com.bd adservice.google.com.ua adservice.google.ws js.hs-analytics.net adservice.google.com.pk adservice.google.com.pr adservice.google.com.pa *.lijit.com js.hsadspixel.net adservice.google.com.py adservice.google.co.nz adservice.google.ga *.im-apps.net adservice.google.com.au adservice.google.be *.as.sourceforge.net adservice.google.com.br adservice.google.de *.trustarc.com *.07c225f3.online adservice.google.vg adservice.google.ne *.gstatic.com adservice.google.fi adservice.google.ad adservice.google.co.ke *.hs-scripts.com adservice.google.com.ar adservice.google.ae adservice.google.mg adservice.google.com.pe adservice.google.iq adservice.google.co.vi adservice.google.mu adservice.google.tt as.sourceforge.net adservice.google.nu adservice.google.mw adservice.google.ht *.script.ac blob: js.usemessages.com adservice.google.co.zm adservice.google.mn recaptcha.net *.doubleverify.com adservice.google.me adservice.google.st adservice.google.co.ls *.sharethrough.com adservice.google.com.mm adservice.google.com.ag *.crwdcntrl.net adservice.google.bs adservice.google.hn adservice.google.com.tj adservice.google.to *.content-loader.com adservice.google.dj adservice.google.ms translate.google.cn adservice.google.com.cu *.googletagmanager.com adservice.google.com.sg adservice.google.li *.recaptcha.net adservice.google.com.bh adservice.google.com.bo adservice.google.ru adservice.google.cv adservice.google.is adservice.google.tm adservice.google.co.tz adservice.google.ge adservice.google.cz adservice.google.ee adservice.google.com.sa adservice.google.co.cr adservice.google.com.kh adservice.google.co.ao adservice.google.fm adservice.google.gr adservice.google.com.mx adservice.google.tn adservice.google.com.om *.id5-sync.com *.fb.content-loader.com adservice.google.bg adservice.google.ml adservice.google.pl adservice.google.ps adservice.google.la adservice.google.com.bz adservice.google.cm adservice.google.com.vc *.flashtalking.com adservice.google.com.sb adservice.google.cf *.css-load.com css-load.com adservice.google.kz adservice.google.com.jm adservice.google.com.ly adservice.google.ca adservice.google.com.ng *.tiny.cloud adservice.google.co.th adservice.google.com.af adservice.google.co.zw adservice.google.gt *.4dex.io adservice.google.co.id adservice.google.cd adservice.google.lt adservice.google.sm *.licdn.com adservice.google.com.uy adservice.google.bf adservice.google.gg js.hscollectedforms.net adservice.google.pt adservice.google.co.mz adservice.google.com.et adservice.google.fr adservice.google.rs adservice.google.im adservice.google.co.bw adservice.google.com.eg adservice.google.com.ph adservice.google.co.in adservice.google.com.gt 'unsafe-inline' 'unsafe-eval'; upgrade-insecure-requests
expires: Mon, 24 Feb 2025 14:53:37 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 13:38:28 GMT
cf-cache-status: HIT
age: 1198
accept-ranges: bytes
server: cloudflare
cf-ray: 9070daa35d3ba67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/17229

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/17229 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:37 GMT
content-type: image/png
content-length: 1384
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
cache-control: public, max-age=2678400
content-security-policy: form-action 'self' lists.sourceforge.net; fenced-frame-src https:; upgrade-insecure-requests; script-src 'self' adservice.google.com.bh *.css-load.com adservice.google.li adservice.google.ae adservice.google.co.cr adservice.google.tl cdn.jsdelivr.net adservice.google.nr adservice.google.co.id adservice.google.gy adservice.google.com.bo adservice.google.co.za adservice.google.st *.euid.eu *.sharethrough.com adservice.google.sr adservice.google.az adservice.google.cl adservice.google.co.vi adservice.google.co.ke adservice.google.rs *.google-analytics.com adservice.google.gr http://*.pro-market.net adservice.google.ad adservice.google.bf *.btmessage.com adservice.google.ws adservice.google.com.ag adservice.google.mn adservice.google.com.et adservice.google.ms *.id5-sync.com adservice.google.bi *.fb.html-load.com adservice.google.co.zw adservice.google.mg *.script.ac adservice.google.com.sv adservice.google.cm *.openxcdn.net adservice.google.co.tz cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.com.fj adservice.google.si *.googletagmanager.com adservice.google.ee adservice.google.td *.gstatic.cn *.googletagservices.com adservice.google.com.co *.googleadsserving.cn *.ampproject.org adservice.google.fr adservice.google.com.ar adservice.google.lk *.google.com adservice.google.dk adservice.google.com.mm adservice.google.lt js.hs-analytics.net adservice.google.dm adservice.google.bt adservice.google.ps adservice.google.com.bz adservice.google.bg adservice.google.com.ec http://c.sf-syn.com adservice.google.vu adservice.google.sk adservice.google.tm *.recaptcha.net adservice.google.lv adservice.google.com.bd adservice.google.to adservice.google.ro http://b.sf-syn.com adservice.google.hr adservice.google.no adservice.google.co.in adservice.google.nu adservice.google.com.qa adservice.google.com.jm adservice.google.md *.tiny.cloud adservice.google.com.pg adservice.google.com.bn *.s-onetag.com adservice.google.gl 07c225f3.online *.consentmanager.net *.doubleclick.net adservice.google.je adservice.google.com.pr *.as.sourceforge.net adservice.google.es adservice.google.gg adservice.google.com.vc adservice.google.com.cu adservice.google.com.au adservice.google.com.mt adservice.google.com.sb adservice.google.fm adservice.google.ki adservice.google.com.mx adservice.google.ge adservice.google.tn adservice.google.be adservice.google.co.uk translate.google.cn js.hsadspixel.net *.adtrafficquality.google adservice.google.com.ly adservice.google.kz adservice.google.co.mz *.microsoft.com adservice.google.com.om css-load.com adservice.google.ch translate.googleapis.com adservice.google.com.ng adservice.google.co.bw adservice.google.ca *.trustarc.com js.hscollectedforms.net html-load.com adservice.google.bj adservice.google.com.ai adservice.google.com.vn *.moatads.com adservice.google.com.pk adservice.google.com.lb adservice.google.co.ck adservice.google.sc adservice.google.com.cy adservice.google.cg adservice.google.vg adservice.google.lu adservice.google.co.zm adservice.google.com.tj blob: adservice.google.com.gi adservice.google.mk adservice.google.cz adservice.google.co.kr ml314.com adservice.google.com.np content-loader.com adservice.google.it *.microsofttranslator.com *.creativecdn.com adservice.google.pt adservice.google.tt *.gstatic.com *.licdn.com adservice.google.com.gh adservice.google.co.nz a.fsdn.com adservice.google.mu adservice.google.ht js.hs-banner.com adservice.google.mv adservice.google.com.tr *.doubleverify.com *.hs-scripts.com adservice.google.co.il adservice.google.cd adservice.google.com.pa adservice.google.im adservice.google.se *.uidapi.com adservice.google.pl adservice.google.tg btloader.com adservice.google.la adservice.google.com.tw adservice.google.hu adservice.google.com.na *.4dex.io adservice.google.as adservice.google.com.hk adservice.google.com.uy adservice.google.gt adservice.google.sm *.lijit.com adservice.google.co.ao *.html-load.com *.crwdcntrl.net adservice.google.bs adservice.google.dj *.fb.content-loader.com adservice.google.com.my adservice.google.com.sg adservice.google.cf adservice.google.al *.07c225f3.online recaptcha.net adservice.google.com.kw adservice.google.com.eg *.cloudflareinsights.com as.sourceforge.net adservice.google.sn adservice.google.dz adservice.google.ml adservice.google.so adservice.google.com.ni *.slashdotmedia.com *.flashtalking.com adservice.google.kg adservice.google.ne *.criteo.net adservice.google.nl adservice.google.co.jp adservice.google.co.th adservice.google.de adservice.google.com.kh adservice.google.com.gt adservice.google.gm adservice.google.mw adservice.google.me *.adsafeprotected.com adservice.google.com.br *.im-apps.net adservice.google.hn adservice.google.iq js.usemessages.com adservice.google.co.ls adservice.google.fi adservice.google.com.py adservice.google.at adservice.google.co.uz adservice.google.is *.googlesyndication.com adservice.google.com.sa adservice.google.ie adservice.google.co.ve adservice.google.com.af adservice.google.ru adservice.google.com.pe adservice.google.co.ug adservice.google.com.ua adservice.google.ci *.crsspxl.com *.content-loader.com j.6sc.co adservice.google.jo adservice.google.cv adservice.google.ga *.2mdn.net adservice.google.com.ph *.adnxs.com adservice.google.rw 'unsafe-inline' 'unsafe-eval'; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; frame-ancestors 'self'; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; object-src 'none'
expires: Mon, 24 Feb 2025 14:53:37 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 13:50:20 GMT
cf-cache-status: HIT
age: 1802
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070daa35d37a67e-LHR
alt-svc: h3=":443"; ma=86400
GET

https://a.fsdn.com/con/app/nel_img/19177

msedge.exe

Remote address:

104.18.16.56:443

Request

GET /con/app/nel_img/19177 HTTP/2.0
host: a.fsdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:53 GMT
content-type: image/webp
content-length: 3654
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=5334
vary: Accept
cache-control: public, max-age=2678400
content-security-policy: frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; form-action 'self' lists.sourceforge.net; upgrade-insecure-requests; object-src 'none'; frame-ancestors 'self'; fenced-frame-src https:; script-src 'self' *.googletagservices.com adservice.google.cl adservice.google.hu adservice.google.fr html-load.com content-loader.com *.id5-sync.com adservice.google.com.bz cdn.jsdelivr.net/gh/prebid/shared-id/ adservice.google.com.my adservice.google.co.vi adservice.google.com.ec adservice.google.gy *.criteo.net adservice.google.ci adservice.google.ad adservice.google.tt *.doubleclick.net adservice.google.mg adservice.google.com.pr *.lijit.com *.css-load.com adservice.google.jo *.adnxs.com adservice.google.at adservice.google.me adservice.google.com.fj adservice.google.gr adservice.google.com.na *.sharethrough.com js.hs-banner.com *.cloudflareinsights.com adservice.google.bj adservice.google.com.ai adservice.google.nu adservice.google.com.ng http://*.pro-market.net adservice.google.rs adservice.google.com.ph adservice.google.kg *.4dex.io adservice.google.lv js.hsadspixel.net adservice.google.bg *.trustarc.com adservice.google.ml adservice.google.co.mz *.googletagmanager.com adservice.google.co.th *.crsspxl.com adservice.google.ro adservice.google.bf *.microsoft.com adservice.google.co.ke adservice.google.ne adservice.google.ca adservice.google.co.ve adservice.google.cg adservice.google.co.uk *.hs-scripts.com adservice.google.st adservice.google.com.sv ml314.com js.usemessages.com adservice.google.com.gt adservice.google.co.tz *.moatads.com adservice.google.kz *.googleadsserving.cn adservice.google.bt *.html-load.com adservice.google.co.nz adservice.google.ee adservice.google.com.lb adservice.google.tl *.slashdotmedia.com adservice.google.de adservice.google.com.eg *.s-onetag.com *.gstatic.com adservice.google.com.bh adservice.google.co.za adservice.google.co.ug adservice.google.je adservice.google.com.om adservice.google.com.pg adservice.google.dm adservice.google.com.bd adservice.google.cd *.consentmanager.net adservice.google.com.cu *.content-loader.com adservice.google.co.id adservice.google.nr *.script.ac adservice.google.ki adservice.google.co.bw adservice.google.com.bo cdn.jsdelivr.net adservice.google.com.pe adservice.google.co.ck adservice.google.ga adservice.google.com.ar adservice.google.sr adservice.google.gg adservice.google.co.jp adservice.google.com.ua adservice.google.com.hk adservice.google.mv http://b.sf-syn.com adservice.google.no adservice.google.co.cr adservice.google.si adservice.google.az adservice.google.com.af css-load.com adservice.google.com.kh adservice.google.co.in *.ampproject.org btloader.com adservice.google.com.pa adservice.google.co.il adservice.google.ht adservice.google.com.qa *.gstatic.cn adservice.google.al *.recaptcha.net adservice.google.com.ni adservice.google.ms adservice.google.com.cy *.openxcdn.net adservice.google.ps adservice.google.com.tj adservice.google.dj *.crwdcntrl.net adservice.google.com.sa adservice.google.mk *.adtrafficquality.google adservice.google.lu adservice.google.bi adservice.google.com.ag *.adsafeprotected.com adservice.google.sm *.flashtalking.com *.licdn.com *.google-analytics.com adservice.google.com.kw adservice.google.sc adservice.google.ws js.hscollectedforms.net adservice.google.iq adservice.google.com.tw adservice.google.com.et j.6sc.co adservice.google.co.uz adservice.google.la adservice.google.md adservice.google.tn *.im-apps.net adservice.google.cf adservice.google.is adservice.google.com.tr *.creativecdn.com adservice.google.nl adservice.google.hr adservice.google.com.gi adservice.google.td adservice.google.im adservice.google.lt *.07c225f3.online *.fb.content-loader.com adservice.google.ge adservice.google.com.jm *.euid.eu adservice.google.com.vc *.2mdn.net adservice.google.gl recaptcha.net a.fsdn.com adservice.google.com.mx adservice.google.fi adservice.google.com.sb adservice.google.rw adservice.google.ch adservice.google.gm adservice.google.lk adservice.google.com.bn adservice.google.tm adservice.google.vu adservice.google.dk adservice.google.mw *.as.sourceforge.net adservice.google.co.zm adservice.google.li http://c.sf-syn.com *.microsofttranslator.com adservice.google.cz 07c225f3.online adservice.google.sk adservice.google.co.ao adservice.google.mn adservice.google.tg adservice.google.as adservice.google.com.mm adservice.google.vg adservice.google.cv adservice.google.com.vn *.doubleverify.com translate.googleapis.com adservice.google.se adservice.google.hn *.google.com *.googlesyndication.com adservice.google.com.au adservice.google.co.zw adservice.google.so adservice.google.be js.hs-analytics.net adservice.google.pt adservice.google.es adservice.google.dz adservice.google.pl adservice.google.com.gh adservice.google.cm adservice.google.ie adservice.google.com.np adservice.google.it adservice.google.com.uy adservice.google.to adservice.google.sn adservice.google.fm adservice.google.com.sg adservice.google.com.co adservice.google.co.kr translate.google.cn adservice.google.com.mt adservice.google.com.py adservice.google.gt *.uidapi.com blob: adservice.google.com.pk adservice.google.mu adservice.google.ru *.tiny.cloud adservice.google.bs as.sourceforge.net *.btmessage.com *.fb.html-load.com adservice.google.co.ls adservice.google.com.ly adservice.google.com.br adservice.google.ae 'unsafe-inline' 'unsafe-eval'; script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'
expires: Mon, 24 Feb 2025 14:53:53 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=edge,chrome=1
last-modified: Fri, 24 Jan 2025 13:52:09 GMT
cf-cache-status: HIT
age: 981
accept-ranges: bytes
server: cloudflare
cf-ray: 9070db0bc910a67e-LHR
alt-svc: h3=":443"; ma=86400
DNS

d.delivery.consentmanager.net

msedge.exe

Remote address:

8.8.8.8:53

Request

d.delivery.consentmanager.net

IN A

Response

d.delivery.consentmanager.net

IN A

87.230.98.76
DNS

cdn.consentmanager.net

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.consentmanager.net

IN A

Response

cdn.consentmanager.net

IN CNAME

1376624012.rsc.cdn77.org

1376624012.rsc.cdn77.org

IN A

84.17.50.9

1376624012.rsc.cdn77.org

IN A

89.187.167.39
GET

https://d.delivery.consentmanager.net/delivery/cmp.php?&cdid=f46fb9b4e114&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&o=1737730382096

msedge.exe

Remote address:

87.230.98.76:443

Request

GET /delivery/cmp.php?&cdid=f46fb9b4e114&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&o=1737730382096 HTTP/1.1
Host: d.delivery.consentmanager.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Fri, 24 Jan 2025 14:53:03 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
last-modified: Fri, 24 Jan 2025 14:53:03 GMT
transfer-encoding: chunked
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
GET

https://d.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=11319&o=1737730383&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&odw=0&dlt=1&l=en

msedge.exe

Remote address:

87.230.98.76:443

Request

GET /delivery/cmp.php?__cmpcc=1&id=11319&o=1737730383&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: d.delivery.consentmanager.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Fri, 24 Jan 2025 14:53:03 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
last-modified: Fri, 24 Jan 2025 14:53:03 GMT
transfer-encoding: chunked
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
GET

https://d.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=11319&o=1737730383&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&odw=0&dlt=1&l=en

msedge.exe

Remote address:

87.230.98.76:443

Request

GET /delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=11319&o=1737730383&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&odw=0&dlt=1&l=en HTTP/1.1
Host: d.delivery.consentmanager.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Fri, 24 Jan 2025 14:53:03 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
last-modified: Fri, 24 Jan 2025 14:53:03 GMT
transfer-encoding: chunked
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
GET

https://d.delivery.consentmanager.net/delivery/info/?id=11319&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&o=1737730382920&l=EN&lv=23742&d=1&ct=14&e=&e2=&e3=&i=&sv=56&dv=12&

msedge.exe

Remote address:

87.230.98.76:443

Request

GET /delivery/info/?id=11319&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&o=1737730382920&l=EN&lv=23742&d=1&ct=14&e=&e2=&e3=&i=&sv=56&dv=12& HTTP/1.1
Host: d.delivery.consentmanager.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Fri, 24 Jan 2025 14:53:03 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
last-modified: Fri, 24 Jan 2025 14:53:03 GMT
content-length: 43
content-type: image/gif
GET

https://d.delivery.consentmanager.net/delivery/info/?id=11319&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&o=1737730382922&l=EN&lv=23742&d=1&ct=14&e=&e2=&e3=&i=&sv=56&dv=12&

msedge.exe

Remote address:

87.230.98.76:443

Request

GET /delivery/info/?id=11319&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&o=1737730382922&l=EN&lv=23742&d=1&ct=14&e=&e2=&e3=&i=&sv=56&dv=12& HTTP/1.1
Host: d.delivery.consentmanager.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Fri, 24 Jan 2025 14:53:03 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
last-modified: Fri, 24 Jan 2025 14:53:03 GMT
content-length: 43
content-type: image/gif
GET

https://d.delivery.consentmanager.net/delivery/consent.php?id=11319&p=3&v=1&cvc=_c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U_&cpc=__&c=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&l=EN&lv=23742&d=1&ct=1&e=&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&e2=&e3=&i=&sv=56&dv=12&cookieallowed=1&reg=1&rk=GDPR&usps=1---

msedge.exe

Remote address:

87.230.98.76:443

Request

GET /delivery/consent.php?id=11319&p=3&v=1&cvc=_c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U_&cpc=__&c=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&l=EN&lv=23742&d=1&ct=1&e=&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&e2=&e3=&i=&sv=56&dv=12&cookieallowed=1&reg=1&rk=GDPR&usps=1--- HTTP/1.1
Host: d.delivery.consentmanager.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Fri, 24 Jan 2025 14:53:14 GMT
cache-control: no-store, no-cache, must-revalidate
edge-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
x-cf: 0
x-ct: 3
x-r: GDPR
last-modified: Fri, 24 Jan 2025 14:53:14 GMT
content-length: 43
content-type: image/gif
GET

https://cdn.consentmanager.net/delivery/js/cmp_en.min.js

msedge.exe

Remote address:

84.17.50.9:443

Request

GET /delivery/js/cmp_en.min.js HTTP/2.0
host: cdn.consentmanager.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: application/javascript
cross-origin-resource-policy: cross-origin
last-modified: Tue, 21 Jan 2025 17:20:03 GMT
etag: W/"6e75c-62c3a966216c0"
cache-control: max-age=86400
expires: Wed, 22 Jan 2025 17:58:18 GMT
edge-control: max-age=86400
cross-origin-resource-policy: cross-origin
x-77-nzt: EwwBVBEyBwH3EiYBAAwBuUwKDAH3VOwAAAwBJRPCNAW1AQAAAA
x-77-nzt-ray: 66f31c26d2233c4b4fa9936716a5b600
x-77-cache: HIT
x-77-age: 75282
vary: Accept-Encoding
content-encoding: gzip
server: CDN77-Turbo
x-77-pop: londonGB
GET

https://cdn.consentmanager.net/delivery/customdata/bV8xLndfMTEzMTkucl9HRFBSLmxfZW4uZF8yNDkyLnhfMTIudi5wLnRfMjQ5Mi54dF81Ng.js

msedge.exe

Remote address:

84.17.50.9:443

Request

GET /delivery/customdata/bV8xLndfMTEzMTkucl9HRFBSLmxfZW4uZF8yNDkyLnhfMTIudi5wLnRfMjQ5Mi54dF81Ng.js HTTP/2.0
host: cdn.consentmanager.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
expires: Fri, 24 Jan 2025 15:00:28 GMT
cache-control: public, max-age=1800
edge-control: public, max-age=1800
last-modified: Fri, 24 Jan 2025 14:30:28 GMT
x-77-nzt: EwwBVBEyBwH3SAUAAAwBuUwKCQH3AwAAAAwBnJIhHwGzCQcAAA
x-77-nzt-ray: 66f31c26d2233c4b4fa993673e633018
x-77-cache: HIT
vary: Accept-Encoding
content-encoding: gzip
x-77-age: 1352
server: CDN77-Turbo
x-77-pop: londonGB
DNS

c.sf-syn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

c.sf-syn.com

IN A

Response

c.sf-syn.com

IN A

104.18.4.227

c.sf-syn.com

IN A

104.18.5.227
DNS

56.16.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.16.18.104.in-addr.arpa

IN PTR

Response
DNS

76.98.230.87.in-addr.arpa

Remote address:

8.8.8.8:53

Request

76.98.230.87.in-addr.arpa

IN PTR

Response

76.98.230.87.in-addr.arpa

IN PTR

ma5050018 psmanagedcom
GET

https://c.sf-syn.com/conversion_outbound_tracker/sf

msedge.exe

Remote address:

104.18.4.227:443

Request

GET /conversion_outbound_tracker/sf HTTP/2.0
host: c.sf-syn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:03 GMT
content-type: text/html; charset=utf-8
x-ua-compatible: IE=edge,chrome=1
permissions-policy: geolocation=(), microphone=(), camera=(), payment=(), document-domain=(), display-capture=(), autoplay=()
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
content-security-policy: script-src-attr 'unsafe-hashes' 'sha256-FAuWTsUQFh//tnOD1gM3o45U7GOxGrAbEUD1MaChEbU=' 'sha256-0Lbn/qyLBtIHJ7R5qWQULCWaKimdTtpBBHAU9tar2Wc=' 'report-sample'; upgrade-insecure-requests; frame-src 'self' http://*.pro-market.net *.crsspxl.com a.fsdn.com *.google.com http://c.sf-syn.com http://b.sf-syn.com *.googlesyndication.com *.safeframe.usercontent.goog *.doubleclick.net *.adtrafficquality.google *.googleadservices.com *.googletagmanager.com *.recaptcha.net recaptcha.net *.youtube.com www.youtube-nocookie.com *.consentmanager.net *.adnxs.com *.indexww.com *.rubiconproject.com *.criteo.com *.openx.net *.pubmatic.com *.smartadserver.com *.lijit.com *.btloader.com *.btmessage.com error-report.com *.error-report.com html-load.com *.html-load.com *.fb.html-load.com content-loader.com *.content-loader.com *.fb.content-loader.com css-load.com *.css-load.com 07c225f3.online *.07c225f3.online as.sourceforge.net *.as.sourceforge.net app.hubspot.com; fenced-frame-src https:; form-action 'self' lists.sourceforge.net; object-src 'none'; script-src 'self' html-load.com adservice.google.je adservice.google.com.ar cdn.jsdelivr.net/gh/prebid/shared-id/ *.creativecdn.com *.googletagservices.com css-load.com adservice.google.ge *.recaptcha.net *.moatads.com *.trustarc.com *.adsafeprotected.com adservice.google.com.bo adservice.google.com.bz adservice.google.co.nz adservice.google.com.gh adservice.google.com.na adservice.google.md *.sharethrough.com adservice.google.ee adservice.google.com.np adservice.google.bj adservice.google.be adservice.google.com.tj *.fb.content-loader.com adservice.google.com.mx adservice.google.li adservice.google.com.bn adservice.google.co.zm *.2mdn.net adservice.google.com.co adservice.google.nr adservice.google.co.zw adservice.google.lu *.consentmanager.net adservice.google.pt *.googleadsserving.cn *.script.ac adservice.google.vu *.adtrafficquality.google *.crsspxl.com adservice.google.la adservice.google.ms *.gstatic.cn adservice.google.ga adservice.google.so adservice.google.com.kw adservice.google.com.uy adservice.google.ci adservice.google.com.lb adservice.google.it adservice.google.jo adservice.google.com.vn adservice.google.com.ni adservice.google.com.gt *.adnxs.com adservice.google.com.ua adservice.google.mw *.lijit.com adservice.google.com.sa adservice.google.ch *.uidapi.com adservice.google.com.cu adservice.google.com.jm adservice.google.co.th *.googlesyndication.com adservice.google.tt adservice.google.com.br adservice.google.fr adservice.google.vg adservice.google.com.ai adservice.google.fm adservice.google.com.gi adservice.google.com.ag adservice.google.st *.ampproject.org adservice.google.sr adservice.google.nu adservice.google.co.ao adservice.google.com.fj *.fb.html-load.com adservice.google.sm adservice.google.co.kr adservice.google.sk adservice.google.mn http://b.sf-syn.com *.im-apps.net adservice.google.co.cr adservice.google.fi adservice.google.ca adservice.google.com.bh js.hsadspixel.net blob: adservice.google.ht translate.googleapis.com adservice.google.ne adservice.google.kg *.crwdcntrl.net adservice.google.cv adservice.google.com.hk *.microsoft.com *.s-onetag.com adservice.google.dz adservice.google.rw adservice.google.hn *.gstatic.com adservice.google.co.jp adservice.google.im adservice.google.as adservice.google.co.vi adservice.google.com.pg adservice.google.com.eg adservice.google.com.ph *.content-loader.com 07c225f3.online adservice.google.is *.licdn.com adservice.google.co.ve *.07c225f3.online adservice.google.tn adservice.google.co.tz adservice.google.dm adservice.google.com.sv *.microsofttranslator.com adservice.google.com.ec adservice.google.ru adservice.google.com.et *.google-analytics.com adservice.google.sn adservice.google.com.qa *.4dex.io *.googletagmanager.com adservice.google.com.pe adservice.google.co.id adservice.google.cg *.hs-scripts.com adservice.google.sc js.usemessages.com adservice.google.gy adservice.google.gr adservice.google.gt *.slashdotmedia.com adservice.google.com.sg adservice.google.al adservice.google.tg *.tiny.cloud adservice.google.ps adservice.google.co.in adservice.google.mu adservice.google.com.cy adservice.google.cz as.sourceforge.net adservice.google.gg adservice.google.tm adservice.google.bs adservice.google.lt http://*.pro-market.net adservice.google.com.ly adservice.google.si *.doubleclick.net adservice.google.de adservice.google.pl adservice.google.com.au adservice.google.mg adservice.google.me adservice.google.nl adservice.google.se *.doubleverify.com content-loader.com adservice.google.bt adservice.google.com.vc js.hs-analytics.net adservice.google.co.za adservice.google.com.bd adservice.google.ws adservice.google.com.my adservice.google.rs adservice.google.com.mm btloader.com adservice.google.dk adservice.google.hu adservice.google.kz adservice.google.dj adservice.google.ad adservice.google.es adservice.google.mk *.cloudflareinsights.com adservice.google.cl *.id5-sync.com a.fsdn.com adservice.google.td adservice.google.co.ug *.google.com *.flashtalking.com adservice.google.bg adservice.google.com.af adservice.google.gl adservice.google.com.py adservice.google.ml adservice.google.lv adservice.google.co.mz adservice.google.com.om adservice.google.lk adservice.google.ki adservice.google.to adservice.google.ie adservice.google.tl *.euid.eu adservice.google.com.kh adservice.google.com.pr adservice.google.com.ng adservice.google.com.pk adservice.google.com.tw adservice.google.co.ls adservice.google.co.uz j.6sc.co js.hscollectedforms.net ml314.com *.openxcdn.net adservice.google.cd recaptcha.net *.btmessage.com adservice.google.bi adservice.google.ae adservice.google.bf translate.google.cn adservice.google.ro adservice.google.co.il adservice.google.iq adservice.google.com.mt adservice.google.cf *.as.sourceforge.net adservice.google.gm adservice.google.no adservice.google.co.ke adservice.google.co.bw adservice.google.co.uk *.css-load.com *.criteo.net adservice.google.at adservice.google.com.pa js.hs-banner.com adservice.google.cm adservice.google.az adservice.google.mv http://c.sf-syn.com adservice.google.com.sb adservice.google.co.ck adservice.google.hr adservice.google.com.tr *.html-load.com cdn.jsdelivr.net 'unsafe-inline' 'unsafe-eval'
x-content-type-options: nosniff
expires: Fri, 24 Jan 2025 18:53:03 GMT
cache-control: public, max-age=14400
last-modified: Fri, 24 Jan 2025 13:25:04 GMT
cf-cache-status: HIT
age: 176
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070d9ce7d7fb466-LHR
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
DNS

9.50.17.84.in-addr.arpa

Remote address:

8.8.8.8:53

Request

9.50.17.84.in-addr.arpa

IN PTR

Response

9.50.17.84.in-addr.arpa

IN PTR

639431526loncdn77com
DNS

227.4.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.4.18.104.in-addr.arpa

IN PTR

Response
DNS

as.sourceforge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

as.sourceforge.net

IN A

Response

as.sourceforge.net

IN CNAME

html-load.com

html-load.com

IN A

104.18.40.119

html-load.com

IN A

172.64.147.137
DNS

btloader.com

msedge.exe

Remote address:

8.8.8.8:53

Request

btloader.com

IN A

Response

btloader.com

IN A

172.67.41.60

btloader.com

IN A

104.22.75.216

btloader.com

IN A

104.22.74.216
DNS

securepubads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

securepubads.g.doubleclick.net

IN A

Response

securepubads.g.doubleclick.net

IN A

142.250.187.194
DNS

ml314.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ml314.com

IN A

Response

ml314.com

IN A

34.117.77.79
DNS

j.6sc.co

msedge.exe

Remote address:

8.8.8.8:53

Request

j.6sc.co

IN A

Response

j.6sc.co

IN CNAME

j2.6sc.co.edgekey.net

j2.6sc.co.edgekey.net

IN CNAME

e212585.b.akamaiedge.net

e212585.b.akamaiedge.net

IN A

95.100.153.131

e212585.b.akamaiedge.net

IN A

95.100.153.162
DNS

analytics.slashdotmedia.com

msedge.exe

Remote address:

8.8.8.8:53

Request

analytics.slashdotmedia.com

IN A

Response

analytics.slashdotmedia.com

IN A

216.105.38.9
GET

https://as.sourceforge.net/loader.min.js

msedge.exe

Remote address:

104.18.40.119:443

Request

GET /loader.min.js HTTP/2.0
host: as.sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q
cookie: cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A
cookie: __cmpcpcx11319=____
cookie: __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
cookie: __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: application/javascript
cf-ray: 9070da159cfebefd-LHR
cf-cache-status: HIT
access-control-allow-origin: *
age: 13256
cache-control: public, max-age=14400, stale-while-revalidate=28800
content-encoding: gzip
etag: W/"b34f24124debdf4cb4edfdadd2c5c686-1737705600000"
last-modified: Fri, 24 Jan 2025 08:00:00 GMT
vary: Origin, Accept-Encoding
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, OPTIONS, DELETE
cross-origin-resource-policy: cross-origin
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JUKk1luOkk4Ai1czJVV8MPTk1%2FEGP0L93SHe%2FGj9bI8Wbswtz53EeeFnWW3X%2F6gRYccuF%2BZHEvQSkrERJm043lfxd7KWiYC3evKxtkMgINXTe1ByJWxql4Y8wGhcWw0ac2W3gKJCm59EEUgb"}],"group":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
GET

https://btloader.com/tag?o=5098683085881344&upapi=true

msedge.exe

Remote address:

172.67.41.60:443

Request

GET /tag?o=5098683085881344&upapi=true HTTP/2.0
host: btloader.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: application/javascript
content-length: 20382
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "ce5df8609b39a1bb220cb8d230e6dd9e"
last-modified: Fri, 24 Jan 2025 14:48:17 GMT
vary: Origin, Accept-Encoding
x-robots-tag: noindex, nofollow
via: 1.1 google
cf-cache-status: HIT
age: 294
accept-ranges: bytes
server: cloudflare
cf-ray: 9070da159f7bcd89-LHR
GET

https://btloader.com/tag?o=5098683085881344&upapi=true

msedge.exe

Remote address:

172.67.41.60:443

Request

GET /tag?o=5098683085881344&upapi=true HTTP/2.0
host: btloader.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "ce5df8609b39a1bb220cb8d230e6dd9e"
if-modified-since: Fri, 24 Jan 2025 14:48:17 GMT

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:37 GMT
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
etag: "ce5df8609b39a1bb220cb8d230e6dd9e"
last-modified: Fri, 24 Jan 2025 14:48:17 GMT
vary: Origin, Accept-Encoding
x-robots-tag: noindex, nofollow
via: 1.1 google
cf-cache-status: HIT
age: 317
server: cloudflare
cf-ray: 9070daa82e74cd89-LHR
GET

https://btloader.com/tag?o=5098683085881344&upapi=true

msedge.exe

Remote address:

172.67.41.60:443

Request

GET /tag?o=5098683085881344&upapi=true HTTP/2.0
host: btloader.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "ce5df8609b39a1bb220cb8d230e6dd9e"
if-modified-since: Fri, 24 Jan 2025 14:48:17 GMT

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:54 GMT
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
etag: "ce5df8609b39a1bb220cb8d230e6dd9e"
last-modified: Fri, 24 Jan 2025 14:48:17 GMT
vary: Origin, Accept-Encoding
x-robots-tag: noindex, nofollow
via: 1.1 google
cf-cache-status: HIT
age: 334
server: cloudflare
cf-ray: 9070db0e0dd8cd89-LHR
GET

https://ml314.com/tag.aspx?2402025

msedge.exe

Remote address:

34.117.77.79:443

Request

GET /tag.aspx?2402025 HTTP/2.0
host: ml314.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://analytics.slashdotmedia.com/sf.js

msedge.exe

Remote address:

216.105.38.9:443

Request

GET /sf.js HTTP/1.1
Host: analytics.slashdotmedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: */*
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx
Date: Fri, 24 Jan 2025 14:53:14 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 65458
Connection: keep-alive
last-modified: Mon, 19 Nov 2018 03:20:15 GMT
vary: Accept-Encoding
expires: Sun, 23 Feb 2025 14:53:14 GMT
cache-control: max-age=2592000
cache-control: max-age=31449600, no-transform, public
accept-ranges: bytes
GET

https://analytics.slashdotmedia.com/sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=182633&h=14&m=53&s=14&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=1&gt_ms=730&pv_id=ts7ywY

msedge.exe

Remote address:

216.105.38.9:443

Request

GET /sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=182633&h=14&m=53&s=14&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=1&gt_ms=730&pv_id=ts7ywY HTTP/1.1
Host: analytics.slashdotmedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx
Date: Fri, 24 Jan 2025 14:53:15 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
tk: N
cache-control: no-store
x-frame-options: SameOrigin
x-content-type-options: nosniff
GET

https://j.6sc.co/j/58729049-be80-466a-9abf-b3911430bbd8.js

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /j/58729049-be80-466a-9abf-b3911430bbd8.js HTTP/2.0
host: j.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 885
last-modified: Thu, 18 Jan 2024 21:30:44 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-content-type: application/json
x-amz-version-id: tm_uL4kHiPrB8uEBWVVJhhUXKV2qU3Bj
accept-ranges: bytes
server: AmazonS3
etag: "97de29b9c1934f4440a73cc56212afc6"
vary: accept-encoding
x-amz-cf-pop: LHR61-C2
x-amz-cf-id: xRRLDK3oL7Ag5CM6qfndQCPTa02e2EV6GWJ_IBpTIZN23e-oB-B28Q==
cache-control: private, max-age=1800
expires: Fri, 24 Jan 2025 15:23:14 GMT
date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: application/javascript
GET

https://j.6sc.co/6si.min.js

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /6si.min.js HTTP/2.0
host: j.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: application/javascript
etag: "6763d39f-1110f"
last-modified: Thu, 19 Dec 2024 08:04:47 GMT
server: nginx
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
content-length: 18919
cache-control: private, proxy-revalidate, max-age=10800
expires: Fri, 24 Jan 2025 17:53:14 GMT
date: Fri, 24 Jan 2025 14:53:14 GMT
GET

https://c.6sc.co/

msedge.exe

Remote address:

95.100.153.131:443

Request

GET / HTTP/2.0
host: c.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 7
date: Fri, 24 Jan 2025 14:53:14 GMT
access-control-allow-origin: https://sourceforge.net
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:14 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:14 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=click&q=%7B%22event_value%22%3A%22%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload%22%2C%22event_id%22%3A%22%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=click&q=%7B%22event_value%22%3A%22%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload%22%2C%22event_id%22%3A%22%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:15 GMT
GET

https://c.6sc.co/

msedge.exe

Remote address:

95.100.153.131:443

Request

GET / HTTP/2.0
host: c.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 7
date: Fri, 24 Jan 2025 14:53:16 GMT
access-control-allow-origin: https://sourceforge.net
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:16 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:16 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A17%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%22%2C%22timeSpent%22%3A%221011%22%2C%22totalTimeSpent%22%3A%221011%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A17%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%22%2C%22timeSpent%22%3A%221011%22%2C%22totalTimeSpent%22%3A%221011%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:17 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A18%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A17%20GMT%22%2C%22timeSpent%22%3A%221017%22%2C%22totalTimeSpent%22%3A%222028%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A18%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A17%20GMT%22%2C%22timeSpent%22%3A%221017%22%2C%22totalTimeSpent%22%3A%222028%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:18 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A19%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A18%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%223031%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A19%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A18%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%223031%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:19 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:19 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A19%20GMT%22%2C%22timeSpent%22%3A%221009%22%2C%22totalTimeSpent%22%3A%224040%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A19%20GMT%22%2C%22timeSpent%22%3A%221009%22%2C%22totalTimeSpent%22%3A%224040%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:20 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:20 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A21%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A20%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%225050%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A21%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A20%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%225050%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:21 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A22%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A21%20GMT%22%2C%22timeSpent%22%3A%221015%22%2C%22totalTimeSpent%22%3A%226065%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A22%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A21%20GMT%22%2C%22timeSpent%22%3A%221015%22%2C%22totalTimeSpent%22%3A%226065%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:22 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:22 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A23%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A22%20GMT%22%2C%22timeSpent%22%3A%221004%22%2C%22totalTimeSpent%22%3A%227069%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A23%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A22%20GMT%22%2C%22timeSpent%22%3A%221004%22%2C%22totalTimeSpent%22%3A%227069%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:23 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A24%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A23%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%228076%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A24%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A23%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%228076%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:24 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A25%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A24%20GMT%22%2C%22timeSpent%22%3A%221018%22%2C%22totalTimeSpent%22%3A%229094%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A25%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A24%20GMT%22%2C%22timeSpent%22%3A%221018%22%2C%22totalTimeSpent%22%3A%229094%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "60bb2e15-2b"
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:25 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:25 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A26%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A25%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%2210101%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A26%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A25%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%2210101%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:26 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:26 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A26%20GMT%22%2C%22timeSpent%22%3A%223006%22%2C%22totalTimeSpent%22%3A%2213107%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A26%20GMT%22%2C%22timeSpent%22%3A%223006%22%2C%22totalTimeSpent%22%3A%2213107%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:29 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:29 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A29%20GMT%22%2C%22timeSpent%22%3A%223018%22%2C%22totalTimeSpent%22%3A%2216125%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A29%20GMT%22%2C%22timeSpent%22%3A%223018%22%2C%22totalTimeSpent%22%3A%2216125%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:32 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A35%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A32%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2219138%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A35%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A32%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2219138%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:35 GMT
GET

https://c.6sc.co/

msedge.exe

Remote address:

95.100.153.131:443

Request

GET / HTTP/2.0
host: c.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 7
date: Fri, 24 Jan 2025 14:53:38 GMT
access-control-allow-origin: https://sourceforge.net
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:38 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:38 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A39%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%22%2C%22timeSpent%22%3A%221118%22%2C%22totalTimeSpent%22%3A%221118%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A39%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%22%2C%22timeSpent%22%3A%221118%22%2C%22totalTimeSpent%22%3A%221118%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:39 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A40%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A39%20GMT%22%2C%22timeSpent%22%3A%221026%22%2C%22totalTimeSpent%22%3A%222144%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A40%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A39%20GMT%22%2C%22timeSpent%22%3A%221026%22%2C%22totalTimeSpent%22%3A%222144%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:40 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:40 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A41%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A40%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%223157%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A41%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A40%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%223157%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "60bb2e15-2b"
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:41 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A42%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A41%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%224167%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A42%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A41%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%224167%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:42 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:42 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A43%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A42%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%225180%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A43%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A42%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%225180%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "60bb2e15-2b"
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:43 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:43 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A44%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A43%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%226187%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A44%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A43%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%226187%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:44 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:44 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A45%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A44%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%227190%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A45%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A44%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%227190%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:45 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:45 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A46%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A45%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%228193%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A46%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A45%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%228193%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:46 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:46 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A47%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A46%20GMT%22%2C%22timeSpent%22%3A%221016%22%2C%22totalTimeSpent%22%3A%229209%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A47%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A46%20GMT%22%2C%22timeSpent%22%3A%221016%22%2C%22totalTimeSpent%22%3A%229209%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:47 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:47 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A48%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A47%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%2210215%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A48%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A47%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%2210215%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:48 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:48 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A51%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A48%20GMT%22%2C%22timeSpent%22%3A%223009%22%2C%22totalTimeSpent%22%3A%2213224%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A51%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A48%20GMT%22%2C%22timeSpent%22%3A%223009%22%2C%22totalTimeSpent%22%3A%2213224%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:51 GMT
GET

https://c.6sc.co/

msedge.exe

Remote address:

95.100.153.131:443

Request

GET / HTTP/2.0
host: c.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 7
date: Fri, 24 Jan 2025 14:53:56 GMT
access-control-allow-origin: https://sourceforge.net
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:56 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:56 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A56%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%22%2C%22timeSpent%22%3A%221045%22%2C%22totalTimeSpent%22%3A%221045%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A56%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%22%2C%22timeSpent%22%3A%221045%22%2C%22totalTimeSpent%22%3A%221045%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:57 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:57 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A57%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A56%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%222052%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A57%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A56%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%222052%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "60bb2e15-2b"
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:58 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A58%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A57%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%223065%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A58%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A57%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%223065%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:53:59 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:59 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A59%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A58%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%224071%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A59%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A58%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%224071%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:00 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:00 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A00%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A59%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%225077%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A00%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A59%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%225077%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:01 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:01 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A01%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A00%20GMT%22%2C%22timeSpent%22%3A%221005%22%2C%22totalTimeSpent%22%3A%226082%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A01%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A00%20GMT%22%2C%22timeSpent%22%3A%221005%22%2C%22totalTimeSpent%22%3A%226082%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:02 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:02 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A02%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A01%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%227085%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A02%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A01%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%227085%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:03 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A03%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A02%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%228095%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A03%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A02%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%228095%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:04 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:04 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A04%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A03%20GMT%22%2C%22timeSpent%22%3A%221015%22%2C%22totalTimeSpent%22%3A%229110%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A04%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A03%20GMT%22%2C%22timeSpent%22%3A%221015%22%2C%22totalTimeSpent%22%3A%229110%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:05 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:05 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A05%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A04%20GMT%22%2C%22timeSpent%22%3A%221005%22%2C%22totalTimeSpent%22%3A%2210115%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A05%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A04%20GMT%22%2C%22timeSpent%22%3A%221005%22%2C%22totalTimeSpent%22%3A%2210115%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:06 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:06 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A08%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A05%20GMT%22%2C%22timeSpent%22%3A%223004%22%2C%22totalTimeSpent%22%3A%2213119%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A08%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A05%20GMT%22%2C%22timeSpent%22%3A%223004%22%2C%22totalTimeSpent%22%3A%2213119%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:09 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A11%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A08%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2216132%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A11%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A08%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2216132%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:12 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A14%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A11%20GMT%22%2C%22timeSpent%22%3A%223052%22%2C%22totalTimeSpent%22%3A%2219184%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A14%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A11%20GMT%22%2C%22timeSpent%22%3A%223052%22%2C%22totalTimeSpent%22%3A%2219184%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "60bb2e15-2b"
last-modified: Sat, 05 Jun 2021 07:56:05 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:15 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A17%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A14%20GMT%22%2C%22timeSpent%22%3A%223004%22%2C%22totalTimeSpent%22%3A%2222188%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A17%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A14%20GMT%22%2C%22timeSpent%22%3A%223004%22%2C%22totalTimeSpent%22%3A%2222188%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:18 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A17%20GMT%22%2C%22timeSpent%22%3A%223085%22%2C%22totalTimeSpent%22%3A%2225273%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A17%20GMT%22%2C%22timeSpent%22%3A%223085%22%2C%22totalTimeSpent%22%3A%2225273%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "615ccf10-2b"
last-modified: Tue, 05 Oct 2021 22:17:52 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:21 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A23%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A20%20GMT%22%2C%22timeSpent%22%3A%223016%22%2C%22totalTimeSpent%22%3A%2228289%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A23%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A20%20GMT%22%2C%22timeSpent%22%3A%223016%22%2C%22totalTimeSpent%22%3A%2228289%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:24 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A26%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A23%20GMT%22%2C%22timeSpent%22%3A%223010%22%2C%22totalTimeSpent%22%3A%2231299%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A26%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A23%20GMT%22%2C%22timeSpent%22%3A%223010%22%2C%22totalTimeSpent%22%3A%2231299%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:27 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:27 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A26%20GMT%22%2C%22timeSpent%22%3A%223016%22%2C%22totalTimeSpent%22%3A%2234315%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A26%20GMT%22%2C%22timeSpent%22%3A%223016%22%2C%22totalTimeSpent%22%3A%2234315%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:30 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:30 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A29%20GMT%22%2C%22timeSpent%22%3A%223017%22%2C%22totalTimeSpent%22%3A%2237332%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A29%20GMT%22%2C%22timeSpent%22%3A%223017%22%2C%22totalTimeSpent%22%3A%2237332%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:33 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:33 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A35%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A32%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2240345%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A35%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A32%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2240345%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:36 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A44%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A35%20GMT%22%2C%22timeSpent%22%3A%229011%22%2C%22totalTimeSpent%22%3A%2249356%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A44%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A35%20GMT%22%2C%22timeSpent%22%3A%229011%22%2C%22totalTimeSpent%22%3A%2249356%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:45 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:45 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A53%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A44%20GMT%22%2C%22timeSpent%22%3A%229015%22%2C%22totalTimeSpent%22%3A%2258371%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A53%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A44%20GMT%22%2C%22timeSpent%22%3A%229015%22%2C%22totalTimeSpent%22%3A%2258371%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "5e502810-2b"
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:54:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:54:54 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A02%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A53%20GMT%22%2C%22timeSpent%22%3A%229003%22%2C%22totalTimeSpent%22%3A%2267374%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A02%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A53%20GMT%22%2C%22timeSpent%22%3A%229003%22%2C%22totalTimeSpent%22%3A%2267374%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f02dad-2b"
last-modified: Sat, 18 Feb 2023 01:45:17 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:55:03 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:55:03 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A02%20GMT%22%2C%22timeSpent%22%3A%229002%22%2C%22totalTimeSpent%22%3A%2276376%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A02%20GMT%22%2C%22timeSpent%22%3A%229002%22%2C%22totalTimeSpent%22%3A%2276376%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f03226-2b"
last-modified: Sat, 18 Feb 2023 02:04:22 GMT
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:55:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:55:12 GMT
GET

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22timeSpent%22%3A%229012%22%2C%22totalTimeSpent%22%3A%2285388%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

msedge.exe

Remote address:

95.100.153.131:443

Request

GET /v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22timeSpent%22%3A%229012%22%2C%22totalTimeSpent%22%3A%2285388%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31 HTTP/2.0
host: b.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

accept-ranges: bytes
content-type: image/gif
etag: "63f020a0-2b"
last-modified: Sat, 18 Feb 2023 00:49:36 GMT
server: nginx
x-content-type-options: nosniff
content-length: 43
expires: Fri, 24 Jan 2025 14:55:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:55:21 GMT
GET

https://securepubads.g.doubleclick.net/tag/js/gpt.js

msedge.exe

Remote address:

142.250.187.194:443

Request

GET /tag/js/gpt.js HTTP/2.0
host: securepubads.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://as.sourceforge.net/script/sourceforge.net.js?h=1543827892

msedge.exe

Remote address:

104.18.40.119:443

Request

GET /script/sourceforge.net.js?h=1543827892 HTTP/2.0
host: as.sourceforge.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: application/javascript
cf-ray: 9070da179c3c9529-LHR
cf-cache-status: HIT
access-control-allow-origin: https://sourceforge.net
age: 230
cache-control: public, max-age=300, stale-while-revalidate=3600
content-encoding: gzip
last-modified: Fri, 24 Jan 2025 14:49:24 GMT
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, OPTIONS, DELETE
access-control-expose-headers: X-Length
cross-origin-resource-policy: cross-origin
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TyO75mzEL3yIuuXes6%2FqNDqVcp1Ato%2FJFMhqXzdxmfKkTHn2zpCn5c4M6iqHwNrTTXKqPjAD0Eeb5ANv8cZ0HyACHPFAjLqH3Hdi2etvj1uuIOji6ftL2AxpWJV3%2Bv9Q"}],"group":"cf-nel","max_age":604800}
x-length: 454346
server: cloudflare
DNS

bt.dns-finder.com

msedge.exe

Remote address:

8.8.8.8:53

Request

bt.dns-finder.com

IN A

Response

bt.dns-finder.com

IN A

104.21.48.1

bt.dns-finder.com

IN A

104.21.80.1

bt.dns-finder.com

IN A

104.21.64.1

bt.dns-finder.com

IN A

104.21.32.1

bt.dns-finder.com

IN A

104.21.112.1

bt.dns-finder.com

IN A

104.21.16.1

bt.dns-finder.com

IN A

104.21.96.1
DNS

api.btloader.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.btloader.com

IN A

Response

api.btloader.com

IN A

130.211.23.194
DNS

ad-delivery.net

msedge.exe

Remote address:

8.8.8.8:53

Request

ad-delivery.net

IN A

Response

ad-delivery.net

IN A

104.26.3.70

ad-delivery.net

IN A

172.67.69.19

ad-delivery.net

IN A

104.26.2.70
DNS

pubads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

pubads.g.doubleclick.net

IN A

Response

pubads.g.doubleclick.net

IN A

172.217.169.34
GET

https://bt.dns-finder.com/px.gif

msedge.exe

Remote address:

104.21.48.1:443

Request

GET /px.gif HTTP/2.0
host: bt.dns-finder.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgThnmWDEUD-5yglh1Hs4l3n9j9HDClu6A1etkTfzMcifBOn_pthf2STH8S3GWkjd8ja
x-goog-generation: 1721406977485562
x-goog-metageneration: 4
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
expires: Fri, 24 Jan 2025 15:11:45 GMT
cache-control: public, max-age=14400
age: 2489
last-modified: Fri, 19 Jul 2024 16:36:17 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fUiELBLgAeZ%2F32bRX3eoolMrInlnglkhoRzOyOP8HvDEdzaGHoH1vqzEGZU2INJ3232z2CLleBclLuSwXDKAYQgJpjDP%2FNzv6olhWG48w%2FdCAvGdXlvoq4Xn45HrC%2BiAZyllUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da1808ba657b-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=46851&min_rtt=46734&rtt_var=17760&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2843&recv_bytes=1031&delivery_rate=56929&cwnd=247&unsent_bytes=0&cid=36fe6310e2df5377&ts=69&x=0"
DNS

c.6sc.co

msedge.exe

Remote address:

8.8.8.8:53

Request

c.6sc.co

IN A

Response

c.6sc.co

IN CNAME

c2.6sc.co.edgekey.net

c2.6sc.co.edgekey.net

IN CNAME

e212585.b.akamaiedge.net

e212585.b.akamaiedge.net

IN A

95.100.153.131

e212585.b.akamaiedge.net

IN A

95.100.153.162
DNS

b.6sc.co

msedge.exe

Remote address:

8.8.8.8:53

Request

b.6sc.co

IN A

Response

b.6sc.co

IN CNAME

b2.6sc.co.edgekey.net

b2.6sc.co.edgekey.net

IN CNAME

e212585.b.akamaiedge.net

e212585.b.akamaiedge.net

IN A

95.100.153.131

e212585.b.akamaiedge.net

IN A

95.100.153.162
DNS

ipv6.6sc.co

msedge.exe

Remote address:

8.8.8.8:53

Request

ipv6.6sc.co

IN A

Response

ipv6.6sc.co

IN CNAME

ipv6-2.6sc.co.edgekey.net

ipv6-2.6sc.co.edgekey.net

IN CNAME

e212585.dscb.akamaiedge.net

e212585.dscb.akamaiedge.net

IN A

95.100.153.162

e212585.dscb.akamaiedge.net

IN A

95.100.153.131
POST

https://api.btloader.com/log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true

msedge.exe

Remote address:

130.211.23.194:443

Request

POST /log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true HTTP/2.0
host: api.btloader.com
content-length: 140
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
POST

https://api.btloader.com/log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true

msedge.exe

Remote address:

130.211.23.194:443

Request

POST /log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true HTTP/2.0
host: api.btloader.com
content-length: 162
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ad-delivery.net/px.gif?ch=2

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=2 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:14 GMT
cache-control: public, max-age=86400
age: 126222
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wVtnXAG%2BzF8WJ%2Fct7BgYaMfn2jM26IysCGwxDHVncIMaA3e9tCFQ7o%2FkAZd3M2UblDTokLQFTLHPY0Rs3zku4gUSc0XCGHKEUL8D%2Fvqgff%2FE%2FL6XoLqpgDe%2BZozCK9mbww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da185fb1ee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=47008&min_rtt=46845&rtt_var=17683&sent=6&recv=9&lost=0&retrans=0&sent_bytes=3191&recv_bytes=2125&delivery_rate=57935&cwnd=251&unsent_bytes=0&cid=3ab7ed7558784e37&ts=95&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.8836728386224286

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.8836728386224286 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:14 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:14 GMT
cache-control: public, max-age=86400
age: 126222
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DZGG78PdVFMcuoaCRUy%2BAuHpORp%2FLnuE%2FTVtN0foVZCCKIiqrM2Ilsu%2BcWdS5BobS2LlNcmEaqNTRdKSQ0BvxlmF8GHo8IUd5ht7VR%2B5EiYyuG2QKvFNsPx0gmj3Xntwxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da185fadee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=47008&min_rtt=46845&rtt_var=17683&sent=9&recv=9&lost=0&retrans=0&sent_bytes=4323&recv_bytes=2125&delivery_rate=57935&cwnd=251&unsent_bytes=0&cid=3ab7ed7558784e37&ts=98&x=0"
GET

https://ad-delivery.net/px.gif?ch=1

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:15 GMT
cache-control: public, max-age=86400
age: 126223
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RbO7Be4YosQ4V9ZyBTCtJJgE32lumak7Dgx%2Ft8v6CAhvfmlOxMXbQDRHbWrRcy67%2BGt8K3PV%2BhIwJFuvEqRc%2F60khq%2BZf9ONoNDGJ%2FQDO4nsgWIyWd5UcMz0ciWHsBQNSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da19cb8aee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=48427&min_rtt=46845&rtt_var=7918&sent=13&recv=14&lost=0&retrans=0&sent_bytes=4868&recv_bytes=2218&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=321&x=0"
GET

https://ad-delivery.net/px.gif?ch=2

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=2 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
if-none-match: "ad4b0f606e0f8465bc4c4c170b37e1a3"
if-modified-since: Wed, 05 May 2021 19:25:32 GMT
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:16 GMT
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:16 GMT
cache-control: public, max-age=86400
age: 126224
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0kG5%2FJgOaKoWgBiQSmBqO3SUoCiatTde8Wpd2UhUef28z0yxFQeRs6vTyKzDYM1MnG%2FbcqwEHJQdPkB39%2BV56tNzcokusAKMiHC%2FM2un8feTfZBK8vqEeo9Yxg7H5K27og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da215f1eee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=54571&min_rtt=46845&rtt_var=17418&sent=16&recv=17&lost=0&retrans=0&sent_bytes=5468&recv_bytes=2331&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=1530&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.30326168343902693

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.30326168343902693 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:16 GMT
cache-control: public, max-age=86400
age: 126224
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gbyzq2C66xlp1nvc2l3N50NM%2Bnf82U7B%2F28Y1k1wNnOe81Fv0gUd5D%2FHQd6Q2O8c9EKJR7A10ThNIaxndDIBW5qQeB%2F2rjVxWEsLWAf9e%2FHuyhQrR4gNGcPwoTLbbD9kMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da22096dee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=60343&min_rtt=46845&rtt_var=24608&sent=17&recv=19&lost=0&retrans=0&sent_bytes=5957&recv_bytes=2409&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=1650&x=0"
GET

https://ad-delivery.net/px.gif?ch=1

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
if-none-match: "ad4b0f606e0f8465bc4c4c170b37e1a3"
if-modified-since: Wed, 05 May 2021 19:25:32 GMT
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:16 GMT
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:16 GMT
cache-control: public, max-age=86400
age: 126224
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQ%2FLOFBkDrybn3bno3paAKwkTOP2ghOPrzyfS8A0pQ6TRM5tU%2F3gfZ9Bd04eEesxM84kHKoevKMtJDIzQchg8bUSK3%2F8F6fnNgh5a6nAfqIB7HOTpJ%2Bd4zFV%2FJEMk2y4tQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da23ee94ee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=58720&min_rtt=46845&rtt_var=21703&sent=19&recv=21&lost=0&retrans=0&sent_bytes=7012&recv_bytes=2473&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=1945&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.7128581549909863

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.7128581549909863 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:38 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:38 GMT
cache-control: public, max-age=86400
age: 126224
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xJBH6xy0eMqkOMQJvYoKtNqe8VjxvjSDxfCKuz8kMTgVT7bZ3lJwKW007j%2BB7qdlGCPAj6koYWwtPsme22ohGJycwcCyrv5uRzC1%2Bs8jAUXCdQM5nV6UwTtGZjAcD5GQOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070daabafefee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=63990&min_rtt=46845&rtt_var=26819&sent=22&recv=24&lost=0&retrans=0&sent_bytes=7491&recv_bytes=2589&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=23661&x=0"
GET

https://ad-delivery.net/px.gif?ch=1

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
if-none-match: "ad4b0f606e0f8465bc4c4c170b37e1a3"
if-modified-since: Wed, 05 May 2021 19:25:32 GMT
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:38 GMT
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:38 GMT
cache-control: public, max-age=86400
age: 126224
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ly%2FKr1vwtadnkNDwbrkdAozxKSsnIW7fMYENGITGg%2BBmLncI8gIvAdAYlYkmDsvZOeZx823rRNJuGrTIHdqXq8%2BIVfSbhpus18ECULTufnwA43Q5prNvePjb%2BnR1yvb9kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070daae0db6ee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=60640&min_rtt=46820&rtt_var=21082&sent=25&recv=27&lost=0&retrans=0&sent_bytes=8083&recv_bytes=2653&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=24040&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.46288306994573736

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.46288306994573736 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:55 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:55 GMT
cache-control: public, max-age=86400
age: 126218
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5AW4YQzIa%2BLrBfYKBA0bPTlDRmttj%2Fyg5lXTlGwbdsDl2AwOwKIcyZnevinuRnNqDELVjVti49ppcjKpGu4sY7gfqTN29Ebf87fRicUokeqUkQHNQGPji5qQciJ7Lic%2BGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070db13fb81ee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=65781&min_rtt=46820&rtt_var=26095&sent=28&recv=30&lost=0&retrans=0&sent_bytes=8562&recv_bytes=2770&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=40357&x=0"
GET

https://ad-delivery.net/px.gif?ch=1

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
if-none-match: "ad4b0f606e0f8465bc4c4c170b37e1a3"
if-modified-since: Wed, 05 May 2021 19:25:32 GMT
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:56 GMT
x-guploader-uploadid: AFIdbgTJVZ_-vqOIAxXv41eVt8_yVO4wFPpykJSMwSxuLenpuzkvC2r9nVmgFzuXWhEwqwUq
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:56 GMT
cache-control: public, max-age=86400
age: 126219
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0mMI2SKWegnHkz5GX8DnME%2BS%2Ffg6ZiLuO1NdFiHiVuHqdP9COYmCgwT%2BZCH1uLvC3xDaPR5eFltanSjTBHnUE2A3iMGFSZ37T4GOLy4AG4Vrx4Rpj%2BnDdmS2XoR7ssuRwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070db1a29f4ee9a-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=63034&min_rtt=46820&rtt_var=19665&sent=31&recv=33&lost=0&retrans=0&sent_bytes=9158&recv_bytes=2834&delivery_rate=133354&cwnd=256&unsent_bytes=0&cid=3ab7ed7558784e37&ts=41339&x=0"
GET

https://pubads.g.doubleclick.net/activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901705213;ord=419132209811763?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2

msedge.exe

Remote address:

172.217.169.34:443

Request

GET /activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901705213;ord=419132209811763?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2 HTTP/2.0
host: pubads.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://pubads.g.doubleclick.net/activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901712041;ord=6678587416943325?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2

msedge.exe

Remote address:

172.217.169.34:443

Request

GET /activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901712041;ord=6678587416943325?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2 HTTP/2.0
host: pubads.g.doubleclick.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ipv6.6sc.co/

msedge.exe

Remote address:

95.100.153.162:443

Request

GET / HTTP/2.0
host: ipv6.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 4
expires: Fri, 24 Jan 2025 14:53:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:14 GMT
server-timing: cdn-cache; desc=HIT
server-timing: edge; dur=1
6si-ipv6: null
access-control-allow-origin: https://sourceforge.net
vary: Origin
server-timing: ak_p; desc="1737730394912_1600428194_65745468_24_875_47_68_219";dur=1
GET

https://ipv6.6sc.co/

msedge.exe

Remote address:

95.100.153.162:443

Request

GET / HTTP/2.0
host: ipv6.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 4
expires: Fri, 24 Jan 2025 14:53:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:16 GMT
server-timing: cdn-cache; desc=HIT
server-timing: edge; dur=1
6si-ipv6: null
access-control-allow-origin: https://sourceforge.net
vary: Origin
server-timing: ak_p; desc="1737730396593_1600428194_65746831_21_897_47_0_219";dur=1
GET

https://ipv6.6sc.co/

msedge.exe

Remote address:

95.100.153.162:443

Request

GET / HTTP/2.0
host: ipv6.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 4
expires: Fri, 24 Jan 2025 14:53:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:38 GMT
server-timing: cdn-cache; desc=HIT
server-timing: edge; dur=1
6si-ipv6: null
access-control-allow-origin: https://sourceforge.net
vary: Origin
server-timing: ak_p; desc="1737730418872_1600428194_65764977_558_788_47_0_219";dur=1
GET

https://ipv6.6sc.co/

msedge.exe

Remote address:

95.100.153.162:443

Request

GET / HTTP/2.0
host: ipv6.6sc.co
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
content-length: 4
expires: Fri, 24 Jan 2025 14:53:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 24 Jan 2025 14:53:56 GMT
server-timing: cdn-cache; desc=HIT
server-timing: edge; dur=1
6si-ipv6: null
access-control-allow-origin: https://sourceforge.net
vary: Origin
server-timing: ak_p; desc="1737730436023_1600428194_65778132_21_909_52_0_219";dur=1
DNS

idsync.rlcdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

idsync.rlcdn.com

IN A

Response

idsync.rlcdn.com

IN A

35.244.174.68
DNS

dpm.demdex.net

msedge.exe

Remote address:

8.8.8.8:53

Request

dpm.demdex.net

IN A

Response

dpm.demdex.net

IN CNAME

gslb-2.demdex.net

gslb-2.demdex.net

IN CNAME

edge-irl1.demdex.net

edge-irl1.demdex.net

IN CNAME

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

108.128.211.102

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.77.85.98

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.76.112.69

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.49.50.223

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.247.156.201

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.74.147.80

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

54.195.214.91

dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com

IN A

52.18.196.7
GET

https://dpm.demdex.net/ibs:dpid=22052&dpuuid=3650068291290398872&redir=

msedge.exe

Remote address:

108.128.211.102:443

Request

GET /ibs:dpid=22052&dpuuid=3650068291290398872&redir= HTTP/2.0
host: dpm.demdex.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Fri, 24 Jan 2025 14:53:15 GMT
content-length: 0
location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22052&dpuuid=3650068291290398872&redir=
x-tid: omp0iLRITE8=
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 UTC
p3p: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
dcs: dcs-prod-irl1-1-v071-07fe54342.edge-irl1.demdex.com 0 ms
set-cookie: demdex=03747670549634944982807981551879415709; Max-Age=15552000; Expires=Wed, 23 Jul 2025 14:53:15 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
GET

https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22052&dpuuid=3650068291290398872&redir=

msedge.exe

Remote address:

108.128.211.102:443

Request

GET /demconf.jpg?et:ibs%7cdata:dpid=22052&dpuuid=3650068291290398872&redir= HTTP/2.0
host: dpm.demdex.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/gif
content-length: 59
x-tid: IHwK4FTUT/k=
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 UTC
p3p: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
x-content-type-options: nosniff
dcs: dcs-prod-irl1-1-v071-09b85c328.edge-irl1.demdex.com 0 ms
content-encoding: gzip
GET

https://idsync.rlcdn.com/395886.gif?partner_uid=3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

msedge.exe

Remote address:

35.244.174.68:443

Request

GET /395886.gif?partner_uid=3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA HTTP/2.0
host: idsync.rlcdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

match.adsrvr.org

msedge.exe

Remote address:

8.8.8.8:53

Request

match.adsrvr.org

IN A

Response

match.adsrvr.org

IN A

15.197.193.217

match.adsrvr.org

IN A

35.71.131.137

match.adsrvr.org

IN A

3.33.220.150

match.adsrvr.org

IN A

52.223.40.198
DNS

ib.adnxs.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ib.adnxs.com

IN A

Response

ib.adnxs.com

IN CNAME

xandr-g-geo.trafficmanager.net

xandr-g-geo.trafficmanager.net

IN CNAME

ib.anycast.adnxs.com

ib.anycast.adnxs.com

IN A

185.89.210.90

ib.anycast.adnxs.com

IN A

185.89.210.153

ib.anycast.adnxs.com

IN A

185.89.210.212

ib.anycast.adnxs.com

IN A

185.89.210.122

ib.anycast.adnxs.com

IN A

185.89.210.20

ib.anycast.adnxs.com

IN A

185.89.210.244

ib.anycast.adnxs.com

IN A

185.89.210.82

ib.anycast.adnxs.com

IN A

185.89.210.180

ib.anycast.adnxs.com

IN A

185.89.210.46

ib.anycast.adnxs.com

IN A

185.89.211.84

ib.anycast.adnxs.com

IN A

185.89.210.141

ib.anycast.adnxs.com

IN A

185.89.211.116
DNS

ps.eyeota.net

msedge.exe

Remote address:

8.8.8.8:53

Request

ps.eyeota.net

IN A

Response

ps.eyeota.net

IN A

18.184.216.10
GET

https://match.adsrvr.org/track/cmf/generic?ttd_pid=d0tro1j&ttd_tpi=1&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

msedge.exe

Remote address:

15.197.193.217:443

Request

GET /track/cmf/generic?ttd_pid=d0tro1j&ttd_tpi=1&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA HTTP/2.0
host: match.adsrvr.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: image/gif
content-length: 70
server: Kestrel
GET

https://ib.adnxs.com/getuid?https://ml314.com/csync.ashx%3Ffp=$UID%26person_id=3650068291290398872%26eid=2

msedge.exe

Remote address:

185.89.210.90:443

Request

GET /getuid?https://ml314.com/csync.ashx%3Ffp=$UID%26person_id=3650068291290398872%26eid=2 HTTP/2.0
host: ib.adnxs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 307

server: nginx/1.23.4
date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: text/html; charset=utf-8
content-length: 0
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fml314.com%2Fcsync.ashx%253Ffp%3D%24UID%2526person_id%3D3650068291290398872%2526eid%3D2
an-x-request-uuid: 722fbd92-c215-4c85-9dca-4bf7ba52a321
set-cookie: XANDR_PANID=vV1XRg9gerc70ILt1q2TII69Uo32fr3fMC6YEtxinDjVOXswLyKXIS1gIHHuosYUg-eM298fdhgXs5WjLnvP6810fcYQQUsTJPjnfXoL428.; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 24-Apr-2025 14:53:15 GMT; Domain=.adnxs.com; Secure; Partitioned
set-cookie: receive-cookie-deprecation=1; SameSite=None; Path=/; Max-Age=314496000; Expires=Fri, 12-Jan-2035 14:53:15 GMT; Domain=.adnxs.com; Secure; HttpOnly; Partitioned
set-cookie: uuid2=374895730019003791; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 24-Apr-2025 14:53:15 GMT; Domain=.adnxs.com; Secure; HttpOnly
x-proxy-origin: 181.215.176.83; 181.215.176.83; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
GET

https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fml314.com%2Fcsync.ashx%253Ffp%3D%24UID%2526person_id%3D3650068291290398872%2526eid%3D2

msedge.exe

Remote address:

185.89.210.90:443

Request

GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fml314.com%2Fcsync.ashx%253Ffp%3D%24UID%2526person_id%3D3650068291290398872%2526eid%3D2 HTTP/2.0
host: ib.adnxs.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

server: nginx/1.23.4
date: Fri, 24 Jan 2025 14:53:15 GMT
content-type: text/html; charset=utf-8
content-length: 0
cache-control: no-store, no-cache, private
pragma: no-cache
expires: Sat, 15 Nov 2008 16:00:00 GMT
p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
x-xss-protection: 0
access-control-allow-credentials: true
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
location: https://ml314.com/csync.ashx?fp=0&person_id=3650068291290398872&eid=2
an-x-request-uuid: 97477a2c-67de-4c7d-b062-484660acc6bd
set-cookie: receive-cookie-deprecation=1; SameSite=None; Path=/; Max-Age=314496000; Expires=Fri, 12-Jan-2035 14:53:15 GMT; Domain=.adnxs.com; Secure; HttpOnly; Partitioned
x-proxy-origin: 181.215.176.83; 181.215.176.83; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
GET

https://ps.eyeota.net/pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

msedge.exe

Remote address:

18.184.216.10:443

Request

GET /pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA HTTP/1.1
Host: ps.eyeota.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Set-Cookie: SERVERID=21600~DM; Domain=eyeota.net; Path=/; Expires=Fri, 24 Jan 2025 15:03:15 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Fri, 24 Jan 2025 14:53:15 GMT
GET

https://ps.eyeota.net/pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

msedge.exe

Remote address:

18.184.216.10:443

Request

GET /pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA HTTP/1.1
Host: ps.eyeota.net
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: SERVERID=21600~DM

Response

HTTP/1.1 200 OK

Set-Cookie: SERVERID=21600~DM; Domain=eyeota.net; Path=/; Expires=Fri, 24 Jan 2025 15:03:16 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Fri, 24 Jan 2025 14:53:16 GMT
DNS

ep1.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep1.adtrafficquality.google

IN A

Response

ep1.adtrafficquality.google

IN A

216.58.212.194
DNS

119.40.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

119.40.18.104.in-addr.arpa

IN PTR

Response
DNS

60.41.67.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

60.41.67.172.in-addr.arpa

IN PTR

Response
DNS

184.195.100.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

184.195.100.95.in-addr.arpa

IN PTR

Response

184.195.100.95.in-addr.arpa

IN PTR

a95-100-195-184deploystaticakamaitechnologiescom
DNS

79.77.117.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

79.77.117.34.in-addr.arpa

IN PTR

Response

79.77.117.34.in-addr.arpa

IN PTR

797711734bcgoogleusercontentcom
DNS

131.153.100.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

131.153.100.95.in-addr.arpa

IN PTR

Response

131.153.100.95.in-addr.arpa

IN PTR

a95-100-153-131deploystaticakamaitechnologiescom
DNS

194.187.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.187.250.142.in-addr.arpa

IN PTR

Response

194.187.250.142.in-addr.arpa

IN PTR

lhr25s33-in-f21e100net
DNS

226.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

226.16.217.172.in-addr.arpa

IN PTR

Response

226.16.217.172.in-addr.arpa

IN PTR

mad08s04-in-f21e100net

226.16.217.172.in-addr.arpa

IN PTR

lhr48s28-in-f2�H
DNS

9.38.105.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

9.38.105.216.in-addr.arpa

IN PTR

Response
DNS

1.48.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

1.48.21.104.in-addr.arpa

IN PTR

Response
DNS

loadus.exelator.com

Remote address:

8.8.8.8:53

Request

loadus.exelator.com

IN A

Response

loadus.exelator.com

IN CNAME

loadus.tm.ssl.exelator.com

loadus.tm.ssl.exelator.com

IN CNAME

eu-west.load.exelator.com

eu-west.load.exelator.com

IN CNAME

load-euw1.exelator.com

load-euw1.exelator.com

IN A

34.254.143.3
DNS

230.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

230.179.250.142.in-addr.arpa

IN PTR

Response

230.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f61e100net
DNS

194.23.211.130.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.23.211.130.in-addr.arpa

IN PTR

Response

194.23.211.130.in-addr.arpa

IN PTR

19423211130bcgoogleusercontentcom
DNS

70.3.26.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

70.3.26.104.in-addr.arpa

IN PTR

Response
DNS

34.169.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

34.169.217.172.in-addr.arpa

IN PTR

Response

34.169.217.172.in-addr.arpa

IN PTR

lhr48s08-in-f21e100net
DNS

162.153.100.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

162.153.100.95.in-addr.arpa

IN PTR

Response

162.153.100.95.in-addr.arpa

IN PTR

a95-100-153-162deploystaticakamaitechnologiescom
DNS

68.174.244.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

68.174.244.35.in-addr.arpa

IN PTR

Response

68.174.244.35.in-addr.arpa

IN PTR

6817424435bcgoogleusercontentcom
DNS

102.211.128.108.in-addr.arpa

Remote address:

8.8.8.8:53

Request

102.211.128.108.in-addr.arpa

IN PTR

Response

102.211.128.108.in-addr.arpa

IN PTR

ec2-108-128-211-102 eu-west-1compute amazonawscom
DNS

217.193.197.15.in-addr.arpa

Remote address:

8.8.8.8:53

Request

217.193.197.15.in-addr.arpa

IN PTR

Response

217.193.197.15.in-addr.arpa

IN PTR

a12b7a488abeaa9e4awsglobalacceleratorcom
DNS

90.210.89.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

90.210.89.185.in-addr.arpa

IN PTR

Response

90.210.89.185.in-addr.arpa

IN PTR

941bm-nginx-loadbalancermgmtams3adnexusnet
DNS

10.216.184.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

10.216.184.18.in-addr.arpa

IN PTR

Response

10.216.184.18.in-addr.arpa

IN PTR

ec2-18-184-216-10eu-central-1compute amazonawscom
DNS

c2934a4de76a9d45fc7971c10d1ad4c3.safeframe.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

c2934a4de76a9d45fc7971c10d1ad4c3.safeframe.googlesyndication.com

IN A

Response

c2934a4de76a9d45fc7971c10d1ad4c3.safeframe.googlesyndication.com

IN CNAME

pagead-googlehosted.l.google.com

pagead-googlehosted.l.google.com

IN A

216.58.201.97
GET

https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env

msedge.exe

Remote address:

216.58.212.194:443

Request

GET /getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env HTTP/2.0
host: ep1.adtrafficquality.google
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env

msedge.exe

Remote address:

216.58.212.194:443

Request

GET /getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env HTTP/2.0
host: ep1.adtrafficquality.google
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

invstatic101.creativecdn.com

msedge.exe

Remote address:

8.8.8.8:53

Request

invstatic101.creativecdn.com

IN A

Response

invstatic101.creativecdn.com

IN A

34.96.70.87
DNS

cdn.jsdelivr.net

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.jsdelivr.net

IN A

Response

cdn.jsdelivr.net

IN CNAME

jsdelivr.map.fastly.net

jsdelivr.map.fastly.net

IN A

151.101.129.229

jsdelivr.map.fastly.net

IN A

151.101.65.229

jsdelivr.map.fastly.net

IN A

151.101.193.229

jsdelivr.map.fastly.net

IN A

151.101.1.229
DNS

oa.openxcdn.net

msedge.exe

Remote address:

8.8.8.8:53

Request

oa.openxcdn.net

IN A

Response

oa.openxcdn.net

IN A

34.102.146.192
DNS

cdn.prod.euid.eu

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.prod.euid.eu

IN A

Response

cdn.prod.euid.eu

IN CNAME

d2eipinci0cqex.cloudfront.net

d2eipinci0cqex.cloudfront.net

IN A

18.172.98.202
DNS

cdn.prod.uidapi.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.prod.uidapi.com

IN A

Response

cdn.prod.uidapi.com

IN CNAME

d2avimlm6gq3h9.cloudfront.net

d2avimlm6gq3h9.cloudfront.net

IN A

18.165.159.204
DNS

cdn.id5-sync.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.id5-sync.com

IN A

Response

cdn.id5-sync.com

IN A

104.22.53.86

cdn.id5-sync.com

IN A

172.67.38.106

cdn.id5-sync.com

IN A

104.22.52.86
DNS

static.criteo.net

msedge.exe

Remote address:

8.8.8.8:53

Request

static.criteo.net

IN A

Response

static.criteo.net

IN CNAME

in-ftd-172.nl3.vip.prod.criteo.net

in-ftd-172.nl3.vip.prod.criteo.net

IN A

178.250.1.39
DNS

dmp.im-apps.net

msedge.exe

Remote address:

8.8.8.8:53

Request

dmp.im-apps.net

IN A

Response

dmp.im-apps.net

IN CNAME

cf.im-apps.edgekey.net

cf.im-apps.edgekey.net

IN CNAME

e12271.dscd.akamaiedge.net

e12271.dscd.akamaiedge.net

IN A

95.100.195.184

e12271.dscd.akamaiedge.net

IN A

95.100.195.133
DNS

cdn.btmessage.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.btmessage.com

IN A

Response

cdn.btmessage.com

IN A

104.26.7.141

cdn.btmessage.com

IN A

104.26.6.141

cdn.btmessage.com

IN A

172.67.74.232
GET

https://invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js

msedge.exe

Remote address:

34.96.70.87:443

Request

GET /encrypted-signals/encrypted-tag-g.js HTTP/2.0
host: invstatic101.creativecdn.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.id5-sync.com/api/1.0/esp.js

msedge.exe

Remote address:

104.22.53.86:443

Request

GET /api/1.0/esp.js HTTP/2.0
host: cdn.id5-sync.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://static.criteo.net/js/ld/publishertag.prebid.js

msedge.exe

Remote address:

178.250.1.39:443

Request

GET /js/ld/publishertag.prebid.js HTTP/2.0
host: static.criteo.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: text/javascript
last-modified: Tue, 15 Oct 2024 09:22:28 GMT
etag: W/"670e3454-174c2"
expires: Sat, 25 Jan 2025 14:53:16 GMT
cache-control: max-age=86400
cross-origin-resource-policy: cross-origin
cache-control: public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
GET

https://static.criteo.net/images/pixel.gif?ch=1&upapi=true

msedge.exe

Remote address:

178.250.1.39:443

Request

GET /images/pixel.gif?ch=1&upapi=true HTTP/2.0
host: static.criteo.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 09 Dec 2008 16:52:36 GMT
etag: "493ea254-2b"
expires: Mon, 19 Jan 2026 14:53:16 GMT
cache-control: max-age=31104000
cache-control: public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
GET

https://cdn.btmessage.com/script/rlink.js?o=5098683085881344&bt_env=prod

msedge.exe

Remote address:

104.26.7.141:443

Request

GET /script/rlink.js?o=5098683085881344&bt_env=prod HTTP/2.0
host: cdn.btmessage.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://sourceforge.net
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:16 GMT
content-type: application/javascript
content-length: 49729
x-guploader-uploadid: AFIdbgT7oMvx42Txlh5DLMtLIi00HaQeEj8XAyspQ2IsF4e9hkPskb8IJYw6Z_FIP-xVWzEK
cache-control: public, max-age=300, must-revalidate
expires: Fri, 24 Jan 2025 14:55:42 GMT
last-modified: Thu, 23 Jan 2025 12:32:29 GMT
etag: "31a2fb03fda5128f277eb054f6e33165"
x-goog-generation: 1737635549109633
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 49729
x-goog-hash: crc32c=Ro9Wvg==
x-goog-hash: md5=MaL7A/2lEo8nfrBU9uMxZQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
cf-cache-status: HIT
age: 154
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BvL1uWVgB7IiseG2HZGEJfIbPqcg6r%2FHvZXsRJypjkDHNl2%2F8GwlUUbhOjlXJXwHpNxFYHigm5U9er%2F04uX0P3pkJiziaGwSYCIInoishqWIsLjKN8FtAxYsNfbCrFo16bCr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da22beaff216-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=57689&min_rtt=47144&rtt_var=26980&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2838&recv_bytes=1113&delivery_rate=57568&cwnd=252&unsent_bytes=0&cid=a8b2f3cb1f030a1e&ts=1053&x=0"
GET

https://api.btmessage.com/websiteconfig?bt_env=prod&o=5098683085881344&w=sourceforge.net&l=EN

msedge.exe

Remote address:

104.26.7.141:443

Request

GET /websiteconfig?bt_env=prod&o=5098683085881344&w=sourceforge.net&l=EN HTTP/2.0
host: api.btmessage.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:17 GMT
content-type: application/json
content-length: 461
access-control-allow-origin: *
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "47600bb9eea4facbfb665a981eb80362"
last-modified: Fri, 24 Jan 2025 14:50:26 GMT
vary: Origin
vary: accept-encoding
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9hLiTPeXTQdSfhsqt7EK4nkYdvj7l%2B5A41BtCE1HMdRA0EKKdj76aQb2lEerfe4FfKLrsiRcNcvag4HvL3nw%2Fzd1DSkGRFVPxnL9X5zZP6Pxp2bkdUDwXQRSMaxR09fx8UhO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9070da24eb75f216-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=48607&min_rtt=47144&rtt_var=1207&sent=50&recv=32&lost=0&retrans=0&sent_bytes=54516&recv_bytes=1235&delivery_rate=953299&cwnd=256&unsent_bytes=0&cid=a8b2f3cb1f030a1e&ts=1492&x=0"
GET

https://cdn.btmessage.com/webfonts43j533.js

msedge.exe

Remote address:

104.26.7.141:443

Request

GET /webfonts43j533.js HTTP/2.0
host: cdn.btmessage.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:17 GMT
content-type: text/javascript
content-length: 9
x-goog-generation: 1722960019169879
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9
x-goog-hash: crc32c=xM8wXg==
x-goog-hash: md5=ZFYTTmNc32kMQ/0FYsbamg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
x-guploader-uploadid: AFiumC5NOagKEjsFD4tWCjNRzfrGvE-pS7s2GBAkt1l0J4XRsvmy_xE76qDw0XafVdUz1cRM
expires: Wed, 22 Jan 2025 07:35:32 GMT
cache-control: public, max-age=3600
age: 200794
last-modified: Tue, 06 Aug 2024 16:00:19 GMT
etag: "6456134e635cdf690c43fd0562c6da9a"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ruRS95%2BJZCc0IwACfrSnI%2FAL3D1gN0opeovpr9XkYXvcnb5v%2Bo0S0A%2Fljnoe791bNeObPsR9qD78fZRD79VaMEP1pUbmhIe9huHU0s6hQcE4tWmQDicKKODNqSIhAK7ZALoL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da266e58f216-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=48410&min_rtt=46889&rtt_var=1218&sent=53&recv=34&lost=0&retrans=0&sent_bytes=55653&recv_bytes=1302&delivery_rate=953299&cwnd=256&unsent_bytes=0&cid=a8b2f3cb1f030a1e&ts=1643&x=0"
GET

https://cdn.btmessage.com/webfonts43j533.js

msedge.exe

Remote address:

104.26.7.141:443

Request

GET /webfonts43j533.js HTTP/2.0
host: cdn.btmessage.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "6456134e635cdf690c43fd0562c6da9a"
if-modified-since: Tue, 06 Aug 2024 16:00:19 GMT

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:39 GMT
x-goog-generation: 1722960019169879
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9
x-goog-hash: crc32c=xM8wXg==
x-goog-hash: md5=ZFYTTmNc32kMQ/0FYsbamg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
x-guploader-uploadid: AFiumC5NOagKEjsFD4tWCjNRzfrGvE-pS7s2GBAkt1l0J4XRsvmy_xE76qDw0XafVdUz1cRM
expires: Wed, 22 Jan 2025 07:35:32 GMT
cache-control: public, max-age=3600
age: 200816
last-modified: Tue, 06 Aug 2024 16:00:19 GMT
etag: "6456134e635cdf690c43fd0562c6da9a"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MLXKxoObn4QPOUbG%2BA04EwQh6y6MxnG1NyPzKFYuZFHBjxUZWPgVzkGeEV8fhdKbHB3kvxQfScSNVHrByzBWpHW8Q4j%2BKni5fG%2BHtngcAbZHlbYtC9mgYpmwQZZfnGrj27vV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070dab4487ef216-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=53808&min_rtt=46889&rtt_var=12055&sent=58&recv=38&lost=0&retrans=0&sent_bytes=56423&recv_bytes=1460&delivery_rate=953299&cwnd=256&unsent_bytes=0&cid=a8b2f3cb1f030a1e&ts=24340&x=0"
GET

https://cdn.btmessage.com/webfonts43j533.js

msedge.exe

Remote address:

104.26.7.141:443

Request

GET /webfonts43j533.js HTTP/2.0
host: cdn.btmessage.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "6456134e635cdf690c43fd0562c6da9a"
if-modified-since: Tue, 06 Aug 2024 16:00:19 GMT

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:56 GMT
x-goog-generation: 1722960019169879
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9
x-goog-hash: crc32c=xM8wXg==
x-goog-hash: md5=ZFYTTmNc32kMQ/0FYsbamg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
x-guploader-uploadid: AFiumC5NOagKEjsFD4tWCjNRzfrGvE-pS7s2GBAkt1l0J4XRsvmy_xE76qDw0XafVdUz1cRM
expires: Wed, 22 Jan 2025 07:35:32 GMT
cache-control: public, max-age=3600
age: 200833
last-modified: Tue, 06 Aug 2024 16:00:19 GMT
etag: "6456134e635cdf690c43fd0562c6da9a"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o4%2BRwp1U6Y8KVapA6E%2FLNdEwws0rqvpOMQCKqGTT4I8GmdE7GFg6MxtEPr1OwN%2BxhGruPtj6ArA6VgQln8qChTT4omg6xkLlTPUxllSOyHTaZc46geYpWORC8oWGYOMJtPWT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070db1a78f0f216-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=54182&min_rtt=46889&rtt_var=9790&sent=61&recv=41&lost=0&retrans=0&sent_bytes=56976&recv_bytes=1568&delivery_rate=953299&cwnd=256&unsent_bytes=0&cid=a8b2f3cb1f030a1e&ts=40698&x=0"
DNS

googleads.g.doubleclick.net

msedge.exe

Remote address:

8.8.8.8:53

Request

googleads.g.doubleclick.net

IN A

Response

googleads.g.doubleclick.net

IN A

142.250.187.194
GET

https://analytics.slashdotmedia.com/sf.php?action_name=Download%20Process%20Hacker&idsite=39&rec=1&r=767621&h=14&m=53&s=15&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_dwnld&dimension3=undefined&gt_ms=366&pv_id=JivZ2E

msedge.exe

Remote address:

216.105.38.9:443

Request

GET /sf.php?action_name=Download%20Process%20Hacker&idsite=39&rec=1&r=767621&h=14&m=53&s=15&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_dwnld&dimension3=undefined&gt_ms=366&pv_id=JivZ2E HTTP/1.1
Host: analytics.slashdotmedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx
Date: Fri, 24 Jan 2025 14:53:16 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
tk: N
cache-control: no-store
x-frame-options: SameOrigin
x-content-type-options: nosniff
DNS

194.212.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

194.212.58.216.in-addr.arpa

IN PTR

Response

194.212.58.216.in-addr.arpa

IN PTR

lhr25s27-in-f21e100net

194.212.58.216.in-addr.arpa

IN PTR

ams16s21-in-f194�H

194.212.58.216.in-addr.arpa

IN PTR

ams16s21-in-f2�H
DNS

87.70.96.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

87.70.96.34.in-addr.arpa

IN PTR

Response

87.70.96.34.in-addr.arpa

IN PTR

87709634bcgoogleusercontentcom
DNS

229.129.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

229.129.101.151.in-addr.arpa

IN PTR

Response
DNS

192.146.102.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

192.146.102.34.in-addr.arpa

IN PTR

Response

192.146.102.34.in-addr.arpa

IN PTR

19214610234bcgoogleusercontentcom
DNS

86.53.22.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

86.53.22.104.in-addr.arpa

IN PTR

Response
DNS

141.7.26.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

141.7.26.104.in-addr.arpa

IN PTR

Response
DNS

202.98.172.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

202.98.172.18.in-addr.arpa

IN PTR

Response

202.98.172.18.in-addr.arpa

IN PTR

server-18-172-98-202man51r cloudfrontnet
DNS

39.1.250.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

39.1.250.178.in-addr.arpa

IN PTR

Response
DNS

204.159.165.18.in-addr.arpa

Remote address:

8.8.8.8:53

Request

204.159.165.18.in-addr.arpa

IN PTR

Response

204.159.165.18.in-addr.arpa

IN PTR

server-18-165-159-204man51r cloudfrontnet
DNS

97.201.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.201.58.216.in-addr.arpa

IN PTR

Response

97.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f11e100net

97.201.58.216.in-addr.arpa

IN PTR

lhr48s48-in-f1�G

97.201.58.216.in-addr.arpa

IN PTR

prg03s02-in-f97�G
DNS

f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com

IN A

Response

f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com

IN CNAME

pagead-googlehosted.l.google.com

pagead-googlehosted.l.google.com

IN A

216.58.201.97
GET

https://f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html

msedge.exe

Remote address:

216.58.201.97:443

Request

GET /safeframe/1-0-40/html/container.html HTTP/2.0
host: f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html

msedge.exe

Remote address:

216.58.201.97:443

Request

GET /safeframe/1-0-40/html/container.html HTTP/2.0
host: 731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html

msedge.exe

Remote address:

216.58.201.97:443

Request

GET /safeframe/1-0-40/html/container.html HTTP/2.0
host: 9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

trc.taboola.com

msedge.exe

Remote address:

8.8.8.8:53

Request

trc.taboola.com

IN A

Response

trc.taboola.com

IN CNAME

dualstack.tls13.taboola.map.fastly.net

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.129.44

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.193.44

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.65.44

dualstack.tls13.taboola.map.fastly.net

IN A

151.101.1.44
DNS

sync.crwdcntrl.net

msedge.exe

Remote address:

8.8.8.8:53

Request

sync.crwdcntrl.net

IN A

Response

sync.crwdcntrl.net

IN A

54.229.84.60

sync.crwdcntrl.net

IN A

52.210.86.129

sync.crwdcntrl.net

IN A

54.154.145.233

sync.crwdcntrl.net

IN A

108.128.47.81

sync.crwdcntrl.net

IN A

52.209.69.89

sync.crwdcntrl.net

IN A

63.34.234.255

sync.crwdcntrl.net

IN A

54.155.192.242

sync.crwdcntrl.net

IN A

52.30.134.176
DNS

us-u.openx.net

msedge.exe

Remote address:

8.8.8.8:53

Request

us-u.openx.net

IN A

Response

us-u.openx.net

IN A

35.244.159.8

us-u.openx.net

IN A

34.98.64.218
GET

https://us-u.openx.net/w/1.0/cm?id=42c6242a-808f-4528-a53e-218ee9c324f3&r=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Feid%3D92690%26person_id%3D3650068291290398872%26fp%3D

msedge.exe

Remote address:

35.244.159.8:443

Request

GET /w/1.0/cm?id=42c6242a-808f-4528-a53e-218ee9c324f3&r=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Feid%3D92690%26person_id%3D3650068291290398872%26fp%3D HTTP/2.0
host: us-u.openx.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://trc.taboola.com/sg/bombora/1/cm?redirect=https://ml314.com/csync.ashx%3Ffp=%3CTUID%3E%26person_id=3650068291290398872%26eid=50077

msedge.exe

Remote address:

151.101.129.44:443

Request

GET /sg/bombora/1/cm?redirect=https://ml314.com/csync.ashx%3Ffp=%3CTUID%3E%26person_id=3650068291290398872%26eid=50077 HTTP/2.0
host: trc.taboola.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: nginx
cache-control: no-cache, no-store
pragma: no-cache
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
x-fastly-to-nlb-rtt: 6746
accept-ranges: bytes
date: Fri, 24 Jan 2025 14:53:16 GMT
via: 1.1 varnish
x-service-version: v1
x-served-by: cache-lon420144-LON
x-cache: MISS
x-cache-hits: 0
x-timer: S1737730397.745637,VS0,VE8
x-vcl-time-ms: 8
GET

https://sync.crwdcntrl.net/map/c=6985/tp=BOMB?https://ml314.com/csync.ashx%3Ffp%3D%24%7Bprofile_id%7D%26eid%3D50146%26person_id%3D3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

msedge.exe

Remote address:

54.229.84.60:443

Request

GET /map/c=6985/tp=BOMB?https://ml314.com/csync.ashx%3Ffp%3D%24%7Bprofile_id%7D%26eid%3D50146%26person_id%3D3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA HTTP/2.0
host: sync.crwdcntrl.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 302

date: Fri, 24 Jan 2025 14:53:16 GMT
content-length: 0
location: https://ml314.com/csync.ashx?fp=&eid=50146&person_id=3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.29.98
DNS

api.btmessage.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.btmessage.com

IN A

Response

api.btmessage.com

IN A

104.26.6.141

api.btmessage.com

IN A

172.67.74.232

api.btmessage.com

IN A

104.26.7.141
DNS

tpc.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

tpc.googlesyndication.com

IN A

Response

tpc.googlesyndication.com

IN A

172.217.169.33
GET

https://tpc.googlesyndication.com/simgad/15703005220154420964

msedge.exe

Remote address:

172.217.169.33:443

Request

GET /simgad/15703005220154420964 HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20250121/r20110914/abg_lite_fy2021.js

msedge.exe

Remote address:

172.217.169.33:443

Request

GET /pagead/js/r20250121/r20110914/abg_lite_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://tpc.googlesyndication.com/pagead/js/r20250121/r20110914/client/window_focus_fy2021.js

msedge.exe

Remote address:

172.217.169.33:443

Request

GET /pagead/js/r20250121/r20110914/client/window_focus_fy2021.js HTTP/2.0
host: tpc.googlesyndication.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.btmessage.com/assets/bt-rlink-storage-DJolxq7O.html

msedge.exe

Remote address:

104.26.7.141:443

Request

GET /assets/bt-rlink-storage-DJolxq7O.html HTTP/2.0
host: cdn.btmessage.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:17 GMT
content-type: text/html
x-guploader-uploadid: AFIdbgTW2HT92AkvTg877uPdxEOQdVfEIfk_OtFKOEL-6EXMyLmqIyXoH4Abprxu0MAKJjFT
x-goog-generation: 1736972548013231
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1640
x-goog-meta-goog-reserved-file-mtime: 1736972515
x-goog-hash: crc32c=ODDrsg==
x-goog-hash: md5=RYQLrtolUtWHrZio5V5s1g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Wed, 22 Jan 2025 12:27:26 GMT
cache-control: public, max-age=604800
age: 184927
last-modified: Tue, 21 Jan 2025 16:29:00 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GJ4FXYOUr%2FxyHLjsH0XNKLNeqi7LpyQst5fRE7mWQIX6v6KiLReG8An44%2B9fyo%2FXktQwCLHWOc95qAcYiRDfBB0V6rPwmHG4w5MziKEQqOj5KRDSGcRhKpa5eO5wUYQHxTsP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da271fc363b5-LHR
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=53562&min_rtt=46778&rtt_var=22388&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2816&recv_bytes=1167&delivery_rate=58018&cwnd=225&unsent_bytes=0&cid=329d8847868416cc&ts=75&x=0"
GET

https://ad-delivery.net/px.gif?ch=2

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=2 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
if-none-match: "ad4b0f606e0f8465bc4c4c170b37e1a3"
if-modified-since: Wed, 05 May 2021 19:25:32 GMT

Response

HTTP/2.0 304

date: Fri, 24 Jan 2025 14:53:17 GMT
x-guploader-uploadid: AFiumC4z0ZHRuDA3780RA7jH88GPqYJw96ReWKWN-Mei0JJhtWROXRSwbw_RUBb2ti1U4naVKvUe_QQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:17 GMT
cache-control: public, max-age=86400
age: 63217
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cOnIcjwgx%2FCKQ0yCgVWbtEUPwJJIJgvPcueUS9pGS%2FbVXeQgm0QSInv0fiPU9Lf0O9cV%2FcduID3cjNb%2FTenWpFhVfLFzIzzsp6GjejZcCmVFRbdyNen3GznYrS9vDMExuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da271d44948e-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=52460&min_rtt=46969&rtt_var=21536&sent=6&recv=8&lost=0&retrans=0&sent_bytes=3190&recv_bytes=2083&delivery_rate=57782&cwnd=251&unsent_bytes=0&cid=908d06c5eebc746b&ts=67&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.8194498516205446

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.8194498516205446 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:17 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFiumC4z0ZHRuDA3780RA7jH88GPqYJw96ReWKWN-Mei0JJhtWROXRSwbw_RUBb2ti1U4naVKvUe_QQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:17 GMT
cache-control: public, max-age=86400
age: 51120
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HDtBp0OmGQ9INnKoDcuH8A3B4V6%2BLaMU8UPT22%2FgQ6%2Ff3kd4uFAIDeRrJas036pdYO%2F9RSaZZOg624hbAIyJrMeMrHcEL6My6pkBPwwvz4EaAAHpL7%2F%2FzVzvCYCR8f%2BB5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070da27addf948e-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=51302&min_rtt=46969&rtt_var=14142&sent=9&recv=12&lost=0&retrans=0&sent_bytes=4197&recv_bytes=2192&delivery_rate=61609&cwnd=254&unsent_bytes=0&cid=908d06c5eebc746b&ts=149&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.9625758625091345

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.9625758625091345 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:39 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFiumC4z0ZHRuDA3780RA7jH88GPqYJw96ReWKWN-Mei0JJhtWROXRSwbw_RUBb2ti1U4naVKvUe_QQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:39 GMT
cache-control: public, max-age=86400
age: 51142
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cBlLTz%2BMNPZwdf11VdgAA4a0VQNu2GhjQF6%2F0Jhd2tkTQFLpFO0Z%2BjNF%2Btym1LxWr4vpmkpTLdsPq0wQzjfB%2BbNROZjFAW2CRq8crg2TpHu2SKQfeQFFRP3PBygMZaJhtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070dab44a23948e-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=50783&min_rtt=46969&rtt_var=11646&sent=13&recv=15&lost=0&retrans=0&sent_bytes=4806&recv_bytes=2309&delivery_rate=61609&cwnd=256&unsent_bytes=0&cid=908d06c5eebc746b&ts=22660&x=0"
GET

https://ad-delivery.net/px.gif?ch=1&e=0.8005417295474364

msedge.exe

Remote address:

104.26.3.70:443

Request

GET /px.gif?ch=1&e=0.8005417295474364 HTTP/2.0
host: ad-delivery.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://sourceforge.net
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Fri, 24 Jan 2025 14:53:56 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: AFiumC4z0ZHRuDA3780RA7jH88GPqYJw96ReWKWN-Mei0JJhtWROXRSwbw_RUBb2ti1U4naVKvUe_QQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==
x-goog-hash: md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 25 Jan 2025 14:53:56 GMT
cache-control: public, max-age=86400
age: 51137
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sjEtGkGvx0tmT%2FnrpZGhFbre07BCArNHDZdmpsitiyZUYN9xJ6ORYxtwO3b2nP7Tihqp%2B8nW5cZ4Jqf97OIQu8NcBzOWAjVHXVLI4E47h7aza8QxVVNEoggrR%2BaUULkigA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9070db1a88c3948e-LHR
server-timing: cfL4;desc="?proto=TCP&rtt=51828&min_rtt=46969&rtt_var=10256&sent=18&recv=19&lost=0&retrans=0&sent_bytes=5444&recv_bytes=2426&delivery_rate=84449&cwnd=256&unsent_bytes=0&cid=908d06c5eebc746b&ts=39012&x=0"
DNS

8.159.244.35.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.159.244.35.in-addr.arpa

IN PTR

Response

8.159.244.35.in-addr.arpa

IN PTR

815924435bcgoogleusercontentcom
DNS

44.129.101.151.in-addr.arpa

Remote address:

8.8.8.8:53

Request

44.129.101.151.in-addr.arpa

IN PTR

Response
DNS

33.169.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

33.169.217.172.in-addr.arpa

IN PTR

Response

33.169.217.172.in-addr.arpa

IN PTR

lhr48s08-in-f11e100net
DNS

ep2.adtrafficquality.google

msedge.exe

Remote address:

8.8.8.8:53

Request

ep2.adtrafficquality.google

IN A

Response

ep2.adtrafficquality.google

IN A

142.250.200.33
GET

https://ep2.adtrafficquality.google/sodar/sodar2.js

msedge.exe

Remote address:

142.250.200.33:443

Request

GET /sodar/sodar2.js HTTP/2.0
host: ep2.adtrafficquality.google
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.179.228
GET

https://www.google.com/recaptcha/api2/aframe

msedge.exe

Remote address:

142.250.179.228:443

Request

GET /recaptcha/api2/aframe HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

33.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

33.200.250.142.in-addr.arpa

IN PTR

Response

33.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f11e100net
DNS

228.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

228.179.250.142.in-addr.arpa

IN PTR

Response

228.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f41e100net
DNS

downloads.sourceforge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

downloads.sourceforge.net

IN A

Response

downloads.sourceforge.net

IN A

104.18.13.149

downloads.sourceforge.net

IN A

104.18.12.149
DNS

downloads.sourceforge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

downloads.sourceforge.net

IN A

Response

downloads.sourceforge.net

IN A

104.18.12.149

downloads.sourceforge.net

IN A

104.18.13.149
DNS

netix.dl.sourceforge.net

msedge.exe

Remote address:

8.8.8.8:53

Request

netix.dl.sourceforge.net

IN A

Response

netix.dl.sourceforge.net

IN A

87.121.121.2
GET

https://netix.dl.sourceforge.net/project/processhacker/processhacker2/processhacker-2.39-setup.exe?viasf=1

msedge.exe

Remote address:

87.121.121.2:443

Request

GET /project/processhacker/processhacker2/processhacker-2.39-setup.exe?viasf=1 HTTP/1.1
Host: netix.dl.sourceforge.net
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: __cf_bm=yNCVuk8jbkdttVOsMcdigiwRG2E0Vb.vTn7kN7A3Nt0-1737730369-1.0.1.1-zep41WU21FHdbyuz3grkb4_.qvmDYIyfzTl5val8dUzIsp_jtq52PTxOGcKOfikW4VK0tBHErv0gKHCuK3iC7Q; cf_clearance=XmSIKhc72fZz6AcD6uVgoeouZwlWoO0g3zW8yGlSCXY-1737730377-1.2.1.1-fgc7LyX8MYvRV3LJI6MFXRQI7KVhHMQxONCCdL3cdMZ6WUy2hvvT98sFPqpOk7Gj7NeQGKtwr6rc19ZMu44CcRPkJW5JIWweJKp01.4PGkJoRvIuVWyOG3aFD8jz.vIBCI_xqeyxzn6x9EK0QFsRcosHzsHklHkGkYjBIPa1Q3B3rbiW1UtOzRvLid8wjBnYInJWrhiprtbCZzMzKHjLMGKWFSnUORybEZ8Un0VXDMTxhN8rmcFvOw06ecrHeZnvzrclhqr0jDHnTTe5N0buXRyMQGGzivNKZHpTepjRx6dtsmmGuUgkgf7Azurh984feZOl1jEB5c.s0FLx8EOR7A; __cmpcpcx11319=____; __cmpconsentx11319=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA; __cmpcvcx11319=__c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U__; _ga=GA1.1.757150557.1737730394; __gads=ID=593914c95abc5eb4:T=1737730396:RT=1737730396:S=ALNI_MZqHdIPBEs3QBDot8xh1jPCuGoTsA; __gpi=UID=00000fd8363bfa4a:T=1737730396:RT=1737730396:S=ALNI_MaBByZDrPq3p2O_XgR_vMT6OSXSzw; __eoi=ID=69fd66c7deaf793b:T=1737730396:RT=1737730396:S=AA-AfjZrLI55aUbHzX5K2YEAukOW; _ga_1H226E4E4L=GS1.1.1737730394.1.1.1737730396.58.0.0

Response

HTTP/1.1 200 OK

Server: nginx
Date: Fri, 24 Jan 2025 14:53:22 GMT
Content-Type: application/octet-stream
Content-Length: 2267848
Connection: close
last-modified: Tue, 29 Mar 2016 01:44:57 GMT
etag: "56f9de19-229ac8"
X-Cache-Status: HIT
DNS

2.121.121.87.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.121.121.87.in-addr.arpa

IN PTR

Response

2.121.121.87.in-addr.arpa

IN PTR

mirrorsnetixnet
DNS

2.121.121.87.in-addr.arpa

Remote address:

8.8.8.8:53

Request

2.121.121.87.in-addr.arpa

IN PTR

Response

2.121.121.87.in-addr.arpa

IN PTR

mirrorsnetixnet
GET

https://analytics.slashdotmedia.com/sf.php?action_name=Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net&idsite=39&rec=1&r=803328&h=14&m=53&s=37&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_postdownload&dimension3=1&gt_ms=666&pv_id=9x0R5s

msedge.exe

Remote address:

216.105.38.9:443

Request

GET /sf.php?action_name=Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net&idsite=39&rec=1&r=803328&h=14&m=53&s=37&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_postdownload&dimension3=1&gt_ms=666&pv_id=9x0R5s HTTP/1.1
Host: analytics.slashdotmedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx
Date: Fri, 24 Jan 2025 14:53:38 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
tk: N
cache-control: no-store
x-frame-options: SameOrigin
x-content-type-options: nosniff
DNS

731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com

IN A

Response

731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com

IN CNAME

pagead-googlehosted.l.google.com

pagead-googlehosted.l.google.com

IN A

216.58.201.97
GET

https://loadus.exelator.com/load/?p=204&g=1170&j=0&redirect=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Fperson_id%3D3650068291290398872%26eid%3D50596%26fp%3D

msedge.exe

Remote address:

34.254.143.3:443

Request

GET /load/?p=204&g=1170&j=0&redirect=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Fperson_id%3D3650068291290398872%26eid%3D50596%26fp%3D HTTP/2.0
host: loadus.exelator.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://sourceforge.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

server: nginx
date: Fri, 24 Jan 2025 14:53:39 GMT
cache-control: no-cache
x-powered-by: Undertow/1
set-cookie: DNT="DNT2"; Domain=.exelator.com; Path=/; Max-Age=315360000; Expires=Mon, 22-Jan-2035 02:53:39 GMT; SameSite=None; Secure;
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
access-control-allow-credentials: true
p3p: policyref=/w3c/p3p.xml, CP=NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA
DNS

3.143.254.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

3.143.254.34.in-addr.arpa

IN PTR

Response

3.143.254.34.in-addr.arpa

IN PTR

ec2-34-254-143-3 eu-west-1compute amazonawscom
DNS

wj32.org

ProcessHacker.exe

Remote address:

8.8.8.8:53

Request

wj32.org

IN A

Response

wj32.org

IN A

162.243.25.33
DNS

wj32.org

ProcessHacker.exe

Remote address:

8.8.8.8:53

Request

wj32.org

IN A

Response

wj32.org

IN A

162.243.25.33
DNS

u.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

u.clarity.ms

IN A

Response

u.clarity.ms

IN CNAME

clarity-ingest-eus-d-sc.eastus.cloudapp.azure.com

clarity-ingest-eus-d-sc.eastus.cloudapp.azure.com

IN A

4.227.249.197
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 173
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:53:53 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81
GET

https://analytics.slashdotmedia.com/sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=629086&h=14&m=53&s=53&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=undefined&gt_ms=1079&pv_id=y24pfc

msedge.exe

Remote address:

216.105.38.9:443

Request

GET /sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=629086&h=14&m=53&s=53&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=undefined&gt_ms=1079&pv_id=y24pfc HTTP/1.1
Host: analytics.slashdotmedia.com
Connection: keep-alive
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Referer: https://sourceforge.net/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Server: nginx
Date: Fri, 24 Jan 2025 14:53:54 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
tk: N
cache-control: no-store
x-frame-options: SameOrigin
x-content-type-options: nosniff
DNS

9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com

msedge.exe

Remote address:

8.8.8.8:53

Request

9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com

IN A

Response

9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com

IN CNAME

pagead-googlehosted.l.google.com

pagead-googlehosted.l.google.com

IN A

216.58.201.97
DNS

cdn.ampproject.org

msedge.exe

Remote address:

8.8.8.8:53

Request

cdn.ampproject.org

IN A

Response

cdn.ampproject.org

IN CNAME

cdn-content.ampproject.org

cdn-content.ampproject.org

IN A

172.217.16.225
DNS

encrypted-tbn3.gstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

encrypted-tbn3.gstatic.com

IN A

Response

encrypted-tbn3.gstatic.com

IN A

142.250.200.46
GET

https://encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcTXFZXg-1gnrI9WvDfUMc45t8qEG6NfFQmguSlrp6QLheH47e5e2roTZ0CZ3FU&usqp=CAI

msedge.exe

Remote address:

142.250.200.46:443

Request

GET /shopping?q=tbn:ANd9GcTXFZXg-1gnrI9WvDfUMc45t8qEG6NfFQmguSlrp6QLheH47e5e2roTZ0CZ3FU&usqp=CAI HTTP/2.0
host: encrypted-tbn3.gstatic.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.ampproject.org/rtv/032501142147000/amp4ads-v0.js

msedge.exe

Remote address:

172.217.16.225:443

Request

GET /rtv/032501142147000/amp4ads-v0.js HTTP/2.0
host: cdn.ampproject.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.ampproject.org/rtv/032501142147000/v0/amp-ad-exit-0.1.js

msedge.exe

Remote address:

172.217.16.225:443

Request

GET /rtv/032501142147000/v0/amp-ad-exit-0.1.js HTTP/2.0
host: cdn.ampproject.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.ampproject.org/rtv/032501142147000/v0/amp-analytics-0.1.js

msedge.exe

Remote address:

172.217.16.225:443

Request

GET /rtv/032501142147000/v0/amp-analytics-0.1.js HTTP/2.0
host: cdn.ampproject.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.ampproject.org/rtv/032501142147000/v0/amp-fit-text-0.1.js

msedge.exe

Remote address:

172.217.16.225:443

Request

GET /rtv/032501142147000/v0/amp-fit-text-0.1.js HTTP/2.0
host: cdn.ampproject.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://cdn.ampproject.org/rtv/032501142147000/v0/amp-form-0.1.js

msedge.exe

Remote address:

172.217.16.225:443

Request

GET /rtv/032501142147000/v0/amp-form-0.1.js HTTP/2.0
host: cdn.ampproject.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

225.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

225.16.217.172.in-addr.arpa

IN PTR

Response

225.16.217.172.in-addr.arpa

IN PTR

lhr48s28-in-f11e100net

225.16.217.172.in-addr.arpa

IN PTR

mad08s04-in-f1�H
DNS

46.200.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

46.200.250.142.in-addr.arpa

IN PTR

Response

46.200.250.142.in-addr.arpa

IN PTR

lhr48s30-in-f141e100net
DNS

processhacker.sourceforge.net

ProcessHacker.exe

Remote address:

8.8.8.8:53

Request

processhacker.sourceforge.net

IN A

Response

processhacker.sourceforge.net

IN CNAME

projects.sourceforge.net.cdn.cloudflare.net

projects.sourceforge.net.cdn.cloudflare.net

IN A

104.18.12.149

projects.sourceforge.net.cdn.cloudflare.net

IN A

104.18.13.149
GET

http://processhacker.sourceforge.net/update.php

ProcessHacker.exe

Remote address:

104.18.12.149:80

Request

GET /update.php HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Accept-Encoding: gzip, deflate
ProcessHacker-Build: 2.39.124
ProcessHacker-OsBuild: 19041.1.amd64fre.vb_release.191206-1406
Host: processhacker.sourceforge.net

Response

HTTP/1.1 301 Moved Permanently

Date: Fri, 24 Jan 2025 14:54:01 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 24 Jan 2025 15:54:01 GMT
Location: https://processhacker.sourceforge.net/update.php
Vary: Accept-Encoding
Content-Security-Policy: upgrade-insecure-requests
Server: cloudflare
CF-RAY: 9070db398cdfedf0-LHR
alt-svc: h3=":443"; ma=86400
GET

https://processhacker.sourceforge.net/update.php

ProcessHacker.exe

Remote address:

104.18.12.149:443

Request

GET /update.php HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Accept-Encoding: gzip, deflate
ProcessHacker-Build: 2.39.124
ProcessHacker-OsBuild: 19041.1.amd64fre.vb_release.191206-1406
Host: processhacker.sourceforge.net

Response

HTTP/1.1 301 Moved Permanently

Date: Fri, 24 Jan 2025 14:54:01 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 255
Connection: keep-alive
location: https://processhacker.sourceforge.io/update.php
cache-control: max-age=3600
expires: Fri, 24 Jan 2025 15:54:01 GMT
vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=qKiy0q3T0zjIfTAPIDG3Uq7LMKnsryD0t2465UaZ_qo-1737730441-1.0.1.1-IGwmgRIDs9PhhXPqCSqh0.8BEz3ARUGp304GLd2NEOVybS4ctIxm1XaCZzPGgsrrSLWfRBC6oT42OO4te5F_Vg; path=/; expires=Fri, 24-Jan-25 15:24:01 GMT; domain=.sourceforge.net; HttpOnly; Secure
Content-Security-Policy: upgrade-insecure-requests
Server: cloudflare
CF-RAY: 9070db3b0b9a8889-LHR
alt-svc: h3=":443"; ma=86400
DNS

processhacker.sourceforge.io

ProcessHacker.exe

Remote address:

8.8.8.8:53

Request

processhacker.sourceforge.io

IN A

Response

processhacker.sourceforge.io

IN CNAME

prwebsecure.sourceforge.io.cdn.cloudflare.net

prwebsecure.sourceforge.io.cdn.cloudflare.net

IN A

104.18.10.31

prwebsecure.sourceforge.io.cdn.cloudflare.net

IN A

104.18.11.31
GET

https://processhacker.sourceforge.io/update.php

ProcessHacker.exe

Remote address:

104.18.10.31:443

Request

GET /update.php HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Accept-Encoding: gzip, deflate
ProcessHacker-Build: 2.39.124
ProcessHacker-OsBuild: 19041.1.amd64fre.vb_release.191206-1406
Host: processhacker.sourceforge.io

Response

HTTP/1.1 200 OK

Date: Fri, 24 Jan 2025 14:54:02 GMT
Content-Type: application/xml; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: upgrade-insecure-requests; frame-ancestors 'none';
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
strict-transport-security: max-age=31536000
vary: Host,X-Forwarded-Proto
vary: Accept-Encoding
cache-control: public, max-age=7200, s-maxage=3600
expires: Fri, 24 Jan 2025 15:54:02 GMT
x-from: sfp-ioweb82-4
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 9070db3dfacd9556-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
DNS

31.10.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

31.10.18.104.in-addr.arpa

IN PTR

Response
DNS

u.clarity.ms

msedge.exe

Remote address:

8.8.8.8:53

Request

u.clarity.ms

IN A

Response

u.clarity.ms

IN CNAME

clarity-ingest-eus-d-sc.eastus.cloudapp.azure.com

clarity-ingest-eus-d-sc.eastus.cloudapp.azure.com

IN A

4.227.249.197
POST

https://u.clarity.ms/collect

msedge.exe

Remote address:

4.227.249.197:443

Request

POST /collect HTTP/1.1
Host: u.clarity.ms
Connection: keep-alive
Content-Length: 176
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
Accept: application/x-clarity-gzip
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Origin: https://www.uncoverit.org
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: empty
Referer: https://www.uncoverit.org/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Cookie: MUID=24D145E39B6565E401C7509D9ADE6415

Response

HTTP/1.1 204 No Content

Server: nginx
Date: Fri, 24 Jan 2025 14:54:55 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uncoverit.org
Vary: Origin
Request-Context: appId=cid-v1:9c7c879b-c51a-427e-9701-218438da5f81

104.17.150.117:443

https://www.mediafire.com/cdn-cgi/rum?

tls, http2

msedge.exe

27.7kB
158.2kB
154
195

HTTP Request

GET https://www.mediafire.com/file/3tatft4jogooizv/DiscordNitroGenerator.zip/file

HTTP Response

200

HTTP Request

GET https://www.mediafire.com/images/icons/svg_dark/icons_sprite.svg

HTTP Request

GET https://static.mediafire.com/images/download/subscription_upsell/special_discount_banner.png

HTTP Request

GET https://static.mediafire.com/images/filetype/file-zip-v3.png

HTTP Request

GET https://static.mediafire.com/images/backgrounds/header/mf_logo_u1_reversed.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://static.mediafire.com/images/download/subscription_upsell/folders_2.svg

HTTP Request

GET https://static.mediafire.com/images/download/subscription_upsell/gold_check_mark_circle.svg

HTTP Request

GET https://static.mediafire.com/images/backgrounds/footer/social/footerIcons.png

HTTP Request

GET https://sandbox.mediafire.com/images/backgrounds/header/mf_logo_u1_full_color_reversed.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.mediafire.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

HTTP Response

302

HTTP Request

GET https://www.mediafire.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js?

HTTP Response

200

HTTP Request

POST https://www.mediafire.com/cdn-cgi/challenge-platform/h/b/jsd/r/9070d752685b71ec

HTTP Response

200

HTTP Request

POST https://www.mediafire.com/cdn-cgi/rum?

HTTP Request

GET https://www.mediafire.com/favicon.ico

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.mediafire.com/cdn-cgi/rum?

HTTP Response

204
104.17.150.117:443

www.mediafire.com

tls

msedge.exe

1.1kB
6.2kB
10
9
104.21.42.32:443

https://the.gatekeeperconsent.com/v2/cmp.js?v=296

tls, http2

msedge.exe

2.9kB
46.8kB
37
54

HTTP Request

GET https://the.gatekeeperconsent.com/cmp.min.js

HTTP Response

200

HTTP Request

GET https://privacy.gatekeeperconsent.com/tcf2_stub.js

HTTP Request

GET https://the.gatekeeperconsent.com/v2/cmp.js?v=296

HTTP Response

200

HTTP Response

200
172.67.199.186:443

https://the.gatekeeperconsent.com/cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543

tls, http2

msedge.exe

4.3kB
100.2kB
59
94

HTTP Request

GET https://privacy.gatekeeperconsent.com/consent_modules.json

HTTP Response

200

HTTP Request

GET https://the.gatekeeperconsent.com/v2/config.json?domain=www.mediafire.com&changeLogId=0&cb=0

HTTP Response

200

HTTP Request

GET https://the.gatekeeperconsent.com/cmp/gvl.json?v=10&lang=en

HTTP Response

200

HTTP Request

OPTIONS https://the.gatekeeperconsent.com/cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543

HTTP Response

200

HTTP Request

GET https://the.gatekeeperconsent.com/cmp/v2/main_modal_firstpage?domain=www.mediafire.com&region=default&lang=en-US&cb=300&changeLogId=593543

HTTP Response

200
104.16.80.73:443

https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

tls, http2

msedge.exe

2.5kB
18.7kB
27
33

HTTP Request

GET https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

HTTP Response

200

HTTP Request

GET https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

HTTP Response

200
18.239.18.40:443

https://cdn.amplitude.com/libs/amplitude-8.5.0-min.gz.js

tls, http2

msedge.exe

3.6kB
29.4kB
34
37

HTTP Request

GET https://cdn.amplitude.com/libs/amplitude-8.5.0-min.gz.js

HTTP Response

200
104.19.208.227:443

https://otnolatrnup.com/Redirect.eng?MediaSegmentId=80567&dcid=&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=0&dst=False&v=b-6FRX9XA6PWv1sfNPVAJ7R16WFPmNH5vxsoq80yZYs3CvsLDKN0h8aIjbYGW5fB-UVxUJRLtKqZYMIHhw7sf7Rb1zzoCFGkV7Jbq0YudptonqlCCV2qBm8tzKPPxSJxczowGYfrdPEXfWV7RPnZoJDWTB2AboNPB0_Y5BCwBrtGpTJB3Wn-9P0drSQEtdlGKApjigFccSxJP31wuVraa1MpsTmIb96y0ecBgI4FWihB67cZyfT24mVMj4i24TljzppvnOYi8QLJwnwRBftDTIgKeZLCt8leEqQICTPAkm0pZeVHaMJ12zxKyJgMi_0Ibuq2wnNwKbo-iNlU5c4vOr_4L2AzASFm9YCYrkO83K2hEYyuaGpwxMuhL_bXh6Ag_37a1yI1ecbQV8hoSJbbfD8n_fdl2Vk5CjKi938CxqcHNz7Mt5LiUZ2qAFhrAiTCqGb5iAa0a9xfV6QRnMpOwXYji4Eh13iAY-mYxK7glkbjF_C1IsiV9HOPej43qfzJ-mEOlKJ88fAnQVdueFXR6arsS8xfDcVpYfJ8tPqhlnnBLaPlVL-ElnPiCAVoT6G9cDR1-g9tw_YzDiItVYZthn-BsaAyJJiAMoxovJi3JY3pdBvEBLJaFC_wankqts6TM9DjIGMxFTgjgBKkZaVVNTwGu0lVq_qLes_pUOX5bxJD4oDz1lsbh32hoa0OSZ4QwRqOefNSsJppXv6v7O3_GrsUpRYLPPslvi-dsfFtVVMKKHP5YFYgFOSbi6a_4jtsGfflHqeSQ4_GpPl4NyOpDG4zxpmiqEIE7WKiAk97hDLr96y_uncL_hxikLKajJ0n-g8UWHdRXg1my0VNes5oZNi_Gk51eyK3HeRSvVJX3_RgEjfSpgNAcRsTHbZOla-DrpyED9v4SOLoXnEh9P2IJGI-4t9BEX0bOdC1r_WZtqJ_P3n_BE7TysozdnXFODlavBGtXzsroVfsPZHH0FioLp4OKOnzEHNGBBbMNSwXxAazO6RinSRtOFbjckVU1cDgmrvI4X49o2bVoVQXqDyf4X8zET4bGlZVWWTxM_vPKu_ykYsJ5YisC2FTWREff_yylJIGx-BCmcKSJ7qrsWzAzupXVjfqp9WRxAflpXqM7gM1&kw=online+storage%2Cfree+storage%2Ccloud+storage%2Ccollaboration%2Cbackup+file+sharing%2Cshare+files%2Cphoto+backup%2Cphoto+sharing%2Cftp+replacement%2Ccross+platform%2Cremote+access%2Cmobile+access%2Csend+large+files%2Crecover+files%2Cfile+versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos+x%2Clinux%2Ciphone&mw=1024&mh=768&at=&dc=ejDet1FZUebO1Xm99py884KW-tUjiGzFC2JOHcmLO3CK8jEG0A8c9ytxi4-N42aY8Gbe3clryqUvduI2OFQ0mw2&res=1280x720&spt=1&kw=online+storage%2cfree+storage%2ccloud+storage%2ccollaboration%2cbackup+file+sharing%2cshare+files%2cphoto+backup%2cphoto+sharing%2cftp+replacement%2ccross+platform%2cremote+access%2cmobile+access%2csend+large+files%2crecover+files%2cfile+versioning%2cundelete%2cwindows%2cpc%2cmac%2cos+x%2clinux%2ciphone

tls, http2

msedge.exe

7.6kB
74.7kB
70
78

HTTP Request

GET https://cdn.otnolatrnup.com/Scripts/infinity.js.aspx?guid=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0

HTTP Response

200

HTTP Request

GET https://otnolatrnup.com/Tag.engine?time=0&id=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0&rand=80744&ver=async&referrerUrl=&fingerPrint=123&abr=false&stdTime=0&fpe=1&bw=1280&bh=609&res=1280x720&curl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&kw=online%20storage%2Cfree%20storage%2Ccloud%20storage%2Ccollaboration%2Cbackup%20file%20sharing%2Cshare%20files%2Cphoto%20backup%2Cphoto%20sharing%2Cftp%20replacement%2Ccross%20platform%2Cremote%20access%2Cmobile%20access%2Csend%20large%20files%2Crecover%20files%2Cfile%20versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos%20x%2Clinux%2Ciphone

HTTP Response

200

HTTP Request

GET https://otnolatrnup.com/fp.engine?id=5ff0fb62-0643-4ff1-aaee-c737f9ffc0e0&rand=65909&ver=async&time=0&referrerUrl=&subId=&tid=&abr=false&res=1280x720&stdTime=0&fpe=1&curl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&kw=online%20storage%2Cfree%20storage%2Ccloud%20storage%2Ccollaboration%2Cbackup%20file%20sharing%2Cshare%20files%2Cphoto%20backup%2Cphoto%20sharing%2Cftp%20replacement%2Ccross%20platform%2Cremote%20access%2Cmobile%20access%2Csend%20large%20files%2Crecover%20files%2Cfile%20versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos%20x%2Clinux%2Ciphone&spt=1

HTTP Response

302

HTTP Request

GET https://otnolatrnup.com/Redirect.eng?MediaSegmentId=80567&dcid=&vmId=00000000-0000-0000-0000-000000000000&abr=false&timeZoneOffset=0&dst=False&v=b-6FRX9XA6PWv1sfNPVAJ7R16WFPmNH5vxsoq80yZYs3CvsLDKN0h8aIjbYGW5fB-UVxUJRLtKqZYMIHhw7sf7Rb1zzoCFGkV7Jbq0YudptonqlCCV2qBm8tzKPPxSJxczowGYfrdPEXfWV7RPnZoJDWTB2AboNPB0_Y5BCwBrtGpTJB3Wn-9P0drSQEtdlGKApjigFccSxJP31wuVraa1MpsTmIb96y0ecBgI4FWihB67cZyfT24mVMj4i24TljzppvnOYi8QLJwnwRBftDTIgKeZLCt8leEqQICTPAkm0pZeVHaMJ12zxKyJgMi_0Ibuq2wnNwKbo-iNlU5c4vOr_4L2AzASFm9YCYrkO83K2hEYyuaGpwxMuhL_bXh6Ag_37a1yI1ecbQV8hoSJbbfD8n_fdl2Vk5CjKi938CxqcHNz7Mt5LiUZ2qAFhrAiTCqGb5iAa0a9xfV6QRnMpOwXYji4Eh13iAY-mYxK7glkbjF_C1IsiV9HOPej43qfzJ-mEOlKJ88fAnQVdueFXR6arsS8xfDcVpYfJ8tPqhlnnBLaPlVL-ElnPiCAVoT6G9cDR1-g9tw_YzDiItVYZthn-BsaAyJJiAMoxovJi3JY3pdBvEBLJaFC_wankqts6TM9DjIGMxFTgjgBKkZaVVNTwGu0lVq_qLes_pUOX5bxJD4oDz1lsbh32hoa0OSZ4QwRqOefNSsJppXv6v7O3_GrsUpRYLPPslvi-dsfFtVVMKKHP5YFYgFOSbi6a_4jtsGfflHqeSQ4_GpPl4NyOpDG4zxpmiqEIE7WKiAk97hDLr96y_uncL_hxikLKajJ0n-g8UWHdRXg1my0VNes5oZNi_Gk51eyK3HeRSvVJX3_RgEjfSpgNAcRsTHbZOla-DrpyED9v4SOLoXnEh9P2IJGI-4t9BEX0bOdC1r_WZtqJ_P3n_BE7TysozdnXFODlavBGtXzsroVfsPZHH0FioLp4OKOnzEHNGBBbMNSwXxAazO6RinSRtOFbjckVU1cDgmrvI4X49o2bVoVQXqDyf4X8zET4bGlZVWWTxM_vPKu_ykYsJ5YisC2FTWREff_yylJIGx-BCmcKSJ7qrsWzAzupXVjfqp9WRxAflpXqM7gM1&kw=online+storage%2Cfree+storage%2Ccloud+storage%2Ccollaboration%2Cbackup+file+sharing%2Cshare+files%2Cphoto+backup%2Cphoto+sharing%2Cftp+replacement%2Ccross+platform%2Cremote+access%2Cmobile+access%2Csend+large+files%2Crecover+files%2Cfile+versioning%2Cundelete%2Cwindows%2Cpc%2Cmac%2Cos+x%2Clinux%2Ciphone&mw=1024&mh=768&at=&dc=ejDet1FZUebO1Xm99py884KW-tUjiGzFC2JOHcmLO3CK8jEG0A8c9ytxi4-N42aY8Gbe3clryqUvduI2OFQ0mw2&res=1280x720&spt=1&kw=online+storage%2cfree+storage%2ccloud+storage%2ccollaboration%2cbackup+file+sharing%2cshare+files%2cphoto+backup%2cphoto+sharing%2cftp+replacement%2ccross+platform%2cremote+access%2cmobile+access%2csend+large+files%2crecover+files%2cfile+versioning%2cundelete%2cwindows%2cpc%2cmac%2cos+x%2clinux%2ciphone

HTTP Response

200
18.239.83.86:80

http://crt.rootg2.amazontrust.com/rootg2.cer

http

msedge.exe

413 B
1.9kB
6
5

HTTP Request

GET http://crt.rootg2.amazontrust.com/rootg2.cer

HTTP Response

200
44.241.250.109:443

https://api.amplitude.com/

tls, http2

msedge.exe

4.0kB
6.5kB
18
20

HTTP Request

POST https://api.amplitude.com/

HTTP Response

200
54.229.84.60:443

https://ad.crwdcntrl.net/5/c=3722/pe=y/callback=g367CB268B1094004A3689751E7AC568F.Lotame.CallExtractionAPICallback?11496426

tls, http2

msedge.exe

1.9kB
5.7kB
15
17

HTTP Request

GET https://ad.crwdcntrl.net/5/c=3722/pe=y/callback=g367CB268B1094004A3689751E7AC568F.Lotame.CallExtractionAPICallback?11496426

HTTP Response

404
54.154.145.233:443

https://bcp.crwdcntrl.net/map/c=3722/tp=ADSP/tpid=49c0a8c058db4c6ab3b3a2cc53674cff

tls, http2

msedge.exe

2.0kB
5.7kB
18
18

HTTP Request

GET https://bcp.crwdcntrl.net/map/c=3722/tp=ADSP/tpid=49c0a8c058db4c6ab3b3a2cc53674cff

HTTP Response

404
104.26.2.173:443

https://www.mediafiredls.com/completed/1

tls, http2

msedge.exe

2.1kB
5.3kB
20
19

HTTP Request

GET https://www.mediafiredls.com/onclick/0

HTTP Response

404

HTTP Request

GET https://www.mediafiredls.com/clicked/1

HTTP Response

404

HTTP Request

GET https://www.mediafiredls.com/completed/1

HTTP Response

404
18.239.18.12:443

https://tags.crwdcntrl.net/lt/c/16589/sync.min.js

tls, http2

msedge.exe

2.2kB
20.0kB
23
29

HTTP Request

GET https://tags.crwdcntrl.net/c/4545/cc_af.js

HTTP Response

403

HTTP Request

GET https://tags.crwdcntrl.net/lt/c/16589/sync.min.js

HTTP Response

200
216.58.201.99:443

https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608&tag_exp=102067555~102067808~102081485~102123608&z=1223668701

tls, http2

msedge.exe

3.3kB
7.3kB
27
28

HTTP Request

GET https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-K68XP6D85D&cid=78540993.1737730283&gtm=45je51n0v887485693z86304663za200zb6304663&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102015666~102067555~102067808~102081485~102123608&tag_exp=102015666~102067555~102067808~102081485~102123608&z=815061612

HTTP Request

GET https://www.google.co.uk/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608&tag_exp=102067555~102067808~102081485~102123608&z=1223668701
64.233.184.155:443

https://stats.g.doubleclick.net/g/collect?v=2&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608

tls, http2

msedge.exe

2.7kB
7.4kB
24
24

HTTP Request

POST https://stats.g.doubleclick.net/g/collect?v=2&tid=G-K68XP6D85D&cid=78540993.1737730283&gtm=45je51n0v887485693z86304663za200zb6304663&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102015666~102067555~102067808~102081485~102123608

HTTP Request

POST https://stats.g.doubleclick.net/g/collect?v=2&tid=G-46BHLDMYVM&cid=674978887.1737730331&gtm=45je51n0v9198679507za200&aip=1&dma=0&gcd=13l3l3l3l1l1&npa=0&frm=0&tag_exp=102067555~102067808~102081485~102123608
216.239.32.36:443

https://region1.analytics.google.com/g/collect?v=2&tid=G-K68XP6D85D&gtm=45je51n0v887485693z86304663za200zb6304663&_p=1737730281339&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tcfd=1000g&tag_exp=102015666~102067555~102067808~102081485~102123608&cid=78540993.1737730283&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730282&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&dt=DiscordNitroGenerator&en=page_view&_fv=1&_nsi=1&_ss=1&up.page_url=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&tfd=2683

tls, http2

msedge.exe

2.4kB
7.5kB
19
19

HTTP Request

POST https://region1.analytics.google.com/g/collect?v=2&tid=G-K68XP6D85D&gtm=45je51n0v887485693z86304663za200zb6304663&_p=1737730281339&_gaz=1&gcd=13l3l3l3l1l1&npa=0&dma=0&tcfd=1000g&tag_exp=102015666~102067555~102067808~102081485~102123608&cid=78540993.1737730283&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730282&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&dt=DiscordNitroGenerator&en=page_view&_fv=1&_nsi=1&_ss=1&up.page_url=https%3A%2F%2Fwww.mediafire.com%2Ffile%2F3tatft4jogooizv%2FDiscordNitroGenerator.zip%2Ffile&tfd=2683
35.190.80.1:443

https://a.nel.cloudflare.com/report/v4?s=oyuvRjgORXa5cdPIWe2qBbxfaWZKGTe54yr4gGE89nYONbIdHNSGAY%2Fp4GUXE3YPrR7A3lyMRkzo1oCnPUmva3MI6%2Ff7OvydgHB2GPJpN%2FuMP7kgDYk69n32N95lTs%2B3em6aATCT

tls, http2

msedge.exe

1.9kB
4.7kB
16
17

HTTP Request

OPTIONS https://a.nel.cloudflare.com/report/v4?s=oyuvRjgORXa5cdPIWe2qBbxfaWZKGTe54yr4gGE89nYONbIdHNSGAY%2Fp4GUXE3YPrR7A3lyMRkzo1oCnPUmva3MI6%2Ff7OvydgHB2GPJpN%2FuMP7kgDYk69n32N95lTs%2B3em6aATCT
13.37.187.223:443

https://g.ezoic.net/cmp/log.gif?dId=484470&dcId=106&version=10&buttonId=2&consentV2=CQLvHAAQLvHAAErAKKENBZFsAP_gAEPgACiQKwtX_G__bWlr8X73aftkeY1P99h77sQxBhbJE-4FzLvW_JwXx2ExNA36tqIKmRIAu3TBIQNlHJDURVCgaogVryDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991dx2B-t7dr83dzyy4hHn3a5_2S0WJCdA5-tDfv9bROb-9IOd_x8v4v4_F7pE2_eT1l_tWvp7D9-cts_9XW99_fbff9Pn_-uB_-_X_vf_H36CsABJhoVEAZZEhIQaBhBAgBUFYQEUCAIAAEgaICAEwYFOwMAF1hIgBACgAGCAEAAIMgAQAACQAIRABAAUCAACAQKAAMACAYCABgYAAwAWAgEAAIDoGKYEEAgWACRmRUKYEIQCQQEtlQgkAQIK4QhFngEQCImCgAABIAKQABAWCwOJJASsSCALiCaAAAgAQCCAAoRSdmAIIAzZaq8GTaMrTAsHzBc9pgGSBEEZOSbAAAA.YAAAAAAAAAAA

tls, http2

msedge.exe

2.3kB
4.0kB
17
17

HTTP Request

GET https://g.ezoic.net/cmp/log.gif?dId=484470&dcId=106&version=10&buttonId=2&consentV2=CQLvHAAQLvHAAErAKKENBZFsAP_gAEPgACiQKwtX_G__bWlr8X73aftkeY1P99h77sQxBhbJE-4FzLvW_JwXx2ExNA36tqIKmRIAu3TBIQNlHJDURVCgaogVryDMaEyUoTNKJ6BkiFMRI2dYCFxvm4tjeQCY5vr991dx2B-t7dr83dzyy4hHn3a5_2S0WJCdA5-tDfv9bROb-9IOd_x8v4v4_F7pE2_eT1l_tWvp7D9-cts_9XW99_fbff9Pn_-uB_-_X_vf_H36CsABJhoVEAZZEhIQaBhBAgBUFYQEUCAIAAEgaICAEwYFOwMAF1hIgBACgAGCAEAAIMgAQAACQAIRABAAUCAACAQKAAMACAYCABgYAAwAWAgEAAIDoGKYEEAgWACRmRUKYEIQCQQEtlQgkAQIK4QhFngEQCImCgAABIAKQABAWCwOJJASsSCALiCaAAAgAQCCAAoRSdmAIIAzZaq8GTaMrTAsHzBc9pgGSBEEZOSbAAAA.YAAAAAAAAAAA

HTTP Response

200
199.91.152.89:443

https://download1589.mediafire.com/ogncrodeio0gOAzk5-kA9BdX9HAOdFiZKdBKZKTJ1dnqxasQ3Po0ewp4x82dEQK6xbSs8EK9GtOyUMlkhVClk1izvULYOVxUYhwalTnGiDm_dKPKEqsd0jijqELOqLVDbtdY295HlqJObgZcvg8QrOyK55wLokZKDlbSYTEsg5Zl/3tatft4jogooizv/DiscordNitroGenerator.zip

tls, http

msedge.exe

81.1kB
3.7MB
1585
2672

HTTP Request

GET https://download1589.mediafire.com/ogncrodeio0gOAzk5-kA9BdX9HAOdFiZKdBKZKTJ1dnqxasQ3Po0ewp4x82dEQK6xbSs8EK9GtOyUMlkhVClk1izvULYOVxUYhwalTnGiDm_dKPKEqsd0jijqELOqLVDbtdY295HlqJObgZcvg8QrOyK55wLokZKDlbSYTEsg5Zl/3tatft4jogooizv/DiscordNitroGenerator.zip

HTTP Response

200
199.91.152.89:443

download1589.mediafire.com

tls

msedge.exe

989 B
4.6kB
9
10
13.224.81.13:443

https://sys.ctrackapp.com/0cba6f3d-0ea3-475c-9e2c-7e1b3d7198a0?var1=24&siteid=101&channel=File+Hosting+%26+Sharing&subchannel=File+Hosting+%26+Sharing&ipAddress=181.215.176.83&mediaId=136286&size=1024x768&cpv=0.01725&countryCode=GB&bid=17.25

tls, http2

msedge.exe

2.1kB
7.4kB
18
21

HTTP Request

GET https://sys.ctrackapp.com/0cba6f3d-0ea3-475c-9e2c-7e1b3d7198a0?var1=24&siteid=101&channel=File+Hosting+%26+Sharing&subchannel=File+Hosting+%26+Sharing&ipAddress=181.215.176.83&mediaId=136286&size=1024x768&cpv=0.01725&countryCode=GB&bid=17.25

HTTP Response

302
13.224.81.13:443

sys.ctrackapp.com

tls

msedge.exe

989 B
6.1kB
9
10
104.82.191.154:443

https://go.etoro.com/en/ai-stocks?cid=wnpgnov2j8i5cu87j48fkagi&src=24

tls, http2

msedge.exe

2.9kB
44.3kB
36
46

HTTP Request

GET https://go.etoro.com/en/ai-stocks?cid=wnpgnov2j8i5cu87j48fkagi&src=24

HTTP Response

200
2.22.54.105:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

127.1kB
412.0kB
532
618

HTTP Request

GET https://www.bing.com/qbox?query=proc&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=657fba9b6cf84ac0a329abff8289f4d0&oit=1&cp=4&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procc&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=5e0f5ee82d6b4a9983f8f196756639cb&oit=1&cp=5&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=procce&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=92b6c4d60a7041e9a344a1a990f8796a&oit=1&cp=6&pgcl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=98e165ad536749b6a0087f602c6904b2&oit=1&cp=7&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=procces+&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=f36a71d2350646868a86e8abb3558600&oit=1&cp=8&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=procces+h&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=984d0122252640b3a4adf67e592581df&oit=4&cp=9&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+ha&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=21167a6d9ff3486994b5f8ce5bf55996&oit=4&cp=10&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+hac&language=en-US&pt=EdgBox&cvid=bb16de10aea24be2b1899f95bf5d4b6d&ig=395deade768c4fe58fa53825b0ba41c2&oit=4&cp=11&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=k&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=466c57bcc07848e298947eda7556dde7&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=ke&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1a11e2c75754451fab88baa72d68f175&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=ker&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=a287df3660e84c06938d8a590509890c&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=p&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1abf437c984845e187c0fc765730c1f8&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=pr&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=fc4ced59b76741dabeff77628664e8ad&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=pro&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=302fa232f3094691b7a2bd8728f7b4bd&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=proc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=b9a96685fd6b48cf9274d9c919e41373&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=proce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=313e90b3a14448cd99ccc7ecb4375fa2&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=proces&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=ff18707dcdfd4923b7ebc2e1fdbb2bc3&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=proce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1429e97424ac416cb8724c347dc84329&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=proc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=520e2ed69a99433a829613139797dc57&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procc&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=8c163b6c663d441aaf11d389aeb7078f&oit=1&cp=5&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=procce&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=429dd12494404f30b125bca4034036d6&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=37acbc367651490c8d76caade1002431&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=1c32ee34283d4ee784feb40e3e2a2118&oit=1&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+h&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=bcc2a842ea714c968708d14f80aeeaea&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+ha&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=800dec2b0fbf4be68a663db9543c45da&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+hac&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=460291efd9184cd7bce96401cb2e1949&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+hack&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=a9f4c690ac63441895aa2cb4f3d30884&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=procces+hacke&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=12427fca226c4538a2cc39179f50aa3b&oit=4&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=procces+hacker&language=en-US&pt=EdgBox&cvid=7171c8428c2441668f369cf295bd456a&ig=05b9a34d92034ef19da314b07893911b&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.HeaderScopeOrder%22,%22FID%22:%22CI%22,%22Name%22:%22ScopeMapOrderValue%22,%22Text%22:%220%3A0%2C1%3A1%2C3%3A2%2C2%3A3%2C4%3A4%2C5%3A5%2C6%3A6%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:17,%22BC%22:428,%22SE%22:-1,%22TC%22:-1,%22H%22:479,%22BP%22:517,%22CT%22:536,%22IL%22:5},%22ad%22:[-1,-1,1263,609,1263,3712,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

GET https://www.bing.com/rp/IfrvNjTcSqeeIPH0BPEwha_gE9w.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=250124

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=50.933128356933594&lon=5.325577259063721&dispName=Hasselt%252C%2520Limburg&isEff=1&effLocType=4&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730295996%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%227.8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1737730295996%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A593%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296008%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1737730296024%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296025%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730296025%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730296026%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730296229%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=AB097B8EFB31445F80128D1468F1BED5&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296243%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1368%2C%22time%22%3A1369%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1737730296588%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1371%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730296590%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1372%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730296591%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=53048882&IID=SERP.5056&IG=AB097B8EFB31445F80128D1468F1BED5

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=AB097B8EFB31445F80128D1468F1BED5&IID=SERP.5066&q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1737730296608%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730296633%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730296633%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730296654%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730296654%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296715%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730296789%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1737730296924%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1737730297055%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297132%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297133%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.CookieGetBlocked%22%2C%22TS%22%3A1737730297139%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22dsc%22%7D%2C%7B%22Text%22%3A%220%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297163%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297163%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%229%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialConfigDisabled%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730297164%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=00FB2CFF638C6E2F2284398162C26F19&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297178%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1737730297201%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22789%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1737730297202%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221982%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1737730297202%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730297284%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22MouseEventId%22%3A%22d8c505bb-f34a-6e30-0d8d-a9da21b87ad8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1737730304179%2C%22Name%22%3A%22UserMouseEnter%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseEnter%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730304180%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730304493%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22MouseEventId%22%3A%22d8c505bb-f34a-6e30-0d8d-a9da21b87ad8%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.richRSAnswerCardMouseEvent%22%2C%22TS%22%3A1737730305131%2C%22Name%22%3A%22UserMouseLeave%22%2C%22FID%22%3A%22richRS.Answer.Card.MouseLeave%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c56200d3c6a24a1aaf61ae20f68e2dc5&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=un&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=ae0a761e26674915a793e38bb82cf6da&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=unc&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=526081d03b9648f19d9520f97a6726e1&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=unco&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=2596572c68864374bdccbcc75c970c16&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uncov&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=ca5dea671f28470a9e1d20b15a7a4649&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uncove&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c1845b558aff48b08bbd5a08f9bdaae5&oit=1&cp=6&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=uncover&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=66782149cad54a3cb515d4858423a6f2&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uncoveri&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=c7fddf60b285476aba5815c1ee09679c&oit=1&cp=8&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=uncoverit&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=17aef5ea044e432caf7456f9e3463841&oit=1&cp=9&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uncoverit.&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=19a32835dc78414499657f916fa7d144&oit=1&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uncoverit.o&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=2cdc0939a61441199cb45b8520092563&oit=1&cp=11&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=uncoverit.or&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=592cf22998c445b18a3d3909672c8e5a&oit=1&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uncoverit.org&language=en-US&pt=EdgBox&cvid=d732cd0809ac484c90def651d7004045&ig=fc1ee16f78a14bcbaded743ecbd7fbc4&oit=3&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.TabFocusChanged%22,%22FID%22:%22CI%22,%22Name%22:%22TabFocused%22,%22Text%22:%22Triggered%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-LogCustomEvent%22%2C%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1737730365719%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=AB097B8EFB31445F80128D1468F1BED5&ID=SERP,5212.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dc7bd1ad5418d85a4c42e7dc193bc1f607d1a0475226baf1fbd51c464e090411bJmltdHM9MTczNzY3NjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D177a3e47-8b82-6e60-16b3-2b398acc6ffe%26psq%3Dprocces%2Bhacker%26u%3Da1aHR0cHM6Ly9wcm9jZXNzaGFja2VyLnNvdXJjZWZvcmdlLmlvL2Rvd25sb2Fkcy5waHA%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=c7bd1ad5418d85a4c42e7dc193bc1f607d1a0475226baf1fbd51c464e090411bJmltdHM9MTczNzY3NjgwMA&ptn=3&ver=2&hsh=4&fclid=177a3e47-8b82-6e60-16b3-2b398acc6ffe&psq=procces+hacker&u=a1aHR0cHM6Ly9wcm9jZXNzaGFja2VyLnNvdXJjZWZvcmdlLmlvL2Rvd25sb2Fkcy5waHA&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366843%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366923%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730366955%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:49,%22BC%22:50,%22SE%22:-1,%22TC%22:-1,%22H%22:126,%22BP%22:129,%22CT%22:130,%22IL%22:5},%22ad%22:[-1,-1,1263,609,1263,3712,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=50.933128356933594&lon=5.325577259063721&dispName=Hasselt%252C%2520Limburg&isEff=1&effLocType=4&clientsid=undefined

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730370784%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%227.9%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1737730370784%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370798%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370798%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370800%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370804%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370805%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370806%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1737730370807%2C%22Name%22%3A98%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370809%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370811%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370812%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1737730370812%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370813%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1737730370813%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730370814%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1737730371066%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=AB097B8EFB31445F80128D1468F1BED5&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371161%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371166%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371228%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22Time%22%3A727%2C%22time%22%3A735%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1737730371314%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A736%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730371315%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A738%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1737730371317%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=53048882&IID=SERP.5056&IG=AB097B8EFB31445F80128D1468F1BED5

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=AB097B8EFB31445F80128D1468F1BED5&IID=SERP.5066&q=procces+hacker&cvid=7171c8428c2441668f369cf295bd456a&aqs=edge..69i57j0l6.4509j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1737730371345%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730371362%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226793a8f79b0b4d3bbde1bd4a49039282%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1737730371362%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1737730371389%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371432%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371521%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730371544%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730371682%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1737730371780%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1737730371883%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730371992%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730371993%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.CookieGetBlocked%22%2C%22TS%22%3A1737730371994%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22dsc%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialConfigDisabled%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%2210%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=00FB2CFF638C6E2F2284398162C26F19&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372015%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1737730372068%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22231%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1737730372071%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221489%22%2C%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1737730372071%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1737730372147%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730372684%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Interval%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730372739%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%2C%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730373740%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Interval%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=AB097B8EFB31445F80128D1468F1BED5&CID=177A3E478B826E6016B32B398ACC6FFE&TYPE=Event.ClientInst&DATA=%5B%7B%22EventCalledBy%22%3A%22V3-Log%22%2C%22T%22%3A%22CI.HoverLink%22%2C%22TS%22%3A1737730375474%2C%22Name%22%3A%22Hover%22%2C%22FID%22%3A%22Original%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=AB097B8EFB31445F80128D1468F1BED5&ID=SERP,5249.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D7033cd052e6d48e845b2a0e38ddbbcabdcd0b454aadda91c05e6156eceb50eb2JmltdHM9MTczNzY3NjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D177a3e47-8b82-6e60-16b3-2b398acc6ffe%26psq%3Dprocces%2Bhacker%26u%3Da1aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcHJvY2Vzc2hhY2tlci8%26ntb%3D1

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=7033cd052e6d48e845b2a0e38ddbbcabdcd0b454aadda91c05e6156eceb50eb2JmltdHM9MTczNzY3NjgwMA&ptn=3&ver=2&hsh=4&fclid=177a3e47-8b82-6e60-16b3-2b398acc6ffe&psq=procces+hacker&u=a1aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvcHJvY2Vzc2hhY2tlci8&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Response

204
2.22.54.105:443

www.bing.com

tls, http2

msedge.exe

1.1kB
5.1kB
10
11
95.100.153.174:443

https://th.bing.com/th?id=OVP.fnbYiMzB-WHhJYgb4LBy5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

tls, http2

msedge.exe

10.2kB
97.2kB
88
96

HTTP Request

GET https://th.bing.com/th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.159597f2-b9d6-4e36-bce3-033424a24c6d&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5RxT5Vqr5TpVNofpyGcd7wAAAA&w=80&h=80&c=1&vt=10&bgcl=6c1a34&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.YdtKYiWSTrn_6yw1LRGKJQAAAA&w=80&h=80&c=1&vt=10&bgcl=0d9381&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OVP.30NXiUb0NTRUgW4CS3isywHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.0b0e52a5-5ea5-4703-a031-2700057a4dab&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.5fecd719-3f3f-42ab-ba49-495a76ad1ca6&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.c69cc44c-9dfd-4150-b72a-951097c339e0&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.GyDS2ItjgCUgNovBTuCdzAHaFl&w=80&h=80&c=1&vt=10&bgcl=233a7a&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.5fecd719-3f3f-42ab-ba49-495a76ad1ca6&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.9U_zw8FBNHaIfmTtZq5iYQHaEv&w=80&h=80&c=1&vt=10&bgcl=ab4fb9&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.0b0e52a5-5ea5-4703-a031-2700057a4dab&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.3jAaQAj2mdeyrtevnyLcWwHaE7&w=80&h=80&c=1&vt=10&bgcl=c83a59&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.YdtKYiWSTrn_6yw1LRGKJQAAAA&w=80&h=80&c=1&vt=10&bgcl=7c358e&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?q=Process+Hacker+2&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Hacker+Program&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Hacking+Process&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=How+to+Use+Process+Hacker&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Remove+Hacker+From+Computer&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c380cd25-9f4c-4f43-aa35-ac4056316382&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.t3oKDOk4Uf4QNC2ZasdIygHaE6&w=80&h=80&c=1&vt=10&bgcl=5ae770&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.plKMqV9J_LBx2GA6ZAOoRAHaDt&w=80&h=80&c=1&vt=10&bgcl=52a61e&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.ff5b107f-5f37-4d76-bc98-20c438909b60&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.Hzl340_-a0X6eAxp9Vu0rgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.lCXmur0k7Evb2ib7gVUsVAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.fnbYiMzB-WHhJYgb4LBy5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200
95.100.153.174:443

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

tls, http2

msedge.exe

6.9kB
71.0kB
69
85

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

HTTP Request

GET https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

HTTP Request

GET https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

HTTP Request

GET https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

HTTP Request

GET https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

HTTP Request

GET https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

HTTP Request

GET https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

HTTP Request

GET https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

HTTP Request

GET https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

HTTP Request

GET https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

HTTP Request

GET https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

HTTP Request

GET https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

HTTP Request

GET https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

HTTP Request

GET https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

HTTP Request

GET https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

HTTP Request

GET https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

HTTP Request

GET https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

HTTP Request

GET https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

HTTP Request

GET https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
95.100.153.174:443

https://r.bing.com/rp/heVZKg3LbXfelmr07QxxUN00G_A.br.js

tls, http2

msedge.exe

27.5kB
809.8kB
421
619

HTTP Request

GET https://r.bing.com/rp/ApUcs9I_P5ZviowJ-xbpTfIx-dw.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/39aFuDYOXcTuksKDNHbykNJMC9s.br.js

HTTP Request

GET https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

HTTP Request

GET https://r.bing.com/rp/U6ozRLRanAQTt22qZDWCWxYnh5g.br.js

HTTP Request

GET https://r.bing.com/rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js

HTTP Request

GET https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

HTTP Request

GET https://r.bing.com/rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

HTTP Request

GET https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

HTTP Request

GET https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6q/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/9Z2GyyGvsKSVNrmOMrTfcv8z_yQ.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

HTTP Request

GET https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6q/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

HTTP Request

GET https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

HTTP Request

GET https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

HTTP Request

GET https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

HTTP Request

GET https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/-gqBS9VzaGQOAafzweDVcqAD18I.br.js

HTTP Request

GET https://r.bing.com/rp/UJFGe_i3c1Lxhghza2lclR7CxpI.br.js

HTTP Request

GET https://r.bing.com/rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js

HTTP Request

GET https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

HTTP Request

GET https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

HTTP Request

GET https://r.bing.com/rp/4zeVItCfYgDPP77N3dw2YBQRoCo.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rs/6q/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/hSAjq6w-jLSduDuFCKOr-TOJIA4.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/ARkHhpPGNjemsh-1_dUh9nylFLg.br.js

HTTP Request

GET https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

HTTP Request

GET https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

HTTP Request

GET https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

HTTP Request

GET https://r.bing.com/rp/WvsAjDpxGd1ajigH6cH78uvLzBI.br.js

HTTP Request

GET https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

HTTP Request

GET https://r.bing.com/rp/g7NRXrmIjF1z4aM0YyGzJ3H8Tsc.br.js

HTTP Request

GET https://r.bing.com/rp/k_DNa1TDg1SFhPx_XEzMve_fpFM.br.js

HTTP Request

GET https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Request

GET https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

HTTP Request

GET https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

HTTP Request

GET https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/7sVIRENPvB5B2xnhpn-VRMSSlAA.br.js

HTTP Request

GET https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

HTTP Request

GET https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

HTTP Request

GET https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/qOdUw6OeDxBWBEy9t0OhRL3yVWQ.br.js

HTTP Request

GET https://r.bing.com/rp/heVZKg3LbXfelmr07QxxUN00G_A.br.js

HTTP Response

200

HTTP Response

200
95.100.153.174:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
20.190.160.22:443

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d

tls, http2

msedge.exe

3.7kB
9.4kB
20
20

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d

HTTP Response

200

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=e2fe695f-fa8d-45d0-9442-66089b0aae1e&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22AB097B8EFB31445F80128D1468F1BED5%22%7d

HTTP Response

200
172.67.149.47:80

http://uncoverit.org/

http

msedge.exe

859 B
2.2kB
9
9

HTTP Request

GET http://uncoverit.org/

HTTP Response

301
172.67.149.47:80

uncoverit.org

msedge.exe

190 B
132 B
4
3
172.67.149.47:443

https://uncoverit.org/

tls, http2

msedge.exe

1.8kB
4.2kB
15
14

HTTP Request

GET https://uncoverit.org/

HTTP Response

301
104.21.55.153:443

https://www.uncoverit.org/cdn-cgi/rum?

tls, http2

msedge.exe

85.9kB
455.5kB
384
435

HTTP Request

GET https://www.uncoverit.org/

HTTP Response

403

HTTP Request

GET https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d870ba1e4968

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/favicon.ico

HTTP Response

403

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/flow/ov1/1765904639:1737727949:bKAY-Kv4-pl5Y7LD-XPQahUnLJhQ4KiNbbQ7CZvq1EE/9070d870ba1e4968/rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr

HTTP Response

200

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/rum?

HTTP Request

GET https://www.uncoverit.org/favicon.ico

HTTP Response

204

HTTP Response

403

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/flow/ov1/1765904639:1737727949:bKAY-Kv4-pl5Y7LD-XPQahUnLJhQ4KiNbbQ7CZvq1EE/9070d870ba1e4968/rozy_eSFAit8Xz7Px20wZ1hcgi32VpBFoTyLx8czO04-1737730327-1.2.1.1-Q12jXDsfKt35hG7KbgpkpY4tdDrRtkMGz5CPnUe1WECWegPjMBhXEFgOw3BP6DRr

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/favicon.ico

HTTP Request

POST https://www.uncoverit.org/

HTTP Response

403

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/_next/static/media/4473ecc91f70f139-s.p.woff

HTTP Request

GET https://www.uncoverit.org/_next/static/media/463dafcda517f24f-s.p.woff

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/webpack-b16b6fac8e0f6cc6.js

HTTP Request

GET https://www.uncoverit.org/_next/static/css/1deee776b4393c3c.css

HTTP Request

GET https://www.uncoverit.org/_next/static/css/164ebc3b1eea233f.css

HTTP Request

GET https://www.uncoverit.org/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/rum?

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/app/page-28f2f2f5f7b69c81.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/923-fb365082ec567bd5.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/801-82f95be1bcb75dd7.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/623e1c9f-e54c00be785d8657.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/c556396d-2fbf278af260a4c9.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/25a0ba94-4bd329d24b1e8639.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/5e319edb-fbe4f7fcecf99afc.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/app/layout-f2139370064121f0.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/main-app-d6d1ca59a1b97310.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/139-1c65d3bf1798e2df.js

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/a9d9791c-1f37140e0febae80.js

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.uncoverit.org/cdn-cgi/challenge-platform/scripts/jsd/main.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/favicon.ico

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/rum?

HTTP Response

302

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/scripts/jsd/725bd36e298b/main.js?

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/jsd/r/9070d8847e2d4968

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/challenge-platform/h/b/jsd/r/9070d8847e2d4968

HTTP Request

GET https://www.uncoverit.org/_vercel/speed-insights/script.js

HTTP Request

GET https://www.uncoverit.org/about?_rsc=1ld0r

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.uncoverit.org/_next/static/chunks/app/about/page-9e64c734f974b059.js

HTTP Response

404

HTTP Response

200

HTTP Request

POST https://www.uncoverit.org/cdn-cgi/rum?

HTTP Response

204
104.18.95.41:443

https://challenges.cloudflare.com/turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit

tls, http2

msedge.exe

3.2kB
38.6kB
42
54

HTTP Request

GET https://challenges.cloudflare.com/turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit

HTTP Response

200

HTTP Request

GET https://challenges.cloudflare.com/turnstile/v0/b/725bd36e298b/api.js?onload=pFJN6&render=explicit

HTTP Response

200
104.18.95.41:443

https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

tls, http2

msedge.exe

115.8kB
390.2kB
278
394

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/o6gj3/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/

HTTP Response

200

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9070d874d9d76552&lang=auto

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1073475835:1737728173:P8fvC8NZ4cIEpzGR6386jPozHRMcrKSmbZnXgB4FXbQ/9070d874d9d76552/.2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0

HTTP Response

200

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/9070d874d9d76552/1737730328220/84ed4fe911c27464cfdd73343bfae0258da7c7037751aae5346cdc99d41c03e9/rSn1ps5SxKRYfo9

HTTP Response

401

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/9070d874d9d76552/1737730328225/5n4Jzbhs1cbAeJM

HTTP Response

200

HTTP Request

POST https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1073475835:1737728173:P8fvC8NZ4cIEpzGR6386jPozHRMcrKSmbZnXgB4FXbQ/9070d874d9d76552/.2XJhXtVYEWY1xKAzVanR.u13JNhAMI01oBBrAPcUMc-1737730327-1.1.1.1-ljb8ijeM5XEi6lwLDye65hfD0GIS_nFmLvWwsO9X9VjYdmfD48XGlw_6SuxcG2F0

HTTP Response

200

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/ku5q3/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/

HTTP Response

200

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=9070d9accd786552&lang=auto

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

HTTP Response

200

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/9070d9accd786552/1737730378085/0660a23a1aea779144006f5f83c79ec3c321df50a265015c0439d676efa59ece/fMw1WVeJj94IZPZ

HTTP Response

401

HTTP Request

GET https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/9070d9accd786552/1737730378087/tt7CggVIfsO7XbI

HTTP Response

200

HTTP Request

POST https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

HTTP Response

200

HTTP Request

POST https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1545215665:1737728005:3_XAGjyr126prR4ERIJT-IwgFDQASLl1WjAShAdi_6c/9070d9accd786552/qAUNvY3Ed.wYElnPKjPgkm6gDOrGDfbxcGqpycVruq8-1737730377-1.1.1.1-nTvJYwbpb3AfNtzciaAIyt_v6bGr6P_3LoUfCS7fQjbnzfLHhIAM.x61Erkk29TQ

HTTP Response

200
104.16.80.73:443

https://static.cloudflareinsights.com/beacon.min.js

tls, http2

msedge.exe

2.0kB
11.1kB
21
21

HTTP Request

GET https://static.cloudflareinsights.com/beacon.min.js

HTTP Response

200
13.107.246.64:443

https://www.clarity.ms/s/0.7.63/clarity.js

tls, http2

msedge.exe

3.1kB
37.9kB
29
41

HTTP Request

GET https://www.clarity.ms/tag/p040quc4zq

HTTP Response

200

HTTP Request

GET https://www.clarity.ms/s/0.7.63/clarity.js

HTTP Response

200
4.227.249.197:443

https://u.clarity.ms/collect

tls, http

msedge.exe

22.8kB
8.3kB
36
22

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204
13.74.129.1:443

https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&MUID=24D145E39B6565E401C7509D9ADE6415

tls, http2

msedge.exe

1.9kB
8.1kB
14
15

HTTP Request

GET https://c.clarity.ms/c.gif

HTTP Response

302

HTTP Request

GET https://c.clarity.ms/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&MUID=24D145E39B6565E401C7509D9ADE6415

HTTP Response

200
204.79.197.237:443

https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&RedC=c.clarity.ms&MXFR=36A79636C8D266430F698348CCD268DB

tls, http2

msedge.exe

2.4kB
9.6kB
15
19

HTTP Request

GET https://c.bing.com/c.gif?ctsa=mr&CtsSyncId=AD37770772824B7DB192EF52FEF1ABCA&RedC=c.clarity.ms&MXFR=36A79636C8D266430F698348CCD268DB

HTTP Response

302
104.21.32.1:443

https://api.uncover.us.kg/sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24

tls, http2

msedge.exe

2.5kB
7.0kB
21
27

HTTP Request

OPTIONS https://api.uncover.us.kg/hash

HTTP Response

200

HTTP Request

POST https://api.uncover.us.kg/hash

HTTP Response

200

HTTP Request

GET https://api.uncover.us.kg/sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24

HTTP Response

200

HTTP Request

GET https://api.uncover.us.kg/sample/f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24

HTTP Response

200
104.18.11.31:443

https://processhacker.sourceforge.io/favicon.ico

tls, http2

msedge.exe

2.6kB
10.3kB
23
28

HTTP Request

GET https://processhacker.sourceforge.io/downloads.php

HTTP Response

200

HTTP Request

GET https://processhacker.sourceforge.io/include/css/custom.css

HTTP Request

GET https://processhacker.sourceforge.io/include/js/custom.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://processhacker.sourceforge.io/favicon.ico

HTTP Response

200
104.18.11.31:443

processhacker.sourceforge.io

tls

msedge.exe

897 B
2.7kB
7
5
104.17.25.14:443

https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/webfonts/fa-solid-900.woff2

tls, http2

msedge.exe

7.6kB
249.3kB
134
198

HTTP Request

GET https://cdnjs.cloudflare.com/ajax/libs/bootswatch/4.5.0/darkly/bootstrap.min.css

HTTP Request

GET https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/css/all.min.css

HTTP Request

GET https://cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js

HTTP Request

GET https://cdnjs.cloudflare.com/ajax/libs/bootstrap/4.5.3/js/bootstrap.min.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.2/webfonts/fa-solid-900.woff2

HTTP Response

200
104.17.25.14:443

cdnjs.cloudflare.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.17.25.14:443

cdnjs.cloudflare.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.17.25.14:443

cdnjs.cloudflare.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.18.12.149:443

https://sourceforge.net/rest/p/processhacker/activity?limit=5

tls, http2

msedge.exe

36.8kB
217.0kB
176
269

HTTP Request

GET https://sourceforge.net/sflogo.php?type=17&group_id=242527

HTTP Response

200

HTTP Request

GET https://sourceforge.net/projects/processhacker/

HTTP Response

403

HTTP Request

GET https://sourceforge.net/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=9070d9a9692e4134

HTTP Response

200

HTTP Request

GET https://sourceforge.net/favicon.ico

HTTP Request

POST https://sourceforge.net/cdn-cgi/challenge-platform/h/b/flow/ov1/480978294:1737728056:M960XY5nQsOLgM191aPCzcwNTHodjwgKBiXJ8xcP_Dg/9070d9a9692e4134/KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://sourceforge.net/cdn-cgi/challenge-platform/h/b/flow/ov1/480978294:1737728056:M960XY5nQsOLgM191aPCzcwNTHodjwgKBiXJ8xcP_Dg/9070d9a9692e4134/KrLIfb7I6y32GI1jNSLrRNTZAibv9hxjZ86bKfnC1HI-1737730377-1.2.1.1-ejT5JGztt4RwJJCEuWYfzakJFKhKWirkLeIfdiwCJ7ECfnZTQoum_dcedcMJKsY1

HTTP Response

200

HTTP Request

POST https://sourceforge.net/projects/processhacker/

HTTP Response

200

HTTP Request

GET https://sourceforge.net/rest/p/processhacker/activity?limit=5

HTTP Response

200

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=70311&c=13569&z=67693&cb=1c31a9a5ff

