Edit tour

Windows Analysis Report
https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf

Overview

General Information

Sample URL:	https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf
Analysis ID:	1578321
Infos:

Detection

PDFPhish

Score:	68
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for dropped file

Found potential malicious PDF (bad image similarity)

Yara detected PDFPhish

Machine Learning detection for dropped file

Drops files with a non-matching file extension (content does not match file extension)

HTML page contains hidden javascript code

Invalid T&C link found

Classification

Process Tree

System is w10x64

chrome.exe (PID: 6424 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 5732 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2432 --field-trial-handle=2284,i,14203283781619324304,313292611916500491,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 4040 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

Acrobat.exe (PID: 3020 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Downloads\downloaded.pdf" MD5: 24EAD1C46A47022347DC0F05F6EFBB8C)

AcroCEF.exe (PID: 3464 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)

AcroCEF.exe (PID: 4664 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2076 --field-trial-handle=1620,i,5713821891575322523,10176732919877581755,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)

chrome.exe (PID: 3576 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "https://crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 5852 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1888,i,12296922024862022079,7502349747072677191,262144 /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

cleanup

Yara Signatures

Dropped Files

Source	Rule	Description	Author
C:\Users\user\Downloads\ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp	JoeSecurity_PDFPhish	Yara detected PDFPhish	Joe Security
dropped/chromecache_613	JoeSecurity_PDFPhish	Yara detected PDFPhish	Joe Security
C:\Users\user\Downloads\downloaded.pdf.crdownload	JoeSecurity_PDFPhish	Yara detected PDFPhish	Joe Security

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus detection for dropped file

Source: C:\Users\user\Downloads\ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp	Avira: detection malicious, Label: HTML/Malicious.PDF.Gen2
Source: C:\Users\user\Downloads\downloaded.pdf.crdownload	Avira: detection malicious, Label: HTML/Malicious.PDF.Gen2

Machine Learning detection for dropped file

Source: C:\Users\user\Downloads\ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp	Joe Sandbox ML: detected
Source: C:\Users\user\Downloads\downloaded.pdf.crdownload	Joe Sandbox ML: detected

Phishing

Yara detected PDFPhish

Source: Yara match	File source: C:\Users\user\Downloads\ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp, type: DROPPED
Source: Yara match	File source: dropped/chromecache_613, type: DROPPED
Source: Yara match	File source: C:\Users\user\Downloads\downloaded.pdf.crdownload, type: DROPPED

Source: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e

HTTP Parser: Base64 decoded: {"uuid":"bca83c2a-7a61-41b6-af38-68e2c95dd4cf","page_time":1734618658,"page_url":"http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas\u0026subid1=20241220-0130-56a6-849b-06236fbe5a9e","page_method":"GET","page_request":{"subid1":"...

Source: https://www.hankooktire.com/us/en/home.html	HTTP Parser: Invalid link: Help & Support
Source: https://www.hankooktire.com/us/en/home.html	HTTP Parser: Invalid link: Help & Support

Source: https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf	HTTP Parser: No favicon
Source: file:///C:/Users/user/Downloads/downloaded.pdf	HTTP Parser: No favicon
Source: file:///C:/Users/user/Downloads/downloaded.pdf	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2	HTTP Parser: No favicon
Source: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2	HTTP Parser: No favicon

Source: https://www.hankooktire.com/us/en/home.html

HTTP Parser: No <meta name="author".. found

Source: https://www.hankooktire.com/us/en/home.html

HTTP Parser: No <meta name="copyright".. found

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 104.98.116.138
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	TCP traffic detected without corresponding DNS query: 20.50.201.200
Source: unknown	UDP traffic detected without corresponding DNS query: 40.81.94.65
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf HTTP/1.1Host: tfsroanoke.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: tfsroanoke.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdfAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf HTTP/1.1Host: tfsroanoke.comConnection: keep-aliveSec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas HTTP/1.1Host: crewmak.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol114%2Cpid-bodis-gcontrol458%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol160&client=dp-bodis30_3ph&r=m&hl=en&ivt=1&rpbu=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0130-56a6-849b-06236fbe5a9e&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2168508906786538&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301266%2C72717108&format=r3&nocache=391734625112156&num=0&output=afd_ads&domain_name=ww25.crewmak.ru&v=3&bsl=8&pac=2&u_his=2&u_tz=-300&dt=1734625112157&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=rs&drt=0&jsid=caf&nfp=1&jsv=704712957&rurl=http%3A%2F%2Fww25.crewmak.ru%2Fuplcv%3Futm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=2 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=s8p049e0js9w&aqid=KS5kZ6rTAqS4hcIPv4XzoA0&psid=3113057640&pbt=bs&adbx=290&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=4%7C0%7C2854%7C3179%7C36&lle=0&ifv=1&hpt=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=2 HTTP/1.1Host: syndicatedsearch.googConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=xs4pb1xirkwp&aqid=KS5kZ6rTAqS4hcIPv4XzoA0&psid=3113057640&pbt=bv&adbx=290&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=4%7C0%7C2854%7C3179%7C36&lle=0&ifv=1&hpt=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "13430471417098246199"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol114%2Cpid-bodis-gcontrol458%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol160&client=dp-bodis30_3ph&r=m&sct=ID%3D5db55401f90db0cf%3AT%3D1734618665%3ART%3D1734618665%3AS%3DALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg&sc_status=6&hl=en&ivt=1&rpbu=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0130-56a6-849b-06236fbe5a9e%26query%3DBuy%2Ba%2BTyre%26afdToken%3DChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB%26pcsa%3Dfalse%26nb%3D0%26nm%3D9%26nx%3D333%26ny%3D65%26is%3D700x480%26clkt%3D3&max_radlink_len=50&type=0&uiopt=false&swp=as-drid-2168508906786538&q=Buy%20a%20Tyre&afdt=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301437%2C17301439%2C17301442%2C17301266%2C72717108&format=n3&ad=n3&nocache=5501734625139131&num=0&output=afd_ads&domain_name=ww25.crewmak.ru&v=3&bsl=8&pac=2&u_his=3&u_tz=-300&dt=1734625139133&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=ad-1&drt=0&jsid=caf&nfp=1&jsv=704712957&rurl=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0130-56a6-849b-06236fbe5a9e%26query%3DBuy%2Ba%2BTyre%26afdToken%3DChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB%26pcsa%3Dfalse%26nb%3D0%26nm%3D9%26nx%3D333%26ny%3D65%26is%3D700x480%26clkt%3D3&referer=https%3A%2F%2Fsyndicatedsearch.goog%2F HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 17 Sep 2024 06:00:00 GMT
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=9o1imwa05for&aqid=RC5kZ-_-AqDymLAPz4zSiQ0&psid=3113057640&pbt=bs&adbx=381.5&adby=143&adbh=904&adbw=500&adbah=310%2C284%2C310&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=29%7C0%7C3228%7C17%7C39&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svg/right_chevron_icon.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svg/larger-globe.svg?c=%2380868B HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=8dbwq9p4f7hl&aqid=RC5kZ-_-AqDymLAPz4zSiQ0&psid=3113057640&pbt=bv&adbx=381.5&adby=143&adbh=904&adbw=500&adbