Overview

URLgeorge-login.buzz/sparkat/a1b2c3/5982cc3a813cc018766e30b83f866fd9/login/
IP 188.114.97.1 (Colombia)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2023-02-07 22:09:12 UTC
StatusLoading report..
IDS alerts1
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (14)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
george-login.buzz (2) 0 2023-02-02 12:07:00 UTC 2023-02-03 00:46:26 UTC 188.114.97.1 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2023-02-07 04:09:37 UTC 35.241.9.150
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2023-02-07 04:09:08 UTC 54.149.71.248
www2.bing.com (1) 1811 2015-10-25 19:49:43 UTC 2023-02-07 17:19:17 UTC 204.79.197.200
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2023-02-07 13:17:44 UTC 34.120.237.76
r3.o.lencr.org (9) 344 2020-12-02 08:52:13 UTC 2023-02-07 04:09:08 UTC 23.36.77.32
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2023-02-07 04:10:04 UTC 34.160.144.191
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2023-02-07 13:24:55 UTC 93.184.220.29
r.bing.com (2) 1184 2020-05-07 19:02:14 UTC 2023-02-06 17:14:14 UTC 95.101.10.122
assets.msn.com (1) 188 2018-09-20 23:46:35 UTC 2023-02-07 17:13:21 UTC 95.101.10.192
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2023-02-07 04:14:22 UTC 34.117.237.239
www.bing.com (37) 91 2013-06-14 19:00:40 UTC 2018-11-01 21:19:15 UTC 204.79.197.200
login.microsoftonline.com (1) 25 No data No data 20.190.159.22
login.live.com (1) 79 2012-05-21 07:00:20 UTC 2023-02-07 17:12:07 UTC 40.126.32.135

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2023-02-07 22:09:52 UTC 2 Client IP  188.114.97.1 ET INFO HTTP Request to a *.buzz domain 

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2023-02-07 2 george-login.buzz/sparkat/a1b2c3/5982cc3a813cc018766e30b83f866fd9/login/ Malware
2023-02-07 2 george-login.buzz/sparkat/a1b2c3/5982cc3a813cc018766e30b83f866fd9/login/ Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

ThreatFox
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 188.114.97.1
Date UQ / IDS / BL URL IP
2023-03-30 15:16:21 +0000 0 - 0 - 2 n7e3x0nxajzjggknkwv.richardl.xyz/usps/verific (...) 188.114.97.1
2023-03-30 15:14:06 +0000 0 - 0 - 2 nrinbidii2zprpdk.richardl.xyz/usps/verificati (...) 188.114.97.1
2023-03-30 15:12:07 +0000 0 - 0 - 1 rje60ffewmnttixrkpyrmqmfwcqm.richardl.xyz/usp (...) 188.114.97.1
2023-03-30 15:08:45 +0000 0 - 0 - 2 1a0jucpslwbtoeihcrmzpx.lspower.xyz/usps/verif (...) 188.114.97.1
2023-03-30 15:08:33 +0000 0 - 0 - 1 fsajx8tble4g7vkjnt0fr0hcz4.richardl.xyz/usps/ (...) 188.114.97.1


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-03-30 15:17:48 +0000 0 - 0 - 1 5fl6abmcvdfn.richardl.xyz/usps/verification.html 188.114.96.1
2023-03-30 15:16:59 +0000 0 - 0 - 2 i6bs67lbpblhq3o5nsov.richardl.xyz/usps/verifi (...) 188.114.96.1
2023-03-30 15:16:21 +0000 0 - 0 - 2 n7e3x0nxajzjggknkwv.richardl.xyz/usps/verific (...) 188.114.97.1
2023-03-30 15:16:06 +0000 0 - 0 - 2 mlsjtmtyf0msxfgdx.richardl.xyz/usps/verificat (...) 104.21.26.177
2023-03-30 15:15:44 +0000 0 - 1 - 0 cdn.discordapp.com/attachments/10878322574961 (...) 162.159.135.233


Last 5 reports on domain: george-login.buzz
Date UQ / IDS / BL URL IP
2023-02-09 02:40:24 +0000 0 - 1 - 4 george-login.buzz/sparkat/a1b2c3/cf7aaf1cd77e (...) 188.114.96.1
2023-02-09 02:33:40 +0000 0 - 2 - 8 george-login.buzz/sparkat/a1b2c3/cf7aaf1cd77e (...) 188.114.97.1
2023-02-08 18:13:05 +0000 0 - 1 - 4 george-login.buzz/sparkat/a1b2c3/e3eff93e2844 (...) 188.114.96.1
2023-02-08 18:13:03 +0000 0 - 1 - 4 george-login.buzz/sparkat/a1b2c3/26e9432540c0 (...) 188.114.97.1
2023-02-08 18:02:15 +0000 0 - 2 - 8 george-login.buzz/sparkat/a1b2c3/e3eff93e2844 (...) 188.114.97.1


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-02-13 23:57:22 +0000 0 - 0 - 4 cdek.id3355975579.click/manipulation/id335597 (...) 104.21.2.104
2023-02-13 23:56:56 +0000 0 - 0 - 4 yandex.id3355975579.click/manipulation/id3355 (...) 172.67.129.21
2023-02-13 23:56:49 +0000 0 - 0 - 3 avito.id3355975579.click/manipulation/id33559 (...) 104.21.2.104
2023-02-13 23:52:27 +0000 0 - 0 - 3 blablacar.id3355975579.info/manipulation/id33 (...) 172.67.217.198
2023-02-08 13:08:03 +0000 0 - 0 - 2 nifty-margulis.45-88-108-231.plesk.page/ics/a (...) 45.88.108.231

JavaScript

Executed Scripts (54)

Executed Evals (1)
#1 JavaScript::Eval (size: 12) - SHA256: a388b58969a035c3bdc32559771bea9f089868ba4723c7456f5e61ab00d8ccae
u =>
    import (u)

Executed Writes (0)


HTTP Transactions (67)


Request Response
                                        
                                            GET /sparkat/a1b2c3/5982cc3a813cc018766e30b83f866fd9/login/ HTTP/1.1 
Host: george-login.buzz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         188.114.97.1
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 07 Feb 2023 22:09:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 07 Feb 2023 23:09:00 GMT
Location: https://george-login.buzz/sparkat/a1b2c3/5982cc3a813cc018766e30b83f866fd9/login/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QwP1JwatyIcm0iMEyaiLr3xXvmdVrLzl0cxyPuG3%2Bn1yJx%2B4Lp7sETASjoIedhgy6BXO4Ma%2F6gh3MQN2k7tpqM5io622AKEeaJbOnZqHW%2BqhvTf2SCLjWBTKZjl07AvASpDCiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795f728b9d6b0b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
  IDS:
    - ET INFO HTTP Request to a *.buzz domain
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6990
Expires: Wed, 08 Feb 2023 00:05:30 GMT
Date: Tue, 07 Feb 2023 22:09:00 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8984
Expires: Wed, 08 Feb 2023 00:38:44 GMT
Date: Tue, 07 Feb 2023 22:09:00 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 21:36:32 GMT
age: 1949
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    bf0c602d32b3c14606f22a86183b5e3c
Sha1:   6eabd8d83475eba731968abe1a05a8bfd272f160
Sha256: 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3563
Expires: Tue, 07 Feb 2023 23:08:24 GMT
Date: Tue, 07 Feb 2023 22:09:01 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: /H/x2S8CXOvuinP1ZyHBR4lRO/axrh8Q2vGKywm24vvNXGtGa/PGBBC5/EHflB7wdrrFhyFlsRw=
x-amz-request-id: VJK5FZMXVBXWX3X5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 21:45:43 GMT
age: 1398
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    e76071a28ee566dababb3834f46d68ed
Sha1:   aebb4e68c1ba2de0f90025283e8ed8470944fde0
Sha256: 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=161511
Date: Tue, 07 Feb 2023 22:09:01 GMT
Etag: "63e29fe4-117"
Expires: Thu, 09 Feb 2023 19:00:52 GMT
Last-Modified: Tue, 07 Feb 2023 19:00:52 GMT
Server: nginx
Content-Length: 279

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=161511
Date: Tue, 07 Feb 2023 22:09:01 GMT
Etag: "63e29fe4-117"
Expires: Thu, 09 Feb 2023 19:00:52 GMT
Last-Modified: Tue, 07 Feb 2023 19:00:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /th?id=OHR.CodexMountains_EN-US2295216929_1920x1080.jpg&rf=LaDigue_1920x1080.jpg&qlt=50 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: image/jpeg
                                        
cache-control: public, max-age=691200
content-length: 73647
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0E34893CB7934F1B91C2C450C78C3C8B Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size:   73647
Md5:    4ae4572731632c549e32933fff134703
Sha1:   198ccd3f02f4d1fe0eb8a81911e1d5f2b4ccd46b
Sha256: 9af9fc03089bd0128065c3eebf398d446877ff4e19dcbeb2b9815f901d5d569a
                                        
                                            GET /rp/lmu8EBCaPRMKtay8LSArGyY3mv4.br.js HTTP/1.1 
Host: r.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         95.101.10.122
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
content-length: 5
content-encoding: br
content-md5: 5aqSHeuG+BOAJrucJAgg+w==
last-modified: Wed, 17 Aug 2022 06:39:21 GMT
etag: 0x8DA801B37C8EF2D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 22883801-601e-00b8-3ee2-f72cf3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82547
expires: Wed, 08 Feb 2023 21:04:48 GMT
date: Tue, 07 Feb 2023 22:09:01 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.760a655f.1675807741.298433a4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   5
Md5:    e5aa921deb86f8138026bb9c240820fb
Sha1:   966bbc10109a3d130ab5acbc2d202b1b26379afe
Sha256: 18b848a269a2d23ead68930fee1552542e8bd30c65f5d374d3ebea036c903381
                                        
                                            GET /rp/N7tKdYmlODF3joFiKWv51yR3FE4.svg HTTP/1.1 
Host: r.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

search
                                         95.101.10.122
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-length: 1766
content-md5: lGuNIJUzdVFl1dD+jXlfIg==
last-modified: Wed, 17 Aug 2022 05:49:33 GMT
etag: 0x8DA801442F5D6E9
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d4b31ee8-401e-0029-2cdf-fd4941000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=221855
expires: Fri, 10 Feb 2023 11:46:36 GMT
date: Tue, 07 Feb 2023 22:09:01 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.760a655f.1675807741.298433aa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1766), with no line terminators
Size:   1766
Md5:    946b8d209533755165d5d0fe8d795f22
Sha1:   37bb4a7589a53831778e8162296bf9d72477144e
Sha256: d9233990059b3f88531f67b1c4725ef4f28f46564ae7e511472f48e2a84f9f1d
                                        
                                            GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: image/x-icon
                                        
cache-control: public, max-age=15552000
content-length: 4286
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-cache: TCP_HIT
server: Kestrel
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-/7geeYa9AjTqJ6NSFUBbPHMm4kUYG2CkAMAPBU/HAOo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 142C92A7304844AC9CC51BF3DF313569 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    30967b1b52cb6df18a8af8fcc04f83c9
Sha1:   aaf67cd84fcd64fb2d8974d7135d6f1e4fc03588
Sha256: 439b6089e45ef1e0c37ef88764d5c99a3b2752609c4e2af3376480d7ffcfaf2e
                                        
                                            GET /rp/6Hy0l7O248Q6ir-oX_Eoni2EIwg.br.js HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public, max-age=432000, no-transform, immutable
content-length: 6683
content-encoding: br
content-md5: IEuzdbUReweIShNzKeB7qw==
last-modified: Wed, 14 Dec 2022 23:50:35 GMT
etag: 0x8DADE2DFE72E2EF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: b9ef9644-001e-00e3-6204-3a15c8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-azure-ref-originshield: Ref A: E2883413BC694A8F902BD57EB89E6815 Ref B: AM3EDGE0615 Ref C: 2023-02-07T07:40:00Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
x-msedge-ref: Ref A: B24C6F027D6946DCB383839277AA4C65 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17343), with no line terminators
Size:   6683
Md5:    204bb375b5117b07884a137329e07bab
Sha1:   e87cb497b3b6e3c43a8abfa85ff1289e2d842308
Sha256: 030c5d06364c1a40ce1d47165d462d3ab67a135fe427978201cf376cf57f7ea1
                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:-1,%22BC%22:-1,%22SE%22:-1,%22TC%22:-1,%22H%22:-1,%22BP%22:54,%22CT%22:58,%22IL%22:2}}&P=SERP&DA=DUBE01 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3F096C47C5C64C07912B59748B85AC3B Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /fd/ls/lsp.aspx? HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 344
Origin: https://www.bing.com
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 204 No Content
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9C6F9511A6714EE78AB6C0E0D23BC66D Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /sparkat/a1b2c3/5982cc3a813cc018766e30b83f866fd9/login/ HTTP/1.1 
Host: george-login.buzz
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         188.114.97.1
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Tue, 07 Feb 2023 22:09:01 GMT
location: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jnc4oEwktalSkvpZ4yVM%2Bul5bPrlYnBSFCin42B4YLMSvMHoHgd2kwrO437baKWcL9k9YOuJwTiN395TcsAdyXCjJuxBh%2BRq373Sm3aGJSKdvNcrAfJF8SSfKQ3QnDVzJ7219w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795f728dfa681c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  OpenPGP Public Key\012- data
Size:   126240
Md5:    c869129706723fed30a21d508a64e9b4
Sha1:   29b74da0aa13a7aa5c23071ef18770dec8de2077
Sha256: 1016c57fe6168130abaf9cf864dccaab0b7befe05d26647a6d200a177503c99e

Alerts:
  Blocklists:
    - fortinet: Malware
  IDS:
    - ET INFO HTTP Request to a *.buzz domain
                                        
                                            GET /hp/api/v1/codex?format=json& HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bing.com/
Content-type: application/json
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: private
content-length: 601
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; HttpOnly
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C0D3EF30BBB547BC910442C7DA0F7776 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2148), with no line terminators
Size:   601
Md5:    c658b4f79c7ac1605c5cb4019f3cd1c3
Sha1:   0db3159a4ea7e2b90a486d1b6f4f01ad70bc1272
Sha256: 6cf73a2ce08b13aba14a2b5576aee3f0a84d4c560a4e2145d5b3f43a4d548756
                                        
                                            GET /images/sbi?mmasync=1&ptn=Homepage&IID=SBI&IG=69EEAB20E54140E59BB58DFCBA54894F& HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bing.com/
Content-type: application/json
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: private
content-length: 16047
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; HttpOnly SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; domain=.bing.com; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; secure; SameSite=None
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E9BC4763563E4C55960E8B4B2E9F7254 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (28929), with CRLF, LF line terminators
Size:   16047
Md5:    218891b79c98101f46317a8aae73fe04
Sha1:   fb6f90f58c95b5cbc2ef9deb97b0f185d908d63b
Sha256: f2f459871dda8d39a51475e1e5854aa3abbdac7ca07805f8f51d0a09630c4ec4
                                        
                                            GET /hp/api/model HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bing.com/
Content-type: application/json
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: private
content-length: 4676
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; HttpOnly ULC=; domain=.bing.com; expires=Mon, 06-Feb-2023 22:09:01 GMT; path=/; secure; SameSite=None _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; domain=.bing.com; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; secure; SameSite=None
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2895DC273BDE4D029079C3571B165B14 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (18752), with no line terminators
Size:   4676
Md5:    2c7239ea99769d1954de0fd5a0e6260c
Sha1:   1edb867e0d708d5701511bb15ff1fb521d2319f1
Sha256: 434b029106c2c5b15d1c10b8fc56606b330f83b57785fe404287c5538b4049a0
                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fimages%2Fsbi%3Fmmasync%3D1%26ptn%3DHomepage%26IID%3DSBI%26IG%3D69EEAB20E54140E59BB58DFCBA54894F%26%22%2C%22format%22%3A%22dom%22%2C%22time%22%3A1124%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793282%2C%22Name%22%3A%22requested%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D1E48C3DDF2D40B4A69732778A6CC194 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fv1%2Fcodex%3Fformat%3Djson%26%22%2C%22format%22%3A%22json%22%2C%22time%22%3A1124%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793283%2C%22Name%22%3A%22requested%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DC74BA0C97E64FDAAC9140232770E271 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fv1%2Fmsnpopularnow%3F%26format%3Djson%26ecount%3D20%26efirst%3D0%26%26%22%2C%22format%22%3A%22json%22%2C%22time%22%3A1127%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793286%2C%22Name%22%3A%22requested%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2B9DF199FE8C4B4F812C73CE30488240 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useDynamicModules%22%2C%22module%22%3A%22https%3A%2F%2Fassets.msn.com%2Fbundles%2Fv1%2FbingHomepage%2Flatest%2Fwidget-initializer.js%22%2C%22error%22%3A%22%22%2C%22time%22%3A1128%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793287%2C%22Name%22%3A%22Importing%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 532EA460EF3D4C2298D4A746421539D6 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fmodel%22%2C%22format%22%3A%22json%22%2C%22time%22%3A1128%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793287%2C%22Name%22%3A%22requested%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: ED3784F1CED74B20AEA2D4B849DD0C78 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 21:14:52 GMT
age: 3249
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /vs/ec/start.mp3 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 206 Partial Content
content-type: audio/mpeg
                                        
cache-control: public, max-age=15552000
content-length: 31561
content-range: bytes 0-31560/31561
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-cache: TCP_HIT
server: Kestrel
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-28pEwDovvjLPWtFUmeF2jmd4M/p77uqZHZaDyxU7260='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: BBEEBBB2C9384C99B19BC5AA5BEDBF10 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Size:   31561
Md5:    f139839a0b2291e7e31f2589454e470f
Sha1:   754ac75088a1b1c586acbe6751e52a1835a4e428
Sha256: a8b226c9281cae3e162006c9d509f5bfc649724876ca81a95a48e7f1fa9886ef
                                        
                                            GET /vs/ec/stop.mp3 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 206 Partial Content
content-type: audio/mpeg
                                        
cache-control: public, max-age=15552000
content-length: 35386
content-range: bytes 0-35385/35386
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-cache: TCP_HIT
server: Kestrel
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-CH6pKNDh2lOR196nQDUQsTfHkrR/tcNt+izzlF5T5A4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B0E6AA47831847DB90ADB2E268B8FC89 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Size:   35386
Md5:    475028300cc8c44e7a4db97079bfca2b
Sha1:   09b8d7346324c456fcea95fa4826fc94686ce52c
Sha256: 45c8123c99a15aef1762667d2fbc2de1937449d20610023a21e47b313e3b7ee4
                                        
                                            GET /hp/api/v1/msnpopularnow?&format=json&ecount=20&efirst=0&& HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bing.com/
Content-type: application/json
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
cache-control: private
content-length: 2889
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; HttpOnly
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 66A5DBD20D6F43508C5069406774F06C Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (13701), with no line terminators
Size:   2889
Md5:    918f6e311431b19b3b9c24e4ab33cee3
Sha1:   dcbaaea5524808512488e11bd7f7ae2b9c2487c0
Sha256: 6747e13e41be693bb7dc0a9a5bc37abec2c8c1d26546cae402908931e15c9df3
                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fv1%2Fcodex%3Fformat%3Djson%26%22%2C%22format%22%3A%22json%22%2C%22status%22%3A200%2C%22time%22%3A1198%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793357%2C%22Name%22%3A%22fetched%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A4A49802F7A940A084C1879245665603 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fimages%2Fsbi%3Fmmasync%3D1%26ptn%3DHomepage%26IID%3DSBI%26IG%3D69EEAB20E54140E59BB58DFCBA54894F%26%22%2C%22format%22%3A%22dom%22%2C%22status%22%3A200%2C%22time%22%3A1198%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793357%2C%22Name%22%3A%22fetched%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C2A70E99CAFB4B29A57CFBE024E8AFAB Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fmodel%22%2C%22format%22%3A%22json%22%2C%22status%22%3A200%2C%22time%22%3A1199%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793358%2C%22Name%22%3A%22fetched%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 96F6754A55824E5FAFAC8B0D5974B3CB Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fv1%2Fcodex%3Fformat%3Djson%26%22%2C%22format%22%3A%22json%22%2C%22time%22%3A1255%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793414%2C%22Name%22%3A%22parsed%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 03BDA1E9F1684A9F8ED517E6723B5FEF Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fmodel%22%2C%22format%22%3A%22json%22%2C%22time%22%3A1255%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793415%2C%22Name%22%3A%22parsed%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BAB38857F4554E2184FEA628DFAFE018 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fimages%2Fsbi%3Fmmasync%3D1%26ptn%3DHomepage%26IID%3DSBI%26IG%3D69EEAB20E54140E59BB58DFCBA54894F%26%22%2C%22format%22%3A%22dom%22%2C%22time%22%3A1255%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793414%2C%22Name%22%3A%22parsed%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A25B78661A874F7A86196A9B0778D2D2 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6691
Expires: Wed, 08 Feb 2023 00:00:33 GMT
Date: Tue, 07 Feb 2023 22:09:02 GMT
Connection: keep-alive

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fv1%2Fmsnpopularnow%3F%26format%3Djson%26ecount%3D20%26efirst%3D0%26%26%22%2C%22format%22%3A%22json%22%2C%22status%22%3A200%2C%22time%22%3A1349%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793509%2C%22Name%22%3A%22fetched%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F1BFBF441EC64572A9BCA58BD0F954D4 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22useFetch%22%2C%22url%22%3A%22%2Fhp%2Fapi%2Fv1%2Fmsnpopularnow%3F%26format%3Djson%26ecount%3D20%26efirst%3D0%26%26%22%2C%22format%22%3A%22json%22%2C%22time%22%3A1357%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793516%2C%22Name%22%3A%22parsed%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3AB42E6E58194EE89E7DEC7937633144 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /notifications/render?bnptrigger=%7B%22PartnerId%22%3A%22HomePage%22%2C%22IID%22%3A%22Bnp%22%2C%22Attributes%22%3A%7B%22RawRequestURL%22%3A%22%2F%22%7D%7D&IG=69EEAB20E54140E59BB58DFCBA54894F&IID=Bnp HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache
pragma: no-cache
content-length: 8642
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 25882890D895480C8B73E2A40467666E Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (13622)
Size:   8642
Md5:    dae2b7a4dda847d83dbbb4abf9d049a9
Sha1:   716df445fc96278ec726bebd2b5e0f5c35989c60
Sha256: 6cbdf48c2c2248b82b4f958e3a5561c1880e33c8533116058ba6b5e583455d1b
                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22func%22%3A%22carousel%22%2C%22count%22%3A1%2C%22time%22%3A1395%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793555%2C%22Name%22%3A%22fetched%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 63A416C10D1C448FBC69F7B31B52C0D8 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22Count%22%3A18%2C%22time%22%3A1400%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1675807793559%2C%22Name%22%3A%22ProactiveTrendingNowTiles%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DED3AD229FA34E3F94F5B97061F7EC2B Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /rp/tfpoqzYv42r7UjQvzw0PVIoT2nY.png HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: image/png
                                        
cache-control: public, max-age=432000, no-transform, immutable
content-length: 8244
content-md5: g8mvGI2up1lxQ38/Z9qgXw==
last-modified: Tue, 24 Jan 2023 20:16:32 GMT
etag: 0x8DAFE47E28F035A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 57ca4fdd-d01e-00df-7502-3a3c0f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-azure-ref-originshield: Ref A: 2E8F1113FB324A478A520B9CAE2F280E Ref B: AM3EDGE0713 Ref C: 2023-02-07T07:53:50Z
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaot"}]}
x-msedge-ref: Ref A: 957103D7653549D4B4FC70646A1D6ADE Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 842 x 92, 8-bit colormap, non-interlaced\012- data
Size:   8244
Md5:    83c9af188daea75971437f3f67daa05f
Sha1:   b5fa68ab362fe36afb52342fcf0d0f548a13da76
Sha256: 96054ad091360d568c6d01633833ac8988981696e14b1ec230e96a2457884990
                                        
                                            GET /bundles/v1/bingHomepage/latest/widget-initializer.js HTTP/1.1 
Host: assets.msn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bing.com/
Origin: https://www.bing.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.192
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 4555
content-md5: 7+/7TtpAsW44ZYFwwjW1ow==
last-modified: Thu, 02 Feb 2023 23:27:13 GMT
etag: 0x8DB057503C0C11B
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 03055453-201e-0008-525e-377614000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
content-encoding: br
date: Tue, 07 Feb 2023 22:09:02 GMT
akamai-request-bc: [a=95.101.10.188,b=215068532,c=g,n=NO__OSLO,o=20940]
server-timing: clientrtt; dur=2, clienttt; dur=1, origin; dur=0 , cdntime; dur=1
akamai-cache-status: Hit from child
akamai-server-ip: 95.101.10.188
akamai-request-id: cd1af74
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://deff.nelreports.net/api/report?cat=msn"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.1}
cache-control: public, no-transform, max-age=86400
timing-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13100)
Size:   4555
Md5:    efeffb4eda40b16e38658170c235b5a3
Sha1:   e078e0d6863751d2a6701ca0330c9d12ca1df7f9
Sha256: 2da59d63f7bf73a152fb1d90b28ce1b92dac8e30c61b832cd085e6a7b4a452b9
                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1675807793643%2C%22Name%22%3A%22OverlayBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1675807793643%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1675807793657%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1675807793657%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22func%22%3A%22useDynamicModules%22%2C%22module%22%3A%22https%3A%2F%2Fassets.msn.com%2Fbundles%2Fv1%2FbingHomepage%2Flatest%2Fwidget-initializer.js%22%2C%22error%22%3A%22%22%2C%22time%22%3A1596%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1675807793755%2C%22Name%22%3A%22Imported%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7A4F091972644511967E8A769F766C71 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O41mWCLdz+V6G1EPiDOPEA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.149.71.248
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6HpRrMA8d8Dfx8I8naIG8S9CYfs=

                                        
                                            POST /rewardsapp/ncheader?ver=33965297&IID=SERP.5019&IG=69EEAB20E54140E59BB58DFCBA54894F HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 4
Origin: https://www.bing.com
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 135
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 63A3B539C902438F9E2B3728D5F0959F Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   135
Md5:    220681134a8094ce652f9fe8016037a5
Sha1:   a771c8027c266aded9f60f97965d2f9bf4f67af8
Sha256: 8af854ff412f28bd161367c8e5b1a5469e03363a5ad11c14634b6abc38388b9e
                                        
                                            POST /rewardsapp/reportActivity?IG=69EEAB20E54140E59BB58DFCBA54894F&IID=SERP.5028&&src=hp HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 33
Origin: https://www.bing.com
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache
pragma: no-cache
content-length: 611
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly _RwBf=ilt=7&ihpd=7&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:09:02.3868199+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; domain=.bing.com; expires=Wed, 07-Feb-2024 22:09:02 GMT; path=/; secure; SameSite=None _SS=SID=36BD02ECB79160EE0FF6105DB664615B&R=0&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 84AE5018E5634CB18A33012ABA86892E Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1266)
Size:   611
Md5:    38bde300453ef55734a16105b31a0aa7
Sha1:   f6b14698c774c756e670457cf07371b7633ba17a
Sha256: 592708c3d6fe069ba60569f8975bc52de5c7a9c983a636b5aeeabca93823276d
                                        
                                            GET /ipv6test/test?FORM=MONITR HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B; ipv6=hit=1675811393893
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 64
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly
access-control-allow-origin: https://www.bing.com
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F17244A8402F489782E131A2B968FBB0 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   64
Md5:    1bf1ff302246bc930c733c405f985472
Sha1:   de1fb6765de8bd2d9d98507705e24d51d2bd335c
Sha256: c312aec426076b101ce2fadef09fc64b81aa601ba9bde94e4ad24ac737e715a8
                                        
                                            GET /ipv6test/test HTTP/1.1 
Host: www2.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B; ipv6=hit=1675811393893
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 64
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly
access-control-allow-origin: https://www.bing.com
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3DF9FB5C67354518801FAE27F04AAC0F Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   64
Md5:    1bf1ff302246bc930c733c405f985472
Sha1:   de1fb6765de8bd2d9d98507705e24d51d2bd335c
Sha256: c312aec426076b101ce2fadef09fc64b81aa601ba9bde94e4ad24ac737e715a8
                                        
                                            GET /fd/ls/l?IG=69EEAB20E54140E59BB58DFCBA54894F&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1675807793816%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2263e2cbfdedeb443586f74662fedf084f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1675807793839%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2263e2cbfdedeb443586f74662fedf084f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1675807793839%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22ShowAnimation%22%3A%22%22%2C%22RedDotAnimation%22%3A%22true%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AnimationLoad%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1675807793940%2C%22Name%22%3A%22AnimationLoad%22%7D%5D HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=7&ihpd=7&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:09:02.3868199+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404541&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B&R=0&RB=0&GB=0&RG=200&RP=0; ipv6=hit=1675811393893
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D20E592DE8AB458A9EA36E8574852712 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=97e99eb0-55dd-4253-9054-9ad7af0bb170&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%2269EEAB20E54140E59BB58DFCBA54894F%22%7d HTTP/1.1 
Host: login.microsoftonline.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: brcap=0; MSFPC=GUID=27491a5fca0c436896bdbf20a1588da0&HASH=2749&LV=202205&V=4&LU=1652883922743; ESTSSSOTILES=1; AADSSOTILES=1; buid=0.AYEAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAD--DLA3VO7QrddgJg7WevrCcpY0pd80GcxbpOXazp_M4-S8hVqVEJYp4wG4Kt7H56XVnyYE1P2u9D4QwMz_rCovvWI_D67ciUM8yIKeUora0cWDsAJRCdZ4I42ttAKyu8gAA; fpc=At508VhsBUlFg6g-YdQ2o9yCeMQLBgAAAP7BdNsOAAAA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         20.190.159.22
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-store, no-cache
Pragma: no-cache
Content-Encoding: gzip
Expires: -1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: ced5e65a-c997-4450-b05f-31cdafb4d400
x-ms-ests-server: 2.1.14526.6 - WEULR2 ProdSlices
Referrer-Policy: strict-origin-when-cross-origin
X-XSS-Protection: 0
Set-Cookie: buid=0.AYEAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAA.AQABAAEAAAD--DLA3VO7QrddgJg7Wevr1tL1TNX1TscLSD5Vbb0dvXCScqlBXTHuFYZQAnfCcOCNUnrRsLJcyw401gL_x7Ek7CUFmvbr2LbMq57ep63tui_E5PzxqwcjajQJ3IQDRt0gAA; expires=Thu, 09-Mar-2023 22:09:02 GMT; path=/; secure; HttpOnly; SameSite=None fpc=At508VhsBUlFg6g-YdQ2o9yCeMQLBwAAAP7BdNsOAAAA; expires=Thu, 09-Mar-2023 22:09:02 GMT; path=/; secure; HttpOnly; SameSite=None esctx=PAQABAAEAAAD--DLA3VO7QrddgJg7Wevr9AOdApfc6E1jLEZdLPYrYtUMruF6JDu5GnPVWoO6dKEzzuC7mttNlgRjy7yXKrAZaNt1wj_ywxrysGK4reY4bV5bMX9mFnTfLE991Wuc7IgeQ6nkAf-xN_AEQQqwT6l7H5BXdyWIrU_J6IZacXlkoODVzKvSIqo0Z8_7sxNCPWQgAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
Date: Tue, 07 Feb 2023 22:09:01 GMT
Content-Length: 680