HTTP Response

200

HTTP Request

GET https://sourceforge.net/projects/processhacker/files/latest/download

HTTP Response

103

HTTP Request

PUT https://sourceforge.net/p/sfapi/push_vid

HTTP Response

200

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=76573&c=14775&z=73969&cb=86302c138e

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=67785&c=13077&z=65157&cb=0a8860b39c

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=74567&c=14365&z=71959&cb=b0e02e0b26

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=74417&c=14331&z=71809&cb=fe1c382b3f

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=71073&c=13701&z=68459&cb=62602a44fd

HTTP Request

PUT https://sourceforge.net/p/sfapi/push_vid

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://downloads.sourceforge.net/project/processhacker/processhacker2/processhacker-2.39-setup.exe?ts=gAAAAABnk6lbKR7DSa7L33lHn38s9qUhyvqzaLVXM1pnPgp9mnl5owr94FzV9NsShy1EY-jcPdeU7L5jXDQwkIqJB_Xf3nemSg%3D%3D&use_mirror=netix&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F

HTTP Response

302

HTTP Request

GET https://sourceforge.net/projects/processhacker/postdownload

HTTP Response

103

HTTP Response

200

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=70311&c=13569&z=67693&cb=1c31a9a5ff

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=70769&c=13647&z=68149&cb=22f270a2e4

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=67939&c=13111&z=65311&cb=8fcf8e6c12

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://sourceforge.net/projects/processhacker/

HTTP Response

103

HTTP Response

200

HTTP Request

GET https://sourceforge.net/directory/tp3/?b=77405&c=14943&z=74801&cb=226f3cfef7

HTTP Response

200

HTTP Request

GET https://sourceforge.net/rest/p/processhacker/activity?limit=5

HTTP Response

200
216.239.32.36:443

https://region1.google-analytics.com/g/collect?v=2&tid=G-7H00X2X1J4&gtm=45je51n0v9101840464za200&_p=1737730368671&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=102067555~102067808~102081485~102123608&cid=436559282.1737730369&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730368&sct=1&seg=0&dl=https%3A%2F%2Fprocesshacker.sourceforge.io%2Fdownloads.php&dr=https%3A%2F%2Fwww.bing.com%2F&dt=Downloads%20-%20Process%20Hacker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1080

tls, http2

msedge.exe

2.2kB
7.3kB
15
17

HTTP Request

POST https://region1.google-analytics.com/g/collect?v=2&tid=G-7H00X2X1J4&gtm=45je51n0v9101840464za200&_p=1737730368671&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=102067555~102067808~102081485~102123608&cid=436559282.1737730369&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1737730368&sct=1&seg=0&dl=https%3A%2F%2Fprocesshacker.sourceforge.io%2Fdownloads.php&dr=https%3A%2F%2Fwww.bing.com%2F&dt=Downloads%20-%20Process%20Hacker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1080
2.22.54.122:443

th.bing.com

tls, http2

msedge.exe

1.0kB
986 B
8
9
4.227.249.197:443

https://u.clarity.ms/collect

tls, http

msedge.exe

3.0kB
6.4kB
12
12

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204
104.18.16.56:443

a.fsdn.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.18.16.56:443

a.fsdn.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.18.16.56:443

https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2

tls, http2

msedge.exe

3.7kB
56.5kB
54
55

HTTP Request

GET https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2

HTTP Request

GET https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2

HTTP Response

200

HTTP Response

200
104.18.16.56:443

https://a.fsdn.com/con/app/nel_img/19177

tls, http2

msedge.exe

20.0kB
465.8kB
342
440

HTTP Request

GET https://a.fsdn.com/con/css/lato.css?1737649919

HTTP Request

GET https://a.fsdn.com/con/css/sandiego.css?1737649919

HTTP Request

GET https://a.fsdn.com/con/css/sftheme/sandiego/cmp.css?1737649919

HTTP Request

GET https://a.fsdn.com/con/css/disallow.css?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/adpopup.js?1737649919

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-base.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-foundation-base.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-foundation-tooltip.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-project.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/images/sandiego/sf-logo-full.svg

HTTP Request

GET https://a.fsdn.com/con/assets/maxnav/sourceforge/okta300-7baad53c.png

HTTP Request

GET https://a.fsdn.com/allura/p/processhacker/icon?1518244867

HTTP Request

GET https://a.fsdn.com/con/images/sandiego/sf-icon-black.svg

HTTP Request

GET https://a.fsdn.com/con/js/sandiego/vendor/owl.carousel.min.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/sandiego/vendor/featherlight.min.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/js/sandiego/vendor/featherlight.gallery.min.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/17763

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/app/syndication/badge_img_direct/oss-open-source-excellence/oss-open-source-excellence/?variant_id=sf

HTTP Request

GET https://a.fsdn.com/con/app/proj/processhacker/screenshots/283033.jpg/245/183/1

HTTP Request

GET https://a.fsdn.com/con/app/proj/processhacker/screenshots/318705.jpg/245/183/1

HTTP Request

GET https://a.fsdn.com/con/img/sandiego/svg/originals/sf_star_yellow.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/allura/p/portableapps/icon?1706738669?&w=48

HTTP Request

GET https://a.fsdn.com/allura/p/sevenzip/icon?1715850074?&w=48

HTTP Request

GET https://a.fsdn.com/allura/p/vlc/icon?1400654415

HTTP Request

GET https://a.fsdn.com/allura/mirror/arduino/icon?fb8cf3e7fcfd4388d7a8183b8efe839dcfceeb92a0308245ca8027f05c872701?&w=48

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/img/sandiego/svg/originals/sf-icon-orange-no_sf.svg

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/js/min/sf.sandiego-dwnld.js?1737649919

HTTP Request

GET https://a.fsdn.com/mirrorimages/netix-large.png

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/18981

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/17209

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/18473

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/18443

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/17887

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/img/sandiego/logo-180x180.png

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/js/lib/big-text.js?1737649919

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/18069

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/17229

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://a.fsdn.com/con/app/nel_img/19177

HTTP Response

200
104.18.16.56:443

a.fsdn.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.18.16.56:443

a.fsdn.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.18.16.56:443

a.fsdn.com

tls, http2

msedge.exe

943 B
3.1kB
8
6
104.18.16.56:443

a.fsdn.com

tls

msedge.exe

897 B
2.5kB
7
5
87.230.98.76:443

https://d.delivery.consentmanager.net/delivery/consent.php?id=11319&p=3&v=1&cvc=_c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U_&cpc=__&c=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&l=EN&lv=23742&d=1&ct=1&e=&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&e2=&e3=&i=&sv=56&dv=12&cookieallowed=1&reg=1&rk=GDPR&usps=1---

tls, http

msedge.exe

6.1kB
10.4kB
20
16

HTTP Request

GET https://d.delivery.consentmanager.net/delivery/cmp.php?&cdid=f46fb9b4e114&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&o=1737730382096

HTTP Response

200

HTTP Request

GET https://d.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=1&id=11319&o=1737730383&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&odw=0&dlt=1&l=en

HTTP Response

200

HTTP Request

GET https://d.delivery.consentmanager.net/delivery/cmp.php?__cmpcc=2&__cmpfcc=1&id=11319&o=1737730383&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&&l=en&odw=0&dlt=1&l=en

HTTP Response

200

HTTP Request

GET https://d.delivery.consentmanager.net/delivery/info/?id=11319&did=1&cfdid=1&t=pv.d_ncs.d_ancs.d_bncs&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&o=1737730382920&l=EN&lv=23742&d=1&ct=14&e=&e2=&e3=&i=&sv=56&dv=12&

HTTP Response

200

HTTP Request

GET https://d.delivery.consentmanager.net/delivery/info/?id=11319&did=1&cfdid=1&t=cv&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&o=1737730382922&l=EN&lv=23742&d=1&ct=14&e=&e2=&e3=&i=&sv=56&dv=12&

HTTP Response

200

HTTP Request

GET https://d.delivery.consentmanager.net/delivery/consent.php?id=11319&p=3&v=1&cvc=_c63062_c37910_s65_s23_s26_s135_s10_c48392_s30_U_&cpc=__&c=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&l=EN&lv=23742&d=1&ct=1&e=&h=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&e2=&e3=&i=&sv=56&dv=12&cookieallowed=1&reg=1&rk=GDPR&usps=1---

HTTP Response

200
84.17.50.9:443

https://cdn.consentmanager.net/delivery/customdata/bV8xLndfMTEzMTkucl9HRFBSLmxfZW4uZF8yNDkyLnhfMTIudi5wLnRfMjQ5Mi54dF81Ng.js

tls, http2

msedge.exe

4.1kB
126.3kB
64
104

HTTP Request

GET https://cdn.consentmanager.net/delivery/js/cmp_en.min.js

HTTP Response

200

HTTP Request

GET https://cdn.consentmanager.net/delivery/customdata/bV8xLndfMTEzMTkucl9HRFBSLmxfZW4uZF8yNDkyLnhfMTIudi5wLnRfMjQ5Mi54dF81Ng.js

HTTP Response

200
104.18.4.227:443

https://c.sf-syn.com/conversion_outbound_tracker/sf

tls, http2

msedge.exe

2.0kB
9.9kB
19
19

HTTP Request

GET https://c.sf-syn.com/conversion_outbound_tracker/sf

HTTP Response

200
87.230.98.76:443

d.delivery.consentmanager.net

tls

msedge.exe

3.5kB
4.5kB
15
12
104.18.40.119:443

https://as.sourceforge.net/loader.min.js

tls, http2

msedge.exe

2.5kB
22.0kB
19
25

HTTP Request

GET https://as.sourceforge.net/loader.min.js

HTTP Response

200
172.67.41.60:443

https://btloader.com/tag?o=5098683085881344&upapi=true

tls, http2

msedge.exe

3.0kB
26.0kB
36
37

HTTP Request

GET https://btloader.com/tag?o=5098683085881344&upapi=true

HTTP Response

200

HTTP Request

GET https://btloader.com/tag?o=5098683085881344&upapi=true

HTTP Response

304

HTTP Request

GET https://btloader.com/tag?o=5098683085881344&upapi=true

HTTP Response

304
34.117.77.79:443

https://ml314.com/tag.aspx?2402025

tls, http2

msedge.exe

2.1kB
19.5kB
23
24

HTTP Request

GET https://ml314.com/tag.aspx?2402025
216.105.38.9:443

https://analytics.slashdotmedia.com/sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=182633&h=14&m=53&s=14&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=1&gt_ms=730&pv_id=ts7ywY

tls, http

msedge.exe

4.0kB
72.1kB
36
59

HTTP Request

GET https://analytics.slashdotmedia.com/sf.js

HTTP Response

200

HTTP Request

GET https://analytics.slashdotmedia.com/sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=182633&h=14&m=53&s=14&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=1&gt_ms=730&pv_id=ts7ywY

HTTP Response

200
95.100.153.131:443

https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22timeSpent%22%3A%229012%22%2C%22totalTimeSpent%22%3A%2285388%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

tls, http2

msedge.exe

68.8kB
51.6kB
152
220

HTTP Request

GET https://j.6sc.co/j/58729049-be80-466a-9abf-b3911430bbd8.js

HTTP Response

200

HTTP Request

GET https://j.6sc.co/6si.min.js

HTTP Response

200

HTTP Request

GET https://c.6sc.co/

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A14%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=click&q=%7B%22event_value%22%3A%22%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload%22%2C%22event_id%22%3A%22%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F%3F__cf_chl_tk%3DPzXB0qhLsrDEvwrNM.yznckFcrEBbN4PCPNlNw8Tijk-1737730377-1.0.1.1-ukS.NKXP123An3Kct9ZV6gYso4E37jP5eSNlUmDu_Tg&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=2bc0a98d-55fe-4ab1-81dc-60279606a8fe&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://c.6sc.co/

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A17%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A15%20GMT%22%2C%22timeSpent%22%3A%221011%22%2C%22totalTimeSpent%22%3A%221011%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A18%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A17%20GMT%22%2C%22timeSpent%22%3A%221017%22%2C%22totalTimeSpent%22%3A%222028%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A19%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A18%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%223031%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A19%20GMT%22%2C%22timeSpent%22%3A%221009%22%2C%22totalTimeSpent%22%3A%224040%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A21%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A20%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%225050%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A22%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A21%20GMT%22%2C%22timeSpent%22%3A%221015%22%2C%22totalTimeSpent%22%3A%226065%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A23%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A22%20GMT%22%2C%22timeSpent%22%3A%221004%22%2C%22totalTimeSpent%22%3A%227069%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A24%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A23%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%228076%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A25%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A24%20GMT%22%2C%22timeSpent%22%3A%221018%22%2C%22totalTimeSpent%22%3A%229094%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A26%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A25%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%2210101%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A26%20GMT%22%2C%22timeSpent%22%3A%223006%22%2C%22totalTimeSpent%22%3A%2213107%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A29%20GMT%22%2C%22timeSpent%22%3A%223018%22%2C%22totalTimeSpent%22%3A%2216125%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A35%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A32%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2219138%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Download%20Process%20Hacker%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&pageViewId=ca55070f-f83d-49a1-89cb-bc1f270d5e0d&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://c.6sc.co/

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A39%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A37%20GMT%22%2C%22timeSpent%22%3A%221118%22%2C%22totalTimeSpent%22%3A%221118%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A40%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A39%20GMT%22%2C%22timeSpent%22%3A%221026%22%2C%22totalTimeSpent%22%3A%222144%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A41%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A40%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%223157%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A42%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A41%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%224167%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A43%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A42%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%225180%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A44%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A43%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%226187%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A45%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A44%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%227190%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A46%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A45%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%228193%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A47%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A46%20GMT%22%2C%22timeSpent%22%3A%221016%22%2C%22totalTimeSpent%22%3A%229209%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A48%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A47%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%2210215%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A51%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A48%20GMT%22%2C%22timeSpent%22%3A%223009%22%2C%22totalTimeSpent%22%3A%2213224%22%7D&isIframe=false&m=%7B%22description%22%3A%22View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%22%2C%22keywords%22%3A%22Security%2C%20Software%20Development%2C%20Systems%20Administration%2C%20%20Open%20Source%2C%20Open%20Source%20Software%2C%20Development%2C%20Community%2C%20Source%20Code%2C%20Secure%2C%20%20Downloads%2C%20Free%20Software%22%2C%22title%22%3A%22Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&pageViewId=99e627e7-1f7e-43e7-8f36-6a51b1496852&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://c.6sc.co/

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=a_pageload&q=%7B%22pageLoadTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=ni%3AasyncSettingsAudit&q=%7B%22settings%22%3A%22%5B%7B%5C%22name%5C%22%3A%5C%22setToken%5C%22%2C%5C%22value%5C%22%3A%5C%22b194ff4ae786d6e71c726afec1072e2d%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22disableCookies%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIPv6Ping%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableIgnorePageUrlHash%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableRetargeting%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setWhiteListFields%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCustomMetatags%5C%22%2C%5C%22value%5C%22%3A%5C%22%5B%5D%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22storeTagId%5C%22%2C%5C%22value%5C%22%3A%5C%2258729049-be80-466a-9abf-b3911430bbd8%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableEventTracking%5C%22%2C%5C%22value%5C%22%3A%5C%22true%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22setCompanyDetailsExpiration%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableMapCookieCapture%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%2C%7B%5C%22name%5C%22%3A%5C%22enableCompanyDetails%5C%22%2C%5C%22value%5C%22%3A%5C%22false%5C%22%2C%5C%22dateTime%5C%22%3A%5C%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%5C%22%2C%5C%22timeSincePageLoad%5C%22%3A%5C%220%5C%22%7D%5D%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A56%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A55%20GMT%22%2C%22timeSpent%22%3A%221045%22%2C%22totalTimeSpent%22%3A%221045%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A57%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A56%20GMT%22%2C%22timeSpent%22%3A%221007%22%2C%22totalTimeSpent%22%3A%222052%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A58%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A57%20GMT%22%2C%22timeSpent%22%3A%221013%22%2C%22totalTimeSpent%22%3A%223065%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A59%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A58%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%224071%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A00%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A53%3A59%20GMT%22%2C%22timeSpent%22%3A%221006%22%2C%22totalTimeSpent%22%3A%225077%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A01%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A00%20GMT%22%2C%22timeSpent%22%3A%221005%22%2C%22totalTimeSpent%22%3A%226082%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A02%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A01%20GMT%22%2C%22timeSpent%22%3A%221003%22%2C%22totalTimeSpent%22%3A%227085%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A03%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A02%20GMT%22%2C%22timeSpent%22%3A%221010%22%2C%22totalTimeSpent%22%3A%228095%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A04%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A03%20GMT%22%2C%22timeSpent%22%3A%221015%22%2C%22totalTimeSpent%22%3A%229110%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A05%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A04%20GMT%22%2C%22timeSpent%22%3A%221005%22%2C%22totalTimeSpent%22%3A%2210115%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A08%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A05%20GMT%22%2C%22timeSpent%22%3A%223004%22%2C%22totalTimeSpent%22%3A%2213119%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A11%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A08%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2216132%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A14%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A11%20GMT%22%2C%22timeSpent%22%3A%223052%22%2C%22totalTimeSpent%22%3A%2219184%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A17%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A14%20GMT%22%2C%22timeSpent%22%3A%223004%22%2C%22totalTimeSpent%22%3A%2222188%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A17%20GMT%22%2C%22timeSpent%22%3A%223085%22%2C%22totalTimeSpent%22%3A%2225273%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A23%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A20%20GMT%22%2C%22timeSpent%22%3A%223016%22%2C%22totalTimeSpent%22%3A%2228289%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A26%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A23%20GMT%22%2C%22timeSpent%22%3A%223010%22%2C%22totalTimeSpent%22%3A%2231299%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A29%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A26%20GMT%22%2C%22timeSpent%22%3A%223016%22%2C%22totalTimeSpent%22%3A%2234315%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A32%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A29%20GMT%22%2C%22timeSpent%22%3A%223017%22%2C%22totalTimeSpent%22%3A%2237332%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A35%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A32%20GMT%22%2C%22timeSpent%22%3A%223013%22%2C%22totalTimeSpent%22%3A%2240345%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A44%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A35%20GMT%22%2C%22timeSpent%22%3A%229011%22%2C%22totalTimeSpent%22%3A%2249356%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A53%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A44%20GMT%22%2C%22timeSpent%22%3A%229015%22%2C%22totalTimeSpent%22%3A%2258371%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A02%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A54%3A53%20GMT%22%2C%22timeSpent%22%3A%229003%22%2C%22totalTimeSpent%22%3A%2267374%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A02%20GMT%22%2C%22timeSpent%22%3A%229002%22%2C%22totalTimeSpent%22%3A%2276376%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200

HTTP Request

GET https://b.6sc.co/v1/beacon/img.gif?token=b194ff4ae786d6e71c726afec1072e2d&svisitor=null&visitor=df00f312-3690-4142-826e-69b5a5d0a619&session=aebd156d-09df-4efc-816a-5b1a64caf4f3&event=active_time_track&q=%7B%22currentTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A20%20GMT%22%2C%22lastTrackTime%22%3A%22Fri%2C%2024%20Jan%202025%2014%3A55%3A11%20GMT%22%2C%22timeSpent%22%3A%229012%22%2C%22totalTimeSpent%22%3A%2285388%22%7D&isIframe=false&m=%7B%22description%22%3A%22Download%20Process%20Hacker%20for%20free.%20View%20and%20manage%20processes%2C%20services%20and%20more%20with%20this%20powerful%20tool.%20Process%20Hacker%20is%20a%20free%20and%20open%20source%20process%20viewer.%20This%20multi-purpose%20tool%20will%20assist%20you%20with%20debugging%2C%20malware%20detection%20and%20system%20monitoring.%22%2C%22keywords%22%3A%22Process%20Hacker%2C%20download%20Process%20Hacker%20free%2C%20Security%2C%20Software%20Development%2C%20Systems%20Administration%22%2C%22title%22%3A%22Process%20Hacker%20download%20%7C%20SourceForge.net%22%7D&cb=&r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&pageViewId=773fc2c6-b2b2-4bb8-8373-8f5b6666af51&webTagId=58729049-be80-466a-9abf-b3911430bbd8&v=1.1.31

HTTP Response

200
142.250.187.194:443

https://securepubads.g.doubleclick.net/tag/js/gpt.js

tls, http2

msedge.exe

2.8kB
42.5kB
37
40

HTTP Request

GET https://securepubads.g.doubleclick.net/tag/js/gpt.js
104.18.40.119:443

https://as.sourceforge.net/script/sourceforge.net.js?h=1543827892

tls, http2

msedge.exe

4.6kB
142.4kB
76
110

HTTP Request

GET https://as.sourceforge.net/script/sourceforge.net.js?h=1543827892

HTTP Response

200
104.21.48.1:443

https://bt.dns-finder.com/px.gif

tls, http2

msedge.exe

1.6kB
4.4kB
13
12

HTTP Request

GET https://bt.dns-finder.com/px.gif

HTTP Response

200
130.211.23.194:443

https://api.btloader.com/log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true

tls, http2

msedge.exe

2.5kB
6.2kB
17
17

HTTP Request

POST https://api.btloader.com/log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true

HTTP Request

POST https://api.btloader.com/log?tid=lGVZKXorUx-qtBqT5WU-9498cd87fc&cv=2.1.74-1-g0aa3ce9&sid=BmGG5dlsxy-78FXVlR4-9498cd87fc&upapi=true
130.211.23.194:443

api.btloader.com

tls, http2

msedge.exe

989 B
5.5kB
9
9
104.26.3.70:443

ad-delivery.net

tls, http2

msedge.exe

2.0kB
3.5kB
9
7
104.26.3.70:443

https://ad-delivery.net/px.gif?ch=1

tls, http2

msedge.exe

4.4kB
11.6kB
36
35

HTTP Request

GET https://ad-delivery.net/px.gif?ch=2

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.8836728386224286

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=2

HTTP Response

304

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.30326168343902693

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1

HTTP Response

304

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.7128581549909863

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1

HTTP Response

304

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.46288306994573736

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1

HTTP Response

304
172.217.169.34:443

pubads.g.doubleclick.net

tls, http2

msedge.exe

999 B
5.8kB
9
8
172.217.169.34:443

https://pubads.g.doubleclick.net/activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901712041;ord=6678587416943325?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2

tls, http2

msedge.exe

2.4kB
7.3kB
17
20

HTTP Request

GET https://pubads.g.doubleclick.net/activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901705213;ord=419132209811763?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2

HTTP Request

GET https://pubads.g.doubleclick.net/activity;dc_iu=/41014381/DFPAudiencePixel;dc_seg=8901712041;ord=6678587416943325?ptt=22&gdpr=1&tad=0&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&addtl_consent=2~1097.229~dv.&gpp=DBABM~CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA&gpp_sid=2
95.100.153.162:443

https://ipv6.6sc.co/

tls, http2

msedge.exe

2.3kB
7.1kB
23
30

HTTP Request

GET https://ipv6.6sc.co/

HTTP Response

200

HTTP Request

GET https://ipv6.6sc.co/

HTTP Response

200

HTTP Request

GET https://ipv6.6sc.co/

HTTP Response

200

HTTP Request

GET https://ipv6.6sc.co/

HTTP Response

200
108.128.211.102:443

https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22052&dpuuid=3650068291290398872&redir=

tls, http2

msedge.exe

2.1kB
6.8kB
19
19

HTTP Request

GET https://dpm.demdex.net/ibs:dpid=22052&dpuuid=3650068291290398872&redir=

HTTP Response

302

HTTP Request

GET https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=22052&dpuuid=3650068291290398872&redir=

HTTP Response

200
35.244.174.68:443

https://idsync.rlcdn.com/395886.gif?partner_uid=3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

tls, http2

msedge.exe

1.9kB
7.6kB
14
16

HTTP Request

GET https://idsync.rlcdn.com/395886.gif?partner_uid=3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA
15.197.193.217:443

https://match.adsrvr.org/track/cmf/generic?ttd_pid=d0tro1j&ttd_tpi=1&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

tls, http2

msedge.exe

3.0kB
5.4kB
16
17

HTTP Request

GET https://match.adsrvr.org/track/cmf/generic?ttd_pid=d0tro1j&ttd_tpi=1&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

HTTP Response

200
185.89.210.90:443

https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fml314.com%2Fcsync.ashx%253Ffp%3D%24UID%2526person_id%3D3650068291290398872%2526eid%3D2

tls, http2

msedge.exe

3.0kB
5.6kB
15
16

HTTP Request

GET https://ib.adnxs.com/getuid?https://ml314.com/csync.ashx%3Ffp=$UID%26person_id=3650068291290398872%26eid=2

HTTP Response

307

HTTP Request

GET https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fml314.com%2Fcsync.ashx%253Ffp%3D%24UID%2526person_id%3D3650068291290398872%2526eid%3D2

HTTP Response

302
18.184.216.10:443

https://ps.eyeota.net/pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

tls, http

msedge.exe

2.7kB
7.6kB
13
12

HTTP Request

GET https://ps.eyeota.net/pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

HTTP Response

200

HTTP Request

GET https://ps.eyeota.net/pixel?pid=r8hrb20&t=gif&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

HTTP Response

200
216.58.212.194:443

https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env

tls, http2

msedge.exe

3.2kB
20.4kB
21
29

HTTP Request

GET https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env

HTTP Request

GET https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gpt&tv=m202501210101&st=env
216.58.201.97:443

c2934a4de76a9d45fc7971c10d1ad4c3.safeframe.googlesyndication.com

tls, http2

msedge.exe

1.1kB
6.0kB
11
10
34.96.70.87:443

https://invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js

tls, http2

msedge.exe

1.7kB
5.7kB
13
13

HTTP Request

GET https://invstatic101.creativecdn.com/encrypted-signals/encrypted-tag-g.js
151.101.129.229:443

cdn.jsdelivr.net

tls

msedge.exe

1.1kB
5.6kB
11
12
34.102.146.192:443

oa.openxcdn.net

tls, http2

msedge.exe

1.1kB
5.5kB
11
10
104.22.53.86:443

https://cdn.id5-sync.com/api/1.0/esp.js

tls, http2

msedge.exe

1.6kB
3.3kB
11
10

HTTP Request

GET https://cdn.id5-sync.com/api/1.0/esp.js
178.250.1.39:443

https://static.criteo.net/images/pixel.gif?ch=1&upapi=true

tls, http2

msedge.exe

2.6kB
36.4kB
31
34

HTTP Request

GET https://static.criteo.net/js/ld/publishertag.prebid.js

HTTP Request

GET https://static.criteo.net/images/pixel.gif?ch=1&upapi=true

HTTP Response

200

HTTP Response

200
178.250.1.39:443

static.criteo.net

tls

msedge.exe

989 B
4.2kB
9
8
178.250.1.39:443

static.criteo.net

tls

msedge.exe

989 B
4.2kB
9
8
18.172.98.202:443

cdn.prod.euid.eu

tls

msedge.exe

989 B
5.5kB
9
11
104.26.7.141:443

https://cdn.btmessage.com/webfonts43j533.js

tls, http2

msedge.exe

3.5kB
60.3kB
44
65

HTTP Request

GET https://cdn.btmessage.com/script/rlink.js?o=5098683085881344&bt_env=prod

HTTP Response

200

HTTP Request

GET https://api.btmessage.com/websiteconfig?bt_env=prod&o=5098683085881344&w=sourceforge.net&l=EN

HTTP Response

200

HTTP Request

GET https://cdn.btmessage.com/webfonts43j533.js

HTTP Response

200

HTTP Request

GET https://cdn.btmessage.com/webfonts43j533.js

HTTP Response

304

HTTP Request

GET https://cdn.btmessage.com/webfonts43j533.js

HTTP Response

304
18.165.159.204:443

cdn.prod.uidapi.com

tls

msedge.exe

989 B
5.5kB
9
11
95.100.195.184:443

dmp.im-apps.net

tls, http2

msedge.exe

1.1kB
4.8kB
10
12
142.250.187.194:443

googleads.g.doubleclick.net

tls, http2

msedge.exe

1.1kB
5.9kB
11
10
216.105.38.9:443

https://analytics.slashdotmedia.com/sf.php?action_name=Download%20Process%20Hacker&idsite=39&rec=1&r=767621&h=14&m=53&s=15&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_dwnld&dimension3=undefined&gt_ms=366&pv_id=JivZ2E

tls, http

msedge.exe

2.2kB
1.3kB
10
9

HTTP Request

GET https://analytics.slashdotmedia.com/sf.php?action_name=Download%20Process%20Hacker&idsite=39&rec=1&r=767621&h=14&m=53&s=15&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_dwnld&dimension3=undefined&gt_ms=366&pv_id=JivZ2E

HTTP Response

200
216.58.201.97:443

https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html

tls, http2

msedge.exe

2.9kB
16.1kB
27
34

HTTP Request

GET https://f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html

HTTP Request

GET https://731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html

HTTP Request

GET https://9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
35.244.159.8:443

https://us-u.openx.net/w/1.0/cm?id=42c6242a-808f-4528-a53e-218ee9c324f3&r=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Feid%3D92690%26person_id%3D3650068291290398872%26fp%3D

tls, http2

msedge.exe

1.8kB
5.1kB
14
14

HTTP Request

GET https://us-u.openx.net/w/1.0/cm?id=42c6242a-808f-4528-a53e-218ee9c324f3&r=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Feid%3D92690%26person_id%3D3650068291290398872%26fp%3D
151.101.129.44:443

https://trc.taboola.com/sg/bombora/1/cm?redirect=https://ml314.com/csync.ashx%3Ffp=%3CTUID%3E%26person_id=3650068291290398872%26eid=50077

tls, http2

msedge.exe

1.7kB
5.5kB
12
15

HTTP Request

GET https://trc.taboola.com/sg/bombora/1/cm?redirect=https://ml314.com/csync.ashx%3Ffp=%3CTUID%3E%26person_id=3650068291290398872%26eid=50077

HTTP Response

200
54.229.84.60:443

https://sync.crwdcntrl.net/map/c=6985/tp=BOMB?https://ml314.com/csync.ashx%3Ffp%3D%24%7Bprofile_id%7D%26eid%3D50146%26person_id%3D3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

tls, http2

msedge.exe

2.0kB
5.6kB
15
15

HTTP Request

GET https://sync.crwdcntrl.net/map/c=6985/tp=BOMB?https://ml314.com/csync.ashx%3Ffp%3D%24%7Bprofile_id%7D%26eid%3D50146%26person_id%3D3650068291290398872&gdpr=1&gdpr_consent=CQLvHAAQLvHAAAfUnBENBaFsAP_AAEPAACiQGgwBgBBACjAXIAvMBl4DQQLzgBgCjAXIAvMAAA

HTTP Response

302
172.217.169.33:443

tpc.googlesyndication.com

tls, http2

msedge.exe

999 B
5.6kB
9
8
172.217.169.33:443

tpc.googlesyndication.com

tls, http2

msedge.exe

999 B
5.6kB
9
8
172.217.169.33:443

https://tpc.googlesyndication.com/pagead/js/r20250121/r20110914/client/window_focus_fy2021.js

tls, http2

msedge.exe

3.6kB
59.8kB
49
51

HTTP Request

GET https://tpc.googlesyndication.com/simgad/15703005220154420964

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20250121/r20110914/abg_lite_fy2021.js

HTTP Request

GET https://tpc.googlesyndication.com/pagead/js/r20250121/r20110914/client/window_focus_fy2021.js
104.26.7.141:443

https://cdn.btmessage.com/assets/bt-rlink-storage-DJolxq7O.html

tls, http2

msedge.exe

1.8kB
4.9kB
13
12

HTTP Request

GET https://cdn.btmessage.com/assets/bt-rlink-storage-DJolxq7O.html

HTTP Response

200
104.26.3.70:443

https://ad-delivery.net/px.gif?ch=1&e=0.8005417295474364

tls, http2

msedge.exe

3.4kB
7.0kB
23
24

HTTP Request

GET https://ad-delivery.net/px.gif?ch=2

HTTP Response

304

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.8194498516205446

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.9625758625091345

HTTP Response

200

HTTP Request

GET https://ad-delivery.net/px.gif?ch=1&e=0.8005417295474364

HTTP Response

200
142.250.200.33:443

https://ep2.adtrafficquality.google/sodar/sodar2.js

tls, http2

msedge.exe

3.0kB
13.5kB
19
21

HTTP Request

GET https://ep2.adtrafficquality.google/sodar/sodar2.js
142.250.179.228:443

https://www.google.com/recaptcha/api2/aframe

tls, http2

msedge.exe

1.8kB
7.7kB
14
17

HTTP Request

GET https://www.google.com/recaptcha/api2/aframe
87.121.121.2:443

https://netix.dl.sourceforge.net/project/processhacker/processhacker2/processhacker-2.39-setup.exe?viasf=1

tls, http

msedge.exe

53.7kB
2.3MB
1040
1684

HTTP Request

GET https://netix.dl.sourceforge.net/project/processhacker/processhacker2/processhacker-2.39-setup.exe?viasf=1

HTTP Response

200
178.250.1.39:443

static.criteo.net

tls

msedge.exe

943 B
4.2kB
8
9
216.105.38.9:443

https://analytics.slashdotmedia.com/sf.php?action_name=Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net&idsite=39&rec=1&r=803328&h=14&m=53&s=37&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_postdownload&dimension3=1&gt_ms=666&pv_id=9x0R5s

tls, http

msedge.exe

2.3kB
1.2kB
11
8

HTTP Request

GET https://analytics.slashdotmedia.com/sf.php?action_name=Find%20out%20more%20about%20Process%20Hacker%20%7C%20SourceForge.net&idsite=39&rec=1&r=803328&h=14&m=53&s=37&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Ffiles%2Flatest%2Fdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_postdownload&dimension3=1&gt_ms=666&pv_id=9x0R5s

HTTP Response

200
104.21.48.1:443

bt.dns-finder.com

tls, http2

msedge.exe

989 B
3.1kB
9
7
87.230.98.76:443

d.delivery.consentmanager.net

tls

msedge.exe

2.7kB
3.9kB
13
10
34.254.143.3:443

https://loadus.exelator.com/load/?p=204&g=1170&j=0&redirect=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Fperson_id%3D3650068291290398872%26eid%3D50596%26fp%3D

tls, http2

msedge.exe

1.8kB
5.3kB
13
14

HTTP Request

GET https://loadus.exelator.com/load/?p=204&g=1170&j=0&redirect=https%3A%2F%2Fml314.com%2Fcsync.ashx%3Fperson_id%3D3650068291290398872%26eid%3D50596%26fp%3D

HTTP Response

204
162.243.25.33:443

wj32.org

ProcessHacker.exe

260 B
5
178.250.1.39:443

static.criteo.net

tls

msedge.exe

1.0kB
554 B
7
7
4.227.249.197:443

https://u.clarity.ms/collect

tls, http

msedge.exe

2.0kB
6.4kB
12
13

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204
87.230.98.76:443

d.delivery.consentmanager.net

tls

msedge.exe

2.5kB
4.0kB
11
10
216.105.38.9:443

https://analytics.slashdotmedia.com/sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=629086&h=14&m=53&s=53&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=undefined&gt_ms=1079&pv_id=y24pfc

tls, http

msedge.exe

2.3kB
1.3kB
11
10

HTTP Request

GET https://analytics.slashdotmedia.com/sf.php?action_name=Process%20Hacker%20download%20%7C%20SourceForge.net&idsite=39&rec=1&r=629086&h=14&m=53&s=53&url=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2F&urlref=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fprocesshacker%2Fpostdownload&_id=be499c5e5f9d08e6&_idts=1737730395&_idvc=1&_idn=0&_refts=0&_viewts=1737730395&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x720&dimension1=processhacker&dimension2=pg_project&dimension3=undefined&gt_ms=1079&pv_id=y24pfc

HTTP Response

200
185.215.113.83:60722

AppLaunch.exe

260 B
5
142.250.200.46:443

https://encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcTXFZXg-1gnrI9WvDfUMc45t8qEG6NfFQmguSlrp6QLheH47e5e2roTZ0CZ3FU&usqp=CAI

tls, http2

msedge.exe

2.7kB
37.0kB
33
35

HTTP Request

GET https://encrypted-tbn3.gstatic.com/shopping?q=tbn:ANd9GcTXFZXg-1gnrI9WvDfUMc45t8qEG6NfFQmguSlrp6QLheH47e5e2roTZ0CZ3FU&usqp=CAI
172.217.16.225:443

cdn.ampproject.org

tls, http2

msedge.exe

2.1kB
12.9kB
12
14
172.217.16.225:443

cdn.ampproject.org

tls, http2

msedge.exe

2.1kB
12.9kB
12
14
172.217.16.225:443

https://cdn.ampproject.org/rtv/032501142147000/v0/amp-form-0.1.js

tls, http2

msedge.exe

6.7kB
140.6kB
93
110

HTTP Request

GET https://cdn.ampproject.org/rtv/032501142147000/amp4ads-v0.js

HTTP Request

GET https://cdn.ampproject.org/rtv/032501142147000/v0/amp-ad-exit-0.1.js

HTTP Request

GET https://cdn.ampproject.org/rtv/032501142147000/v0/amp-analytics-0.1.js

HTTP Request

GET https://cdn.ampproject.org/rtv/032501142147000/v0/amp-fit-text-0.1.js

HTTP Request

GET https://cdn.ampproject.org/rtv/032501142147000/v0/amp-form-0.1.js
172.217.16.225:443

cdn.ampproject.org

tls

msedge.exe

2.1kB
11.9kB
13
13
172.217.16.225:443

cdn.ampproject.org

tls, http2

msedge.exe

2.1kB
12.9kB
12
14
104.18.12.149:80

http://processhacker.sourceforge.net/update.php

http

ProcessHacker.exe

535 B
764 B
6
4

HTTP Request

GET http://processhacker.sourceforge.net/update.php

HTTP Response

301
104.18.12.149:443

https://processhacker.sourceforge.net/update.php

tls, http

ProcessHacker.exe

979 B
4.2kB
9
8

HTTP Request

GET https://processhacker.sourceforge.net/update.php

HTTP Response

301
104.18.10.31:443

https://processhacker.sourceforge.io/update.php

tls, http

ProcessHacker.exe

977 B
4.5kB
9
9

HTTP Request

GET https://processhacker.sourceforge.io/update.php

HTTP Response

200
185.215.113.83:60722

AppLaunch.exe

260 B
5
185.215.113.83:60722

AppLaunch.exe

260 B
5
185.215.113.83:60722

AppLaunch.exe

260 B
5
185.215.113.83:60722

AppLaunch.exe

260 B
5
4.227.249.197:443

https://u.clarity.ms/collect

tls, http

msedge.exe

1.9kB
6.4kB
9
12

HTTP Request

POST https://u.clarity.ms/collect

HTTP Response

204
185.215.113.83:60722

AppLaunch.exe

260 B
5
185.215.113.83:60722

AppLaunch.exe

260 B
5
185.215.113.83:60722

AppLaunch.exe

156 B
3

8.8.8.8:53

8.8.8.8.in-addr.arpa

dns

66 B
90 B
1
1

DNS Request

8.8.8.8.in-addr.arpa
8.8.8.8:53

133.32.126.40.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

133.32.126.40.in-addr.arpa
8.8.8.8:53

www.mediafire.com

dns

msedge.exe

63 B
95 B
1
1

DNS Request

www.mediafire.com

DNS Response

104.17.150.117

104.17.151.117
8.8.8.8:53

172.210.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.210.232.199.in-addr.arpa
8.8.8.8:53