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (627), with CRLF line terminators
Size:   680
Md5:    de2d7747e425cbf12b7271a60d47ead4
Sha1:   9436e75f8598b78f32daeebf8eb74b1ec2d09835
Sha256: 4fd958b30b8e2511bf28319f09d6cbdaf54e655e16bceb2e64beee52d6503653
                                        
                                            POST /orgid/idtoken/conditional HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.microsoftonline.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 708
Origin: https://login.microsoftonline.com
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=7&ihpd=7&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:09:02.3868199+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404541&HV=1675807788; _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; _SS=SID=36BD02ECB79160EE0FF6105DB664615B&R=0&RB=0&GB=0&RG=200&RP=0; ipv6=hit=1675811393893&t=4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html
                                        
cache-control: private
content-length: 1
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C07F37D1B402456BB0FA4DC2DBEBCFB2 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /login.srf?wa=wsignin1.0&rpsnv=11&ct=1675807741&rver=6.0.5286.0&wp=MBI_SSL&wreply=https:%2F%2fwww.bing.com%2Fsecure%2FPassport.aspx%3Fpopup%3D1%26ssl%3D1&lc=1044&id=264960&checkda=1 HTTP/1.1 
Host: login.live.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bing.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         40.126.32.135
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: no-store, no-cache
Pragma: no-cache
Expires: Tue, 07 Feb 2023 22:08:02 GMT
Location: https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: R3_BL2
x-ms-request-id: aef04d33-3444-4af0-acb4-6a001cc0a01a
PPServer: PPV: 30 H: BL02EPF0000E775 V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=12450280be2448d9958c55ffa5fd0f15; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly MSPRequ=id=264960&lt=1675807742&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Tue, 07 Feb 2023 22:09:02 GMT
Content-Length: 0

                                        
                                            GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bing.com/
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=7&ihpd=7&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:09:02.3868199+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404541&HV=1675807788; _SS=SID=36BD02ECB79160EE0FF6105DB664615B&R=0&RB=0&GB=0&RG=200&RP=0; ipv6=hit=1675811393893&t=4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: private
content-length: 184
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:02 GMT; path=/; HttpOnly _EDGE_S=SID=114BBBF5B52460F70E6DA944B4D161CC; domain=.bing.com; path=/; HttpOnly
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 285D0CBC8EC2403493ADFA313897CA55 Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:02Z
date: Tue, 07 Feb 2023 22:09:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   184
Md5:    c692cf35c4d3ad00b5a49bdf3cd2363c
Sha1:   eb9c1fb3345378800f697c7c92519c5188dd9f5a
Sha256: fa404c029e5e3109f687ed6e12018f34e43ecb2ef8991172af7bd9fc220562fe
                                        
                                            POST /fd/ls/lsp.aspx HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/xml
Content-Length: 10567
Origin: https://www.bing.com
Connection: keep-alive
Referer: https://www.bing.com/
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=7&ihpd=7&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:09:02.3868199+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404541&HV=1675807788; _EDGE_S=SID=114BBBF5B52460F70E6DA944B4D161CC; _SS=SID=36BD02ECB79160EE0FF6105DB664615B&R=0&RB=0&GB=0&RG=200&RP=0; ipv6=hit=1675811393893&t=4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         204.79.197.200
HTTP/2 204 No Content
                                        