196.249.167.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

196.249.167.52.in-addr.arpa
8.8.8.8:53

117.150.17.104.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

117.150.17.104.in-addr.arpa
8.8.8.8:53

167.173.78.104.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

167.173.78.104.in-addr.arpa
8.8.8.8:53

the.gatekeeperconsent.com

dns

msedge.exe

71 B
103 B
1
1

DNS Request

the.gatekeeperconsent.com

DNS Response

104.21.42.32

172.67.199.186
8.8.8.8:53

static.mediafire.com

dns

msedge.exe

66 B
98 B
1
1

DNS Request

static.mediafire.com

DNS Response

104.17.150.117

104.17.151.117
8.8.8.8:53

privacy.gatekeeperconsent.com

dns

msedge.exe

75 B
107 B
1
1

DNS Request

privacy.gatekeeperconsent.com

DNS Response

172.67.199.186

104.21.42.32
8.8.8.8:53

cdn.amplitude.com

dns

msedge.exe

63 B
127 B
1
1

DNS Request

cdn.amplitude.com

DNS Response

18.239.18.40

18.239.18.99

18.239.18.31

18.239.18.117
8.8.8.8:53

static.cloudflareinsights.com

dns

msedge.exe

75 B
107 B
1
1

DNS Request

static.cloudflareinsights.com

DNS Response

104.16.80.73

104.16.79.73
8.8.8.8:53

sandbox.mediafire.com

dns

msedge.exe

67 B
99 B
1
1

DNS Request

sandbox.mediafire.com

DNS Response

104.17.150.117

104.17.151.117
8.8.8.8:53

8.200.250.142.in-addr.arpa

dns

72 B
110 B
1
1

DNS Request

8.200.250.142.in-addr.arpa
8.8.8.8:53

32.42.21.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

32.42.21.104.in-addr.arpa
8.8.8.8:53

cdn.otnolatrnup.com

dns

msedge.exe

65 B
97 B
1
1

DNS Request

cdn.otnolatrnup.com

DNS Response

104.19.208.227

104.18.159.164
8.8.8.8:53

crt.rootg2.amazontrust.com

dns

msedge.exe

72 B
136 B
1
1

DNS Request

crt.rootg2.amazontrust.com

DNS Response

18.239.83.86

18.239.83.100

18.239.83.98

18.239.83.27
8.8.8.8:53

otnolatrnup.com

dns

msedge.exe

61 B
93 B
1
1

DNS Request

otnolatrnup.com

DNS Response

104.19.208.227

104.18.159.164
8.8.8.8:53

186.199.67.172.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

186.199.67.172.in-addr.arpa
8.8.8.8:53

73.80.16.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

73.80.16.104.in-addr.arpa
8.8.8.8:53

40.18.239.18.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

40.18.239.18.in-addr.arpa
8.8.8.8:53

227.208.19.104.in-addr.arpa

dns

73 B
135 B
1
1

DNS Request

227.208.19.104.in-addr.arpa
8.8.8.8:53

86.83.239.18.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

86.83.239.18.in-addr.arpa
8.8.8.8:53

15.39.65.18.in-addr.arpa

dns

70 B
124 B
1
1

DNS Request

15.39.65.18.in-addr.arpa
8.8.8.8:53

api.amplitude.com

dns

msedge.exe

63 B
191 B
1
1

DNS Request

api.amplitude.com

DNS Response

44.241.250.109

34.216.251.215

52.26.141.115

52.38.179.198

35.83.218.70

54.148.98.178

35.86.54.15

35.81.49.177
8.8.8.8:53

bcp.crwdcntrl.net

dns

msedge.exe

63 B
191 B
1
1

DNS Request

bcp.crwdcntrl.net

DNS Response

54.154.145.233

52.30.134.176

54.229.84.60

63.34.234.255

54.155.192.242

52.210.86.129

52.209.69.89

108.128.47.81
8.8.8.8:53

www.mediafiredls.com

dns

msedge.exe

66 B
114 B
1
1

DNS Request

www.mediafiredls.com

DNS Response

104.26.2.173

172.67.73.78

104.26.3.173
8.8.8.8:53

tags.crwdcntrl.net

dns

msedge.exe

64 B
128 B
1
1

DNS Request

tags.crwdcntrl.net

DNS Response

18.239.18.12

18.239.18.33

18.239.18.118

18.239.18.78
8.8.8.8:53

ad.crwdcntrl.net

dns

msedge.exe

62 B
190 B
1
1

DNS Request

ad.crwdcntrl.net

DNS Response

54.229.84.60

54.154.145.233

52.210.86.129

52.30.134.176

52.209.69.89

54.155.192.242

63.34.234.255

108.128.47.81
8.8.8.8:53

region1.analytics.google.com

dns

msedge.exe

74 B
106 B
1
1

DNS Request

region1.analytics.google.com

DNS Response

216.239.32.36

216.239.34.36
8.8.8.8:53

stats.g.doubleclick.net

dns

msedge.exe

69 B
133 B
1
1

DNS Request

stats.g.doubleclick.net

DNS Response

64.233.184.155

64.233.184.156

64.233.184.154

64.233.184.157
8.8.8.8:53

www.google.co.uk

dns

msedge.exe

62 B
78 B
1
1

DNS Request

www.google.co.uk

DNS Response

216.58.201.99
8.8.8.8:53

a.nel.cloudflare.com

dns

msedge.exe

66 B
82 B
1
1

DNS Request

a.nel.cloudflare.com

DNS Response

35.190.80.1
35.190.80.1:443

a.nel.cloudflare.com

https

msedge.exe

2.6kB
4.1kB
7
8
8.8.8.8:53

173.2.26.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

173.2.26.104.in-addr.arpa
8.8.8.8:53

12.18.239.18.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

12.18.239.18.in-addr.arpa
8.8.8.8:53

60.84.229.54.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

60.84.229.54.in-addr.arpa
8.8.8.8:53

233.145.154.54.in-addr.arpa

dns

73 B
137 B
1
1

DNS Request

233.145.154.54.in-addr.arpa
8.8.8.8:53

99.201.58.216.in-addr.arpa

dns

72 B
169 B
1
1

DNS Request

99.201.58.216.in-addr.arpa
8.8.8.8:53

14.178.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

14.178.250.142.in-addr.arpa
8.8.8.8:53

155.184.233.64.in-addr.arpa

dns

73 B
107 B
1
1

DNS Request

155.184.233.64.in-addr.arpa
8.8.8.8:53

36.32.239.216.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

36.32.239.216.in-addr.arpa
8.8.8.8:53

109.250.241.44.in-addr.arpa

dns

73 B
137 B
1
1

DNS Request

109.250.241.44.in-addr.arpa
8.8.8.8:53

1.80.190.35.in-addr.arpa

dns

70 B
120 B
1
1

DNS Request

1.80.190.35.in-addr.arpa
8.8.8.8:53

g.ezoic.net

dns

msedge.exe

57 B
73 B
1
1

DNS Request

g.ezoic.net

DNS Response

13.37.187.223
8.8.8.8:53

download1589.mediafire.com

dns

msedge.exe

72 B
88 B
1
1

DNS Request

download1589.mediafire.com

DNS Response

199.91.152.89
8.8.8.8:53

223.187.37.13.in-addr.arpa

dns

72 B
135 B
1
1

DNS Request

223.187.37.13.in-addr.arpa
224.0.0.251:5353

586 B
9
8.8.8.8:53

sys.ctrackapp.com

dns

msedge.exe

126 B
340 B
2
2

DNS Request

sys.ctrackapp.com

DNS Request

sys.ctrackapp.com

DNS Response

13.224.81.13

13.224.81.105

13.224.81.71

13.224.81.103

DNS Response

13.224.81.105

13.224.81.103

13.224.81.71

13.224.81.13
8.8.8.8:53

89.152.91.199.in-addr.arpa

dns

144 B
144 B
2
2

DNS Request

89.152.91.199.in-addr.arpa

DNS Request

89.152.91.199.in-addr.arpa
8.8.8.8:53

go.etoro.com

dns

msedge.exe

58 B
145 B
1
1

DNS Request

go.etoro.com

DNS Response

104.82.191.154
8.8.8.8:53

13.81.224.13.in-addr.arpa

dns

71 B
127 B
1
1

DNS Request

13.81.224.13.in-addr.arpa
8.8.8.8:53

154.191.82.104.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

154.191.82.104.in-addr.arpa
8.8.8.8:53

105.54.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

105.54.22.2.in-addr.arpa
216.239.32.36:443

region1.analytics.google.com

https

msedge.exe

4.5kB
7.2kB
9
10
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

95.100.153.174

95.100.153.167

95.100.153.177

95.100.153.154

95.100.153.159

95.100.153.149

95.100.153.168

95.100.153.182

95.100.153.183
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

95.100.153.174

95.100.153.154

95.100.153.149

95.100.153.167

95.100.153.148

95.100.153.159

95.100.153.182

95.100.153.177

95.100.153.168
8.8.8.8:53

login.microsoftonline.com

dns

msedge.exe

71 B
306 B
1
1

DNS Request

login.microsoftonline.com

DNS Response

20.190.160.22

40.126.32.140

40.126.32.72

40.126.32.134

20.190.160.14

40.126.32.76

40.126.32.138

20.190.160.20
8.8.8.8:53

174.153.100.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

174.153.100.95.in-addr.arpa
8.8.8.8:53

22.160.190.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

22.160.190.20.in-addr.arpa
8.8.8.8:53

68.32.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

68.32.126.40.in-addr.arpa
8.8.8.8:53

237.21.107.13.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

237.21.107.13.in-addr.arpa
8.8.8.8:53

209.205.72.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

209.205.72.20.in-addr.arpa
8.8.8.8:53

200.163.202.172.in-addr.arpa

dns

74 B
160 B
1
1

DNS Request

200.163.202.172.in-addr.arpa
8.8.8.8:53

198.187.3.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

198.187.3.20.in-addr.arpa
8.8.8.8:53

166.190.18.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

166.190.18.2.in-addr.arpa
8.8.8.8:53

uncoverit.org

dns

msedge.exe

59 B
91 B
1
1

DNS Request

uncoverit.org

DNS Response

172.67.149.47

104.21.55.153
8.8.8.8:53

www.uncoverit.org

dns

msedge.exe

63 B
95 B
1
1

DNS Request

www.uncoverit.org

DNS Response

104.21.55.153

172.67.149.47
8.8.8.8:53

47.149.67.172.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

47.149.67.172.in-addr.arpa
8.8.8.8:53

153.55.21.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

153.55.21.104.in-addr.arpa
8.8.8.8:53

challenges.cloudflare.com

dns

msedge.exe

71 B
103 B
1
1

DNS Request

challenges.cloudflare.com

DNS Response

104.18.95.41

104.18.94.41
8.8.8.8:53

41.95.18.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

41.95.18.104.in-addr.arpa
8.8.8.8:53

www.clarity.ms

dns

msedge.exe

60 B
223 B
1
1

DNS Request

www.clarity.ms

DNS Response

13.107.246.64
216.239.32.36:443

region1.analytics.google.com

https

msedge.exe

7.1kB
5.1kB
19
15
64.233.184.155:443

stats.g.doubleclick.net

https

msedge.exe

3.1kB
6.5kB
6
6
216.58.201.99:443

www.google.co.uk

https

msedge.exe

4.9kB
7.4kB
12
8
8.8.8.8:53

c.clarity.ms

dns

msedge.exe

174 B
139 B
3
1

DNS Request

c.clarity.ms

DNS Request

c.clarity.ms

DNS Request

c.clarity.ms

DNS Response

13.74.129.1
8.8.8.8:53

u.clarity.ms

dns

msedge.exe

58 B
137 B
1
1

DNS Request

u.clarity.ms

DNS Response

4.227.249.197
8.8.8.8:53

64.246.107.13.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

64.246.107.13.in-addr.arpa
8.8.8.8:53

c.bing.com

dns

msedge.exe

56 B
151 B
1
1

DNS Request

c.bing.com

DNS Response

204.79.197.237

13.107.21.237
8.8.8.8:53

197.249.227.4.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

197.249.227.4.in-addr.arpa
8.8.8.8:53

1.129.74.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

1.129.74.13.in-addr.arpa
8.8.8.8:53

237.197.79.204.in-addr.arpa

dns

73 B
143 B
1
1

DNS Request

237.197.79.204.in-addr.arpa
8.8.8.8:53

api.uncover.us.kg

dns

msedge.exe

126 B
350 B
2
2

DNS Request

api.uncover.us.kg

DNS Request

api.uncover.us.kg

DNS Response

104.21.32.1

104.21.80.1

104.21.48.1

104.21.112.1

104.21.64.1

104.21.96.1

104.21.16.1

DNS Response

104.21.16.1

104.21.32.1

104.21.48.1

104.21.80.1

104.21.112.1

104.21.96.1

104.21.64.1
8.8.8.8:53

1.32.21.104.in-addr.arpa

dns

70 B
132 B
1
1

DNS Request

1.32.21.104.in-addr.arpa
8.8.8.8:53

147.255.221.88.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

147.255.221.88.in-addr.arpa
35.190.80.1:443

a.nel.cloudflare.com

https

msedge.exe

7.3kB
2.9kB
14
13
8.8.8.8:53

processhacker.sourceforge.io

dns

ProcessHacker.exe

74 B
165 B
1
1

DNS Request

processhacker.sourceforge.io

DNS Response

104.18.11.31

104.18.10.31
8.8.8.8:53

cdnjs.cloudflare.com

dns

msedge.exe

66 B
98 B
1
1

DNS Request

cdnjs.cloudflare.com

DNS Response

104.17.25.14

104.17.24.14
8.8.8.8:53

sourceforge.net

dns

msedge.exe

122 B
186 B
2
2

DNS Request

sourceforge.net

DNS Response

104.18.12.149

104.18.13.149

DNS Request

sourceforge.net

DNS Response

104.18.12.149

104.18.13.149
8.8.8.8:53

31.11.18.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

31.11.18.104.in-addr.arpa
8.8.8.8:53

14.25.17.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

14.25.17.104.in-addr.arpa
8.8.8.8:53

149.12.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

149.12.18.104.in-addr.arpa
8.8.8.8:53

region1.google-analytics.com

dns

msedge.exe

74 B
106 B
1
1

DNS Request

region1.google-analytics.com

DNS Response

216.239.32.36

216.239.34.36
8.8.8.8:53

42.200.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

42.200.250.142.in-addr.arpa
8.8.8.8:53

227.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

227.179.250.142.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
206 B
1
1

DNS Request

th.bing.com

DNS Response

2.22.54.122

2.22.54.105
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
204 B
1
1

DNS Request

r.bing.com

DNS Response

2.22.54.122

2.22.54.105
216.239.32.36:443

region1.google-analytics.com

https

msedge.exe

3.8kB
7.2kB
6
9
8.8.8.8:53

122.54.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

122.54.22.2.in-addr.arpa
8.8.8.8:53

11.227.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

11.227.111.52.in-addr.arpa
8.8.8.8:53

a.fsdn.com

dns

msedge.exe

112 B
262 B
2
2

DNS Request

a.fsdn.com

DNS Response

104.18.16.56

104.18.17.56

DNS Request

a.fsdn.com

DNS Response

104.18.16.56

104.18.17.56
8.8.8.8:53

d.delivery.consentmanager.net

dns

msedge.exe

75 B
91 B
1
1

DNS Request

d.delivery.consentmanager.net

DNS Response

87.230.98.76
8.8.8.8:53

cdn.consentmanager.net

dns

msedge.exe

68 B
138 B
1
1

DNS Request

cdn.consentmanager.net

DNS Response

84.17.50.9

89.187.167.39
8.8.8.8:53

c.sf-syn.com

dns

msedge.exe

58 B
90 B
1
1

DNS Request

c.sf-syn.com

DNS Response

104.18.4.227

104.18.5.227
8.8.8.8:53

56.16.18.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

56.16.18.104.in-addr.arpa
8.8.8.8:53

76.98.230.87.in-addr.arpa

dns

71 B
108 B
1
1

DNS Request

76.98.230.87.in-addr.arpa
8.8.8.8:53

9.50.17.84.in-addr.arpa

dns

69 B
106 B
1
1

DNS Request

9.50.17.84.in-addr.arpa
8.8.8.8:53

227.4.18.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

227.4.18.104.in-addr.arpa
8.8.8.8:53

as.sourceforge.net

dns

msedge.exe

64 B
123 B
1
1

DNS Request

as.sourceforge.net

DNS Response

104.18.40.119

172.64.147.137
8.8.8.8:53

btloader.com

dns

msedge.exe

58 B
106 B
1
1

DNS Request

btloader.com

DNS Response

172.67.41.60

104.22.75.216

104.22.74.216
8.8.8.8:53

securepubads.g.doubleclick.net

dns

msedge.exe

76 B
92 B
1
1

DNS Request

securepubads.g.doubleclick.net

DNS Response

142.250.187.194
8.8.8.8:53

ml314.com

dns

msedge.exe

55 B
71 B
1
1

DNS Request

ml314.com

DNS Response

34.117.77.79
8.8.8.8:53

j.6sc.co

dns

msedge.exe

54 B
156 B
1
1

DNS Request

j.6sc.co

DNS Response

95.100.153.131

95.100.153.162
8.8.8.8:53

analytics.slashdotmedia.com

dns

msedge.exe

73 B
89 B
1
1

DNS Request

analytics.slashdotmedia.com

DNS Response

216.105.38.9
216.239.32.36:443

region1.google-analytics.com

https

msedge.exe

9.9kB
4.9kB
29
30
64.233.184.155:443

stats.g.doubleclick.net

https

msedge.exe

2.4kB
3.3kB
7
8
216.58.201.99:443

www.google.co.uk

https

msedge.exe

2.5kB
3.1kB
8
8
34.117.77.79:443

ml314.com

https

msedge.exe

8.3kB
12.2kB
51
59
142.250.187.194:443

securepubads.g.doubleclick.net

https

msedge.exe

37.3kB
363.4kB
156
337
8.8.8.8:53

bt.dns-finder.com

dns

msedge.exe

63 B
175 B
1
1

DNS Request

bt.dns-finder.com

DNS Response

104.21.48.1

104.21.80.1

104.21.64.1

104.21.32.1

104.21.112.1

104.21.16.1

104.21.96.1
8.8.8.8:53

api.btloader.com

dns

msedge.exe

62 B
78 B
1
1

DNS Request

api.btloader.com

DNS Response

130.211.23.194
8.8.8.8:53

ad-delivery.net

dns

msedge.exe

61 B
109 B
1
1

DNS Request

ad-delivery.net

DNS Response

104.26.3.70

172.67.69.19

104.26.2.70
8.8.8.8:53

pubads.g.doubleclick.net

dns

msedge.exe

70 B
86 B
1
1

DNS Request

pubads.g.doubleclick.net

DNS Response

172.217.169.34
8.8.8.8:53

c.6sc.co

dns

msedge.exe

54 B
156 B
1
1

DNS Request

c.6sc.co

DNS Response

95.100.153.131

95.100.153.162
8.8.8.8:53

b.6sc.co

dns

msedge.exe

54 B
156 B
1
1

DNS Request

b.6sc.co

DNS Response

95.100.153.131

95.100.153.162
8.8.8.8:53

ipv6.6sc.co

dns

msedge.exe

57 B
166 B
1
1

DNS Request

ipv6.6sc.co

DNS Response

95.100.153.162

95.100.153.131
8.8.8.8:53

idsync.rlcdn.com

dns

msedge.exe

62 B
78 B
1
1

DNS Request

idsync.rlcdn.com

DNS Response

35.244.174.68
8.8.8.8:53

dpm.demdex.net

dns

msedge.exe

60 B
305 B
1
1

DNS Request

dpm.demdex.net

DNS Response

108.128.211.102

54.77.85.98

54.76.112.69

52.49.50.223

54.247.156.201

54.74.147.80

54.195.214.91

52.18.196.7
8.8.8.8:53

match.adsrvr.org

dns

msedge.exe

62 B
126 B
1
1

DNS Request

match.adsrvr.org

DNS Response

15.197.193.217

35.71.131.137

3.33.220.150

52.223.40.198
8.8.8.8:53

ib.adnxs.com

dns

msedge.exe

58 B
319 B
1
1

DNS Request

ib.adnxs.com

DNS Response

185.89.210.90

185.89.210.153

185.89.210.212

185.89.210.122

185.89.210.20

185.89.210.244

185.89.210.82

185.89.210.180

185.89.210.46

185.89.211.84

185.89.210.141

185.89.211.116
8.8.8.8:53

ps.eyeota.net

dns

msedge.exe

59 B
75 B
1
1

DNS Request

ps.eyeota.net

DNS Response

18.184.216.10
130.211.23.194:443

api.btloader.com

https

msedge.exe

5.1kB
6.4kB
26
25
8.8.8.8:53

ep1.adtrafficquality.google

dns

msedge.exe

73 B
89 B
1
1

DNS Request

ep1.adtrafficquality.google

DNS Response

216.58.212.194
8.8.8.8:53

119.40.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

119.40.18.104.in-addr.arpa
8.8.8.8:53

60.41.67.172.in-addr.arpa

dns

144 B
272 B
2
2

DNS Request

60.41.67.172.in-addr.arpa

DNS Request

184.195.100.95.in-addr.arpa
8.8.8.8:53

79.77.117.34.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

79.77.117.34.in-addr.arpa
8.8.8.8:53

131.153.100.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

131.153.100.95.in-addr.arpa
8.8.8.8:53

194.187.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

194.187.250.142.in-addr.arpa
8.8.8.8:53

226.16.217.172.in-addr.arpa

dns

73 B
140 B
1
1

DNS Request

226.16.217.172.in-addr.arpa
8.8.8.8:53

9.38.105.216.in-addr.arpa

dns

71 B
129 B
1
1

DNS Request

9.38.105.216.in-addr.arpa
8.8.8.8:53

1.48.21.104.in-addr.arpa

dns

135 B
292 B
2
2

DNS Request

1.48.21.104.in-addr.arpa

DNS Request

loadus.exelator.com

DNS Response

34.254.143.3
8.8.8.8:53

230.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

230.179.250.142.in-addr.arpa
8.8.8.8:53

194.23.211.130.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

194.23.211.130.in-addr.arpa
8.8.8.8:53

70.3.26.104.in-addr.arpa

dns

70 B
132 B
1
1

DNS Request

70.3.26.104.in-addr.arpa
8.8.8.8:53

34.169.217.172.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

34.169.217.172.in-addr.arpa
8.8.8.8:53

162.153.100.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

162.153.100.95.in-addr.arpa
8.8.8.8:53

68.174.244.35.in-addr.arpa

dns

72 B
124 B
1
1

DNS Request

68.174.244.35.in-addr.arpa
8.8.8.8:53

102.211.128.108.in-addr.arpa

dns

74 B
139 B
1
1

DNS Request

102.211.128.108.in-addr.arpa
8.8.8.8:53

217.193.197.15.in-addr.arpa

dns

73 B
129 B
1
1

DNS Request

217.193.197.15.in-addr.arpa
8.8.8.8:53

90.210.89.185.in-addr.arpa

dns

72 B
133 B
1
1

DNS Request

90.210.89.185.in-addr.arpa
8.8.8.8:53

10.216.184.18.in-addr.arpa

dns

72 B
138 B
1
1

DNS Request

10.216.184.18.in-addr.arpa
8.8.8.8:53

c2934a4de76a9d45fc7971c10d1ad4c3.safeframe.googlesyndication.com

dns

msedge.exe

110 B
169 B
1
1

DNS Request

c2934a4de76a9d45fc7971c10d1ad4c3.safeframe.googlesyndication.com

DNS Response

216.58.201.97
8.8.8.8:53

invstatic101.creativecdn.com

dns

msedge.exe

74 B
90 B
1
1

DNS Request

invstatic101.creativecdn.com

DNS Response

34.96.70.87
8.8.8.8:53

cdn.jsdelivr.net

dns

msedge.exe

62 B
160 B
1
1

DNS Request

cdn.jsdelivr.net

DNS Response

151.101.129.229

151.101.65.229

151.101.193.229

151.101.1.229
8.8.8.8:53

oa.openxcdn.net

dns

msedge.exe

61 B
77 B
1
1

DNS Request

oa.openxcdn.net

DNS Response

34.102.146.192
8.8.8.8:53

cdn.prod.euid.eu

dns

msedge.exe

62 B
121 B
1
1

DNS Request

cdn.prod.euid.eu

DNS Response

18.172.98.202
8.8.8.8:53

cdn.prod.uidapi.com

dns

msedge.exe

65 B
124 B
1
1

DNS Request

cdn.prod.uidapi.com

DNS Response

18.165.159.204
8.8.8.8:53

cdn.id5-sync.com

dns

msedge.exe

62 B
110 B
1
1

DNS Request

cdn.id5-sync.com

DNS Response

104.22.53.86

172.67.38.106

104.22.52.86
8.8.8.8:53

static.criteo.net

dns

msedge.exe

63 B
117 B
1
1

DNS Request

static.criteo.net

DNS Response

178.250.1.39
8.8.8.8:53

dmp.im-apps.net

dns

msedge.exe

61 B
163 B
1
1

DNS Request

dmp.im-apps.net

DNS Response

95.100.195.184

95.100.195.133
8.8.8.8:53

cdn.btmessage.com

dns

msedge.exe

63 B
111 B
1
1

DNS Request

cdn.btmessage.com

DNS Response

104.26.7.141

104.26.6.141

172.67.74.232
8.8.8.8:53

googleads.g.doubleclick.net

dns

msedge.exe

73 B
89 B
1
1

DNS Request

googleads.g.doubleclick.net

DNS Response

142.250.187.194
8.8.8.8:53

194.212.58.216.in-addr.arpa

dns

73 B
171 B
1
1

DNS Request

194.212.58.216.in-addr.arpa
8.8.8.8:53

87.70.96.34.in-addr.arpa

dns

70 B
120 B
1
1

DNS Request

87.70.96.34.in-addr.arpa
8.8.8.8:53

229.129.101.151.in-addr.arpa

dns

74 B
134 B
1
1

DNS Request

229.129.101.151.in-addr.arpa
8.8.8.8:53

192.146.102.34.in-addr.arpa

dns

73 B
126 B
1
1

DNS Request

192.146.102.34.in-addr.arpa
8.8.8.8:53

86.53.22.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

86.53.22.104.in-addr.arpa
8.8.8.8:53

141.7.26.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

141.7.26.104.in-addr.arpa
8.8.8.8:53

202.98.172.18.in-addr.arpa

dns

72 B
129 B
1
1

DNS Request

202.98.172.18.in-addr.arpa
8.8.8.8:53

39.1.250.178.in-addr.arpa

dns

71 B
125 B
1
1

DNS Request

39.1.250.178.in-addr.arpa
8.8.8.8:53

204.159.165.18.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

204.159.165.18.in-addr.arpa
8.8.8.8:53

97.201.58.216.in-addr.arpa

dns

72 B
169 B
1
1

DNS Request

97.201.58.216.in-addr.arpa
8.8.8.8:53

f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com

dns

msedge.exe

110 B
169 B
1
1

DNS Request

f472deacc3f43a23aaba63e90b813c8d.safeframe.googlesyndication.com

DNS Response

216.58.201.97
172.217.169.34:443

pubads.g.doubleclick.net

https

msedge.exe

6.3kB
8.9kB
26
30
8.8.8.8:53

trc.taboola.com

dns

msedge.exe

61 B
177 B
1
1

DNS Request

trc.taboola.com

DNS Response

151.101.129.44

151.101.193.44

151.101.65.44

151.101.1.44
8.8.8.8:53

sync.crwdcntrl.net

dns

msedge.exe

64 B
192 B
1
1

DNS Request

sync.crwdcntrl.net

DNS Response

54.229.84.60

52.210.86.129

54.154.145.233

108.128.47.81

52.209.69.89

63.34.234.255

54.155.192.242

52.30.134.176
8.8.8.8:53

us-u.openx.net

dns

msedge.exe

60 B
92 B
1
1

DNS Request

us-u.openx.net

DNS Response

35.244.159.8

34.98.64.218
8.8.8.8:53

api.btmessage.com

dns

msedge.exe

63 B
111 B
1
1

DNS Request

api.btmessage.com

DNS Response

104.26.6.141

172.67.74.232

104.26.7.141
8.8.8.8:53

tpc.googlesyndication.com

dns

msedge.exe

71 B
87 B
1
1

DNS Request

tpc.googlesyndication.com

DNS Response

172.217.169.33
8.8.8.8:53

8.159.244.35.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

8.159.244.35.in-addr.arpa
8.8.8.8:53

44.129.101.151.in-addr.arpa

dns

73 B
133 B
1
1

DNS Request

44.129.101.151.in-addr.arpa
8.8.8.8:53

33.169.217.172.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

33.169.217.172.in-addr.arpa
172.217.169.33:443

tpc.googlesyndication.com

https

msedge.exe

8.3kB
231.5kB
76
182
8.8.8.8:53

ep2.adtrafficquality.google

dns

msedge.exe

73 B
89 B
1
1

DNS Request

ep2.adtrafficquality.google

DNS Response

142.250.200.33
142.250.200.33:443

ep2.adtrafficquality.google

https

msedge.exe

4.4kB
12.7kB
15
18
8.8.8.8:53

www.google.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

www.google.com

DNS Response

142.250.179.228
8.8.8.8:53

33.200.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

33.200.250.142.in-addr.arpa
8.8.8.8:53

228.179.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

228.179.250.142.in-addr.arpa
216.58.212.194:443

ep1.adtrafficquality.google

https

msedge.exe

7.1kB
7.4kB
17
19
8.8.8.8:53

downloads.sourceforge.net

dns

msedge.exe

142 B
206 B
2
2

DNS Request

downloads.sourceforge.net

DNS Request

downloads.sourceforge.net

DNS Response

104.18.13.149

104.18.12.149

DNS Response

104.18.12.149

104.18.13.149
8.8.8.8:53

netix.dl.sourceforge.net

dns

msedge.exe

70 B
86 B
1
1

DNS Request

netix.dl.sourceforge.net

DNS Response

87.121.121.2
8.8.8.8:53

2.121.121.87.in-addr.arpa

dns

142 B
204 B
2
2

DNS Request

2.121.121.87.in-addr.arpa

DNS Request

2.121.121.87.in-addr.arpa
142.250.187.194:443

googleads.g.doubleclick.net

https

msedge.exe

3.1kB
6.5kB
5
7
8.8.8.8:53

731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com

dns

msedge.exe

110 B
169 B
1
1

DNS Request

731d57a01a9e03bee46aed3f35d42f81.safeframe.googlesyndication.com

DNS Response

216.58.201.97
8.8.8.8:53

3.143.254.34.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

3.143.254.34.in-addr.arpa
8.8.8.8:53

wj32.org

dns

ProcessHacker.exe

108 B
140 B
2
2

DNS Request

wj32.org

DNS Response

162.243.25.33

DNS Request

wj32.org

DNS Response

162.243.25.33
216.58.212.194:443

ep1.adtrafficquality.google

https

msedge.exe

4.4kB
34.2kB
19
31
8.8.8.8:53

u.clarity.ms

dns

msedge.exe

58 B
137 B
1
1

DNS Request

u.clarity.ms

DNS Response

4.227.249.197
8.8.8.8:53

9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com

dns

msedge.exe

110 B
169 B
1
1

DNS Request

9638348f93eb039c51d6f56939381037.safeframe.googlesyndication.com

DNS Response

216.58.201.97
8.8.8.8:53

cdn.ampproject.org

dns

msedge.exe

64 B
106 B
1
1

DNS Request

cdn.ampproject.org

DNS Response

172.217.16.225
8.8.8.8:53

encrypted-tbn3.gstatic.com

dns

msedge.exe

72 B
88 B
1
1

DNS Request

encrypted-tbn3.gstatic.com

DNS Response

142.250.200.46
172.217.169.33:443

tpc.googlesyndication.com

https

msedge.exe

3.1kB
6.5kB
5
7
8.8.8.8:53

225.16.217.172.in-addr.arpa

dns

73 B
140 B
1
1

DNS Request

225.16.217.172.in-addr.arpa
8.8.8.8:53

46.200.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

46.200.250.142.in-addr.arpa
8.8.8.8:53

processhacker.sourceforge.net

dns

ProcessHacker.exe

75 B
161 B
1
1

DNS Request

processhacker.sourceforge.net

DNS Response

104.18.12.149

104.18.13.149
8.8.8.8:53

processhacker.sourceforge.io

dns

ProcessHacker.exe

74 B
165 B
1
1

DNS Request

processhacker.sourceforge.io

DNS Response

104.18.10.31

104.18.11.31
8.8.8.8:53

31.10.18.104.in-addr.arpa

dns

71 B
133 B
1
1

DNS Request

31.10.18.104.in-addr.arpa
142.250.187.194:443

googleads.g.doubleclick.net

https

msedge.exe

13.2kB
60.2kB
49
66
216.58.201.99:443

www.google.co.uk

https

msedge.exe

2.4kB
3.1kB
8
8
172.217.169.33:443

tpc.googlesyndication.com

https

msedge.exe

5.1kB
114.4kB
51
89
8.8.8.8:53

u.clarity.ms

dns

msedge.exe

58 B
137 B
1
1

DNS Request

u.clarity.ms

DNS Response

4.227.249.197
142.250.187.194:443

googleads.g.doubleclick.net

https

msedge.exe

11.9kB
59.9kB
47
65
172.217.169.33:443

tpc.googlesyndication.com

https

msedge.exe

4.6kB
98.7kB
44
78
216.239.32.36:443

region1.google-analytics.com

https

msedge.exe

4.3kB
3.3kB
7
8
142.250.187.194:443

googleads.g.doubleclick.net

https

msedge.exe

3.9kB
2.7kB
8
6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Phishing

T1566

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\Process Hacker 2\ProcessHacker.exe

Filesize
1.6MB

MD5
b365af317ae730a67c936f21432b9c71

SHA1
a0bdfac3ce1880b32ff9b696458327ce352e3b1d

SHA256
bd2c2cf0631d881ed382817afcce2b093f4e412ffb170a719e2762f250abfea4

SHA512
cc3359e16c6fe905a9e176a87acf4c4ed5e22c29bfca11949799caf8442e00ec0d1679b3d8754dbc3e313528d3e8e82c0ec1941e2c3530b48229c1cb337f6b8b

Download Submit
C:\Program Files\Process Hacker 2\ProcessHacker.sig

Filesize
64B

MD5
2ccb4420d40893846e1f88a2e82834da

SHA1
ef29efec7e3e0616948f9fe1fd016e43b6c971de

SHA256
519c2c2ca0caf00db5b3eb2b79dfe42e6128161c13aeb4b4d8b86fbffc67e3d4

SHA512
b2a000b33d4a9b2e886208fc78aeb3a986f7bd379fb6910da9f6577603aa6e8237cb552eabca70445f37b427419beeff0b061090cb952331b8db322ce2e58bc6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
d7cb450b1315c63b1d5d89d98ba22da5

SHA1
694005cd9e1a4c54e0b83d0598a8a0c089df1556

SHA256
38355fd694faf1223518e40bac1996bdceaf44191214b0a23c4334d5fb07d031

SHA512
df04d4f4b77bae447a940b28aeac345b21b299d8d26e28ecbb3c1c9e9a0e07c551e412d545c7dbb147a92c12bad7ae49ac35af021c34b88e2c6c5f7a0b65f6a8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
37f660dd4b6ddf23bc37f5c823d1c33a

SHA1
1c35538aa307a3e09d15519df6ace99674ae428b

SHA256
4e2510a1d5a50a94fe4ce0f74932ab780758a8cbdc6d176a9ce8ab92309f26f8

SHA512
807b8b8dc9109b6f78fc63655450bf12b9a006ff63e8f29ade8899d45fdf4a6c068c5c46a3efbc4232b9e1e35d6494f00ded5cdb3e235c8a25023bfbd823992d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
366KB

MD5
e6940bda64389c1fa2ae8e1727abe131

SHA1
1568647e5acd7835321d847024df3ffdf629e547

SHA256
eef5dd06cf622fb43ea42872bc616d956de98a3335861af84d35dbaf2ab32699

SHA512
91c07e84e5188336464ae9939bfc974d26b0c55d19542527bdcd3e9cac56d8c07655dc921acaa487ed993977a22a0f128dc3c6111273273ff1f637b20bb56fb6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
67KB

MD5
69df804d05f8b29a88278b7d582dd279

SHA1
d9560905612cf656d5dd0e741172fb4cd9c60688

SHA256
b885987a52236f56ce7a5ca18b18533e64f62ab64eb14050ede93c93b5bd5608

SHA512
0ef49eeeeb463da832f7d5b11f6418baa65963de62c00e71d847183e0035be03e63c097103d30329582fe806d246e3c0e3ecab8b2498799abbb21d8b7febdc0e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
19KB

MD5
1bd4ae71ef8e69ad4b5ffd8dc7d2dcb5

SHA1
6dd8803e59949c985d6a9df2f26c833041a5178c

SHA256
af18b3681e8e2a1e8dc34c2aa60530dc8d8a9258c4d562cbe20c898d5de98725

SHA512
b3ff083b669aca75549396250e05344ba2f1c021468589f2bd6f1b977b7f11df00f958bbbd22f07708b5d30d0260f39d8de57e75382b3ab8e78a2c41ef428863

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
65KB

MD5
56d57bc655526551f217536f19195495

SHA1
28b430886d1220855a805d78dc5d6414aeee6995

SHA256
f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4

SHA512
7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000023

Filesize
65KB

MD5
39f8af070c8b8d348724398133d262ee

SHA1
98ca486574e814c5a05c3a0aaba31cec91c20fd8

SHA256
5ed8f6f0266dabbd61227aa887c5aec5f2421fd17cb4410abc9a24bd428a1c3b

SHA512
d4a9751b4bf7ad8abf82a4589403be92a197d58739a873461f571c1f4e1c54872615fa355af6b68708410637482ceed7beb940a7441016069561b2f56c51a4a5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000027

Filesize
96KB

MD5
5eb8b3939f2db3174d59a1f0cedbca68

SHA1
5688402e1f7369f2b05ed6be81f738b6d1290eab

SHA256
c96d867712ec4b040628693956f8071c04d28e1a33123398e1aff91aa64ae68e

SHA512
76c026afd554d9b7fe1da09138d2ecebeea4a7b3a59a8db3111bdd6c93f87f246d2ca0ec1adc20aa577836a6e67e16367003aff1b7f38feec3df2d0ebc97d88a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000028

Filesize
18KB

MD5
59a5c1a3839611b1b811cd381426d9e3

SHA1
60a43ae18a83e5678b152458cdec745fa71546fc

SHA256
a0f3e76fc7999b123cf295b0e196131e700352b5b52b844aa3cf86f4168b0f4f

SHA512
30061228213f07419f8f68c646087d8276df77c1126bc64b7dc67fda71a51a4ae24ee74b769b7f2f24303f2d06993501ed29498ce29b807d008b982ac0cbf5e7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000029

Filesize
20KB

MD5
87e8230a9ca3f0c5ccfa56f70276e2f2

SHA1
eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7

SHA256
e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9

SHA512
37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002a

Filesize
53KB

MD5
98248577e2bf386494edbb6722c4750c

SHA1
e92dc146a405e5b7605f02570d9791741138e629

SHA256
2261ebe777b208a4797c7dcd64576547a08e189b032498c31393b138c25ae35e

SHA512
49a3b782dd7458741fcaea6670ae6cd7f20d4204bf3930ed6fd63c4ebff2b8e1bc3c7c7f33b8584f8966dd62b414a2c0522edd5bab3407e0b61ff936a439dfea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002b

Filesize
113KB

MD5
296d7134784c8ae279c53ae0e0ecac84

SHA1
8ead0ce0d05381b3e3a754470001444002153593

SHA256
d1eac19e636ab64f3e7a8bbb7a32d4f4f246067c01934b0886e9ca6b8846fc71

SHA512
b5ddb939621724a889dacbb37d0fe704b3c51d23081126359e38d6a8088f885b512e2f2b69663e55b300f7145637daa00b7b2435b78a6858bd5d8f680e7176da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002c

Filesize
19KB

MD5
7cac5912ed95f56117aba45319105505

SHA1
6d35d1c93a5e5492a86fafb84c3c056a9842ab8c

SHA256
a93edbe1f7137e669a9feef261619225dc12b96894b58433dd155588d2bae7fe

SHA512
7c866a0127a914c2852dfb388e478ad3dd1a3e07d922f58b7a88401675d79ea5124ff0ab651ba5de901a2197d844da2fb3c7faaadeb893671a1e056795d0d718

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002d

Filesize
16KB

MD5
ce4adae5cf157c3de80690632ffa4c44

SHA1
b688fb516f55ba4ba1b0a4169b2876e4a5c3b2ca

SHA256
e9e3f479efb72c1659d4ac2020cfca33282edeaecc7948f0823619113b086ccd

SHA512
e14ebc8a75008c58945063414820e32332d8aaedfcabf04be41d22aa806131abc8cbd7d16b5c08b6446a78f614d9ffb97f5d229f745d6986f9ea0a1efca42301

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002e

Filesize
33KB

MD5
2bd7684c33ad3cfe9252f30c3f11c331

SHA1
0fad0510c693860556e5ff6dd43392682a2322a7

SHA256
127c4c7e1241c361da1572c788f363c75f06340b1e7bf963b2334aad7e9c5165

SHA512
646f579ebcbf15d3b9d102b10e86e73f596dca38436c49098d5c4f94f1d4d9df410ceebe81a6a64506752f0e1026e21bf7fe13fef40da1c7f829da2949618487

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002f

Filesize
18KB

MD5
ce4c7d1372a2686ca61a83a53cc53481

SHA1
1fb11b54ce19ae72cd5cc13c0fe28c9f6389a9c7

SHA256
326a1140babd8fbdde8633873c0fd56acb5bd4550f9b285a13d0a1bdc3810ac4

SHA512
79d4f9b24dc9d4b4897b4df65e3a28960bdf64c72f04d0ac565b73c18b5b8b38f6235ad9f28f2c24b698946c56084d7cd9050fce48a78a8c4ff1bafd7d2da7fb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000030

Filesize
129KB

MD5
890855222248469a2252d12ed38eff29

SHA1
adabfb4651454cef6694eea976d59510133e890e

SHA256
f66fb79a046f3ae4301e2af6b0d9f95d7759376aa443c0847c411c095b63328d

SHA512
00836bc930294c40fd5b10e50180f75bc50f1c519320b95bf955a58d74ec47b9cafa7b14a9ac316fdab4759e434648d5c113ebc94a5b401aac7d43678fd506a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000031

Filesize
155KB

MD5
eddb5c145aae9077fc75d4cdf108de65

SHA1
a47cdcca48c57f0591eb7bd2268999736b7a72d8

SHA256
f1bd58ce8b4191d93e23bd138a5b7859f721947f5296d7d83ee130dcb29fdd62

SHA512
91c201f88391ba2d1dfe96519d5b34edef662d04cfc0f9e78f8dda203b99d46b23f06149225ff634233a05093824096fb5a7d9db64241fa7e90cd1cebf5f6517

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000032

Filesize
63KB

MD5
34d5015941e4901485c7974667b85162

SHA1
cf032e42cf197dcc3022001a0bde9d74eb11ac15

SHA256
5c166a5d40aeefd0679a14f95e47ff28824e66abba82adfa30be41803cc25632

SHA512
42cef1d6847f535a6e8afc0469b9f5ef79ce4ab21512ac7eeda8ef9667d5f24bb33b30aba9a29824b3d853d41d4addf6bdee2042cf4fbd0a033b61657c671f0c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000034

Filesize
52KB

MD5
c181ef9d9ed8cc7a0d98974a149e127b

SHA1
57517f35cee2d4bd5404d0991f33e687fa4c1e39

SHA256
470511f03cec28b3cd67929f339311db93317b201c77a6a0454d057bac72df03

SHA512
768e23be93aadfc5881f8092b82e38f99b8da5ab98945f00a8e625260760b11679d41ff005a67d493ccd62a9a1c07cd697be75af8a79d9d6b4e3d3554a696e9b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000036

Filesize
48KB

MD5
31a2fb03fda5128f277eb054f6e33165

SHA1
ecfa1072af26f42629ff96770af1a322dbd3075c

SHA256
333dd1d27c0fe34ee781418c1a916f0ee052b7429548a198af724d272c943a42

SHA512
f346c9c90bd4b40f72dff9b89c6b2887d977f25087d66533d259e4f8475c677fec8a272c8c94bf3a9b866c5b1c98bd392f4703b91902d87a96a1ab1e554bd012

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000038

Filesize
29KB

MD5
79ffcf947dd8385536d2cfcdd8fcce04

SHA1
a9a43ccbbb01d15a39fac57fa05290835d81468a

SHA256
ffc11b830ad653e7a9d4257c7cd7a8056db5e7d7e89439b8fd67d1207b1729bf

SHA512
3dc82ecb2abc8c567434666a9162cc188de669927c3dada6392d8bd97d5e746f1ed350e1a02ec016ee2b1dc8a9cc5c71c553f2ef1293d6793800c276560859a6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000039

Filesize
66KB

MD5
f53b6d474350dce73f4fdc90c7b04899

SHA1
b06ca246301a6aea038956d48b48e842d893c05a

SHA256
28442a56b016bfade0e368929138aaaadfc36156734e8ec7a6325b3e58fddc25

SHA512
7f275614052ebae8876ad28fc5d48e4f63ed9ebc610ed981f81377ea3ba4c49a2031ff771deb12adabcf33d4789ba35354c1e52524c067a9e7ce078703683f1e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003d

Filesize
20KB

MD5
d8ff006363de5d28efc4bc41cddd6c7a

SHA1
b4950449bfcfde423c8fecc368257dcf2a346258

SHA256
0f2f2c4216f85517ab2f608010108f32416a23607fbaaf4e2294379073fae161

SHA512
11ad965b3eb86c073d96c808eb4b4fae5f6eafcf9ff0bccb74cf1aec7fc47154bdc16b2cd436a3c8ae069502b37ee24af78176344af0b6aa7b8de4e8896aa045

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
6eedc880ac7ca7e6cbfd0b413b066162

SHA1
d4339b928059d6678ca9a789a458c7b901fc1c7e

SHA256
525884b14735524c8ff79e527d5ccabd9470b356cc6f96d7d997f4510a7cef93

SHA512
a3b0bc89cbbdc17f3b485e4779a844a5cd6573462f4bf28e39595069d61266b3551e484dd1901d4bace4b1b33010bb4abeb4ad103873fe170d64fe6523252d30

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
099c18414dc86cb5bbcb21752b956a98

SHA1
b1738f41fce9ea025e92d1944ca9fd066fbfbba9

SHA256
3ef0e567f289d2b346f66ce766f0f05d2d3527c24c08ffcdecf12a900b84b898

SHA512
e80dadf8fdf9853c91393f72f3b1e6ce9f470acd3c2299005a7de02e0776d1f1a6b9a20d7afaddbf4c964b40f71715f22be6f6adc4160b4b0655f2efd11bacd2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
ec9022c19ba0e0ca1ef47c99d103a9b0

SHA1
f5a7f102b673f475de5493590ac1365c44bdae34

SHA256
30c912190d710b6aaacf32d86ea29b34ddfa0e24909ff559c776722d42090829

SHA512
90a2c958bb628e09a46b0e4d72fc86afca6e23387a56c6644e6bd4086acd329a7dd5efb86dbcf3a9a0028cc3b78f361057ddc8f036b034d8f97085d66f8ea6ae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
a5682fd8eb8dd4ce0a82b544e0923c8e

SHA1
79c247357d7d256faaf8acb91105112a532aeeba

SHA256
ba84ae8d16ebdbbf65c3f358e20c143f8f9d8dfd35f12341fedae088403eede7

SHA512
afddbb391b34444b5e165fbb7f00ff43ab006a24fe1e7e565d1d06b74eb42008e4c7ba82c3e195ef3335f4e95d37bb7b741e8dd5c7de6066d80635b7dd7f2e15

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
8KB

MD5
955096a3289ab91aadd06e98ff0e7d4b

SHA1
1ecbb0c7fe1f901fc76981effbbbce3a1f5b8585

SHA256
9823909850ee30fde493ee6174f105f7d76a10d9f19985f17ac1a04756252e06

SHA512
199fee9639609103f679c365d9234a81bdceef98fe05574876dfda2fdbf97b7cacd7b3083c4731283940385ee606cbc08bab57d3b7916698ae7681231b4f9489

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
79c3b9ac45e43964b408a745340a7653

SHA1
a9c109a82d2f2f4b5bb484c579b7772e7e2d5e6a

SHA256
c98d68d4bf36de5eded6f269521581d76f3aaa04766a9aa40f633e0b4d656218

SHA512
83722c1dfbc59aac6745e51a7f7a861f43f1a613ab7d1bad31833fef49487be296ba5fbd843fa4937c925f8b9a3e26ff8f70066a0fd58c754f20344d5c103412

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
9KB

MD5
a664e7bcd648a9d944e6455a06bad880

SHA1
3ed45c08b8ed6850fa0d959827a967fe4275d498

SHA256
eca75e35a9880271b2bff1a73714e11cabbc8b009898ae3a39fc3da5f1668e97

SHA512
efb177ce1ec53a5b24331247e9b5061c71d049c29744ab5ec418f749ef5e8a5e9a097aef9ae50926539932b1422a3bc006fea679f0479b570aa9e6fc3acb3852

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
92cdb9289b88bf5344f4e5383ddafe75

SHA1
23fa4ad0e88fe85911756229e075abd463557749

SHA256
a17635984687488263c04390d043e20c95d6bc426eec6c85cef6fb52108c901b

SHA512
f90a622c3c955fd0ff7890df764e042be48138ad227f1d195cd5fa78900e106f2d0b7827d5f79c5e69f8fb90bafc5521da68de1e2716691d92f56d728e3cb892

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
11bcf42632f695d48d4f9bf8e57c9cf6

SHA1
45a05f70d90198745bcae0de161a9226222f5d89

SHA256
6b2283221a3473c04d68dd8718a6c1d9bf17ad601d9cfefda09ebb47d4968cfa

SHA512
ff51e62f90435f132c908ecd6caab1d17e571822d536ad2989e7d4a292f82c922492519e1ad1c877009c20d1ab9bc95c0e664590b15cf61135ae4b4af3e72d9b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
cef2e5f66219f3ceadf1e8a7e8334700

SHA1
b3874ff3e569a4ecbd8e1aeaaacb5a3c7345e121

SHA256
67ba10641ceb5b5be744e625763559b91f6b604c3946711b0b31760069ede118

SHA512
58c7d1485f6ee3537f771efb1cc5ed776c7d918d89a0da2796fa1bb262856107de647d4c6ae3a082b355bef2e7d03d382a9e5adcc428fb1e5aed27d367207ea6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
023f51ae7336bded6e1eb47ec006f667

SHA1
5126f5b2063554f18938b127fd77c8e1c41bc29d

SHA256
e133fd1adf0fe23595de389d38f28e62e599f8ecf06e251bd2a859e353d68de2

SHA512
70a43c4572205d5ef81996712c35b9f59b1c2b11ba8da6dc070628cd9d8a7c8893a868df2a04857c68dd7a6baa203a4182b02585bb5188b50b01f0cd56111df9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
5a34d0c75dac3de73a7db4bbbbab23de

SHA1
6b90b22f9a22255f4fb3dfa57ccfc04bcc9c75d3

SHA256
5744373e541fa2bf9272254ecb15adfe362e8f40a2d01429f552df884a969a24

SHA512
49f59c6e8419ee72fd80ca75b274077b3a9cca5531bd013ab17f28bfd20f8c98dd9809577f4d42e246735a4fe014aaabb7dc201a0c26dfed12ca1378dac9bd41

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
557ae7abe9832b82482d820742e79060

SHA1
4500b11598c4d5e78a536dbe5f2500007341a8f7

SHA256
978a0a6477ced9b1b021f16129ca5b3103dcb4e271af652011c30ee790642ecc

SHA512
65a89474b0f72ac56e654d0114867470ce235ece1b1ec1966e71af20f4a7879edd7ac6e9e9b24889c79da54ca639f603e05a578ea6a7fad51c36a969e88c3606

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
13KB

MD5
9788c656d1941f0b06f74eb2df189566

SHA1
6da5049583196e8f9b85114bd5bd8ba7ed3ba06d

SHA256
c1ca27dc762a93bb08b1c6d0bff3f8336a06a3cfb0612c7beed06a219fa1ee42

SHA512
742810ff950379f7641bb922673a929c617cfc03d1ce03f5950be89c1c636380102c2c56d12fe04dc82f805fe1a14a42935e694654dc9f1b5d10a42cf7b0a544

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
ce4759963f99c0981482268e67e07e44

SHA1
da6b8c8bd7961d6d6402e48479c19224cfec76e9

SHA256
02b799f63a20491c663be753f8c713507c4d444ec6595cbb0829869b3d9c3c3b

SHA512
2c4bfdd9080e930c90a19b3c6b96c3bfc8f67d5d110347da5fa4f08befccca38e9b6623743327df723697c38e425deaa735e088c9c4948e124d80a987e76efba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
64b571c18f2820ae3c89d5b4acdbb253

SHA1
22fb9c9f73459006b5c947a69acf018559e637b0

SHA256
dc27f79ee420ea08bd2de64f66345005b9415042535c5fcb44ef490629e4ae5f

SHA512
a9288e17017c750b4ae901fd22863bf34002378cca571942ecc4c792aa50705cf5520570efbe2376ffffc542e014c385e07067cea89a4e10e6bd99ff3947fb6d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
d936e9ccc087b6c39e55233526e43ebc

SHA1
12d238ea5ef1f7fcb7efd5dcca0930fe1b3f09fb

SHA256
9a9874f7e3f033fd68015bb9700cd5caadda5ec3208418dc1f3a05e4d5833ee5

SHA512
57a4090e1fe40faff2a82598f517fbaccec8ceaf85aa006c6f5816fe1115bf18684094760e79a3dcfaa6ee25852addc018a58009ec09dbda5d51958c2d34ba5e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
764ddd3706cc48bbfe125228d1a25ebf

SHA1
f5da862c4c8fd1f3e582b72aff495de92afee4c8

SHA256
efd4398879a7d1c6d4fcafa22ad637fa716e097260d6feb00eec9125bd052e92

SHA512
61b2aad590c5b9f7a9282fbf0a3b597a014a2368bed9a692af98fb5a8d22c4d6e105eaa65502640bf45decc78d4f2dcc907a8ca857f276aaddfae66c7781767b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
386e485ffae125aa6f9181e9d1f08703

SHA1
3b704d43e0d1e2d48291ea403c6ac8220495daa2

SHA256
3e464e5580081d2760ae9020b9ff5d157b1d9a9831543987c81c3f7487c22c5c

SHA512
04409d60c3c9ea79fb037ede8b84831b0bff31bee21544c5d818bf18de40796a4fa144046fa9549fa38a6a3f72fe816803206592d07566dad895fef8a0dea311

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
d83e49fcb745ec712655791744bed103

SHA1
5a4dcb531393a4859a1bd3209d9372eea438482c

SHA256
fc869ea2aadf3fde11105461f2db1dc310f9d005134161c87dd30daa18460817

SHA512
c899dbe566c50b38b1b3890016905e255f76baa22acfdfaec85ed7aec36838f8eae5c395529345383a02522211156f93706db6d0f69c6b57496e5005d4258e13

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
08b6fdc6fe2ebf97234e2f6aee48c16c

SHA1
7086302fe649dce6a0d83b8ec83978fba2278a0c

SHA256
ababb7febed38c7506cc435f81b571e51cf3ab9f76af051d71693c79db599d5e

SHA512
b1e9a1a4c9b7ff0a493cd3975a431dfe51b42f906000e11dc317d06eff0bc28c8511d8eca654a3163d774c9a181d83db8faaa19f103b8401e9e20c82284ecefc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
b5571a21e42de4264cae7f73269ad4db

SHA1
eef5c45cf6e5968a63fae70ad06386a001e4c785

SHA256
8ff062cdd1bf3e70e251aa12fb3d7194311b64ce32bf7b445b124ff71dd8b21a

SHA512
3a66f0cb4f7802386542dbabd80506308dc1cacad26a4d4047d7ca06dd3ce81dd51bb6e246ede244dd76d1a2b933e9666647f1e358fc33094d7bc569e326fc2f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57c350.TMP

Filesize
538B

MD5
40759d091f2cbde0364e988a5aba7d95

SHA1
93556f535eee128ed99b27b9b6a975fe5db871ec

SHA256
f7c9ced080603308085e38ec00edef04d3bf3e0765561143aef2e153b72db3b7

SHA512
930db8a5dbf60c831da1c546e93ac5a63bcb1994baef0b900f1ff9641770d87d53f24bbdf1df2c731987b406ed26154fe1e8c135a1f94a507812379cc8853a1f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
0c7f68442a22346aada11aba8898d8ba

SHA1
2881eee11d5b50121045f08de360b8ec5043b3b2

SHA256
ba55cbdc3db280dedd926519c9456456050cc0081c208c94f316f7efa2ed0102

SHA512
6bc1a40fa79a50a7dd9e935ba7a13f2fd5ddf82d8d6282efbf7e9eaebbcfebf6e9e2c64ddfe4ab5a6c82cdfac92d7f1c67809583e12e9347c21ee06f6ac317f8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
f8cd34f04ac8967ece3f10cedc27f9e8

SHA1
c5a6d11109ad86ddc46d009b318e3694c889118d

SHA256
fa4523dedc5fcea46aee0c7d94eb99fd156e29633066bd84880f096fe31e60b9

SHA512
2e11e2e3baec24324567842097cfc1854f7f49a9bf508ba95c6a440938946b9c71347444fd432a17fc7a837f58a4a27b62838fff411ccfa05d804ae2e3e26377

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
caa4f808b292395b9f7ec9471e4a3aa3

SHA1
a9ce5badac148e2ee7272102614b29771d33d4eb

SHA256
bae3fd1df6c7269197b92ca21cbee5f15f8f2ddf3c9367bb3a9b7bbf08104ac6

SHA512
f42394ac4df954207bc9d6d9d923f76c723d6d66385c0bdb7ef5ac79e1459be95e172cf1640e68ee1b2fa6756c68df8a12706e106ada529be194d63a365a21a4

Download Submit
C:\Users\Admin\AppData\Local\Temp\is-PCB84.tmp\processhacker-2.39-setup.tmp

Filesize
785KB

MD5
1c96ed29e0136825e06f037bf10b2419

SHA1
b74a55279474253639bebf9c92f10f947145ff30

SHA256
b10cf8cdf541ca0dd6df79e66fb4b0854dcac717aba034ba0c4961bff92fd021

SHA512
0e74854d9de4e3944b2cff9b5de7eb19fdec1fee6c9576cae6cd81741adf84eac421cb743b1df30183f645ffe849357b6a85b5be8d7f6e2efe289bbe4573e177

Download Submit
C:\Users\Admin\Downloads\DiscordNitroGenerator.zip

Filesize
3.4MB

MD5
effb06680d43f7ec34bb93e37939426e

SHA1
db26b486cc64ebaf359059810987dda684fc7599

SHA256
74a3d7300796f0b08cfe6ab2e9ac4440bc7419bb88ad97b9380d398a463f15b5

SHA512
724df022a77022cfa4b8e9cd5af44a26ab714fbb65256e2df251cf28b7eb18fee9718cb5d73c5d466e8720bebbfbe82a1544608a81b166c6e242fe4da8a373e5

Download Submit
C:\Users\Admin\Downloads\DiscordNitroGenerator\DiscordNitroGenerator.exe

Filesize
3.4MB

MD5
3b51f998a1372e3b8704db98c7fb3712

SHA1
0186378038cd8c8572d77102a2efe01dd6090ce0

SHA256
f65cc8e910ff13ea76002bf5658ca429fa29f79db669956e374297751fae3d24

SHA512
38b225d93258bdfbe3d0bfd20856acf2e346155714cee1e7fc1131f030d0270e81b1dce67ae5ace8238a13931c659178b77e84050894e719ee9df27d4501ad45

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 527692.crdownload

Filesize
2.2MB

MD5
54daad58cce5003bee58b28a4f465f49

SHA1
162b08b0b11827cc024e6b2eed5887ec86339baa

SHA256
28042dd4a92a0033b8f1d419b9e989c5b8e32d1d2d881f5c8251d58ce35b9063

SHA512
8330de722c8800ff64c6b9ea16a4ff7416915cd883e128650c47e5cb446dd3aaa2a9ba5c4ecda781d243be7fb437b054bbcf942ea714479e6cc3cef932390829

Download Submit
memory/4124-1161-0x0000000000400000-0x0000000000420000-memory.dmp

Filesize
128KB

Download
memory/4124-1205-0x0000000004FD0000-0x0000000004FE2000-memory.dmp

Filesize
72KB

Download
memory/4124-1206-0x0000000005100000-0x000000000520A000-memory.dmp

Filesize
1.0MB

Download
memory/4124-1207-0x0000000005030000-0x000000000506C000-memory.dmp

Filesize
240KB

Download
memory/4124-1210-0x0000000005070000-0x00000000050BC000-memory.dmp

Filesize
304KB

Download
memory/4124-1200-0x0000000005530000-0x0000000005B48000-memory.dmp

Filesize
6.1MB

Download
memory/4776-1135-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/4776-1154-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/4776-1178-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/4776-1125-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/4900-1049-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/4900-859-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/5820-1295-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/5820-1296-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/5820-1305-0x0000000000400000-0x000000000094F000-memory.dmp

Filesize
5.3MB

Download
memory/6004-1043-0x0000000000400000-0x00000000004D4000-memory.dmp

Filesize
848KB

Download

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response