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0293927AA04A4582A94E5C3BF7A8DA0C Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:03Z
date: Tue, 07 Feb 2023 22:09:02 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Wed, 08 Feb 2023 00:59:40 GMT
Date: Tue, 07 Feb 2023 22:09:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Wed, 08 Feb 2023 00:59:40 GMT
Date: Tue, 07 Feb 2023 22:09:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Wed, 08 Feb 2023 00:59:40 GMT
Date: Tue, 07 Feb 2023 22:09:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Wed, 08 Feb 2023 00:59:40 GMT
Date: Tue, 07 Feb 2023 22:09:03 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Wed, 08 Feb 2023 00:59:40 GMT
Date: Tue, 07 Feb 2023 22:09:03 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ovhdLaEGaDSC8X0F9VamLw0KyBPWkxfYg5pssOT8NOZP4IBtNk6Gfw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:48:52 GMT
age: 1211
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4227
Md5:    eedb4de12585c70ddb5b8f94fe6a59e2
Sha1:   83c9437e71a0a03b3e8ff652155a85eafa76cdda
Sha256: d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 14:35:27 GMT
age: 27216
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11205
Md5:    aa6c416b3a87ded887c9dcf7c51e5dd0
Sha1:   45f4ef9e68591c00669043abe96959bead8f17ae
Sha256: 9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7183
x-amzn-requestid: 02695a8d-2ab8-4d77-bfbe-f99418d8ef00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78YOGsyoAMF5wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17434-2614cef4059e7fd5009cb46d;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:42:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qbUWAiTEzfmIOkYgKdBEYxEnRky5wA7ajMWumei7fXeIqLN9B-riBw==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:45:03 GMT
age: 1440
etag: "e6ff750f12836637adf5b253d64c2102fdf3c180"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7183
Md5:    92008e687831334af1cdbf4b8a57579f
Sha1:   e6ff750f12836637adf5b253d64c2102fdf3c180
Sha256: 39af3e630e0271b54139849c1b596efbdc69a23ce943e5330341d49f77798c7c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13390
x-amzn-requestid: e7653b49-3160-42e3-8292-8ae32604f775
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc8KEoPoAMFrUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0eb4-68fd76a95ffa656318bedff6;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KaitXsesZ9mJducJ54ChzQGfb-2-hEN4W_QojGMKXYEji4xsjNdWCA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 18:44:41 GMT
age: 12262
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13390
Md5:    75b0935816ca54d5d20a9fffa5531e0d
Sha1:   bd8374980c16b7d5a28e55b8bef2215713b1ebb2
Sha256: 4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5634
x-amzn-requestid: c380f2eb-c707-4086-9646-179ea89ba210
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fy9JKEpqoAMF9RA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dddbd4-49510561740468ba7b39f211;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 04:15:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ofAz9sRlztBs3zypgsL9DkiJypsxagC7ZcUX3PLL_7FzUALp_MxtKA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 18:44:53 GMT
age: 12250
etag: "8fa486cdecffff8a663da2df88227ee784c298a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5634
Md5:    cf292b03a5db7eb8e0660a518f41233c
Sha1:   8fa486cdecffff8a663da2df88227ee784c298a2
Sha256: cfc5efb92068bdeeda5c95f9851213b14afa76776486d0493cf4c05b30453cf0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8328b9-b592-4c76-9101-54f0b2e220d0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14943
x-amzn-requestid: 1145ff12-5237-426c-8efc-c25c1061bcce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2GpMFTEIAMFxgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df1e3a-528eb972059e86c33334fedd;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 03:10:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: l4_Oe4gR-lLAFdTXTUvw2TCtg5D6X2P1ELocQ53QHK9s3vj30oacAA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:02:48 GMT
age: 65175
etag: "6679d1ff8f2986b6103e94a54632892e2280b149"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14943
Md5:    284a62b098827c448218892eb5a732f9
Sha1:   6679d1ff8f2986b6103e94a54632892e2280b149
Sha256: 17332bece792a4e8d571b5161145ef2105abc513e140c738885899401b9c8d14
                                        
                                            GET / HTTP/1.1 
Host: www.bing.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: SUID=M; MUID=3DA94B3D26F36B6E187A598C27A46A1A; MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; _EDGE_V=1; SRCHD=AF=NOFORM; SRCHUID=V=2&GUID=4C44887A8F344FBBBDDE8383E9891ADA&dmnchg=1; SRCHUSR=DOB=20230207&T=1675807485000; _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6Mn0=; _UR=QS=0&TQS=0; _RwBf=ilt=6&ihpd=6&ispd=0&rc=0&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2023-02-07T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2023-02-07T22:08:49.2871532+00:00&rwred=0&wls=&lka=0&lkt=0&TH=; SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         204.79.197.200
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
cache-control: private
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
set-cookie: _EDGE_S=SID=36BD02ECB79160EE0FF6105DB664615B; domain=.bing.com; path=/; HttpOnly MUIDB=3DA94B3D26F36B6E187A598C27A46A1A; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; HttpOnly SRCHHPGUSR=SRCHLANG=en&BRW=M&BRH=M&CW=1280&CH=939&SCW=1280&SCH=939&DPR=1.0&UTC=0&DM=0&WTS=63811404528&HV=1675807788; domain=.bing.com; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; secure; SameSite=None _SS=SID=36BD02ECB79160EE0FF6105DB664615B; domain=.bing.com; path=/; secure; SameSite=None ULC=; domain=.bing.com; expires=Mon, 06-Feb-2023 22:09:01 GMT; path=/; secure; SameSite=None _HPVN=CS=eyJQbiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiUCJ9LCJTYyI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiSCJ9LCJReiI6eyJDbiI6MSwiU3QiOjAsIlFzIjowLCJQcm9kIjoiVCJ9LCJBcCI6dHJ1ZSwiTXV0ZSI6dHJ1ZSwiTGFkIjoiMjAyMy0wMi0wN1QwMDowMDowMFoiLCJJb3RkIjowLCJHd2IiOjAsIkRmdCI6bnVsbCwiTXZzIjowLCJGbHQiOjAsIkltcCI6MX0=; domain=.bing.com; expires=Sun, 03-Mar-2024 22:09:01 GMT; path=/; secure; SameSite=None
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A55D65B2FC894B04AEB8F4879751725D Ref B: OSL30EDGE0209 Ref C: 2023-02-07T22:09:01Z
date: Tue, 07 Feb 2023 22:09:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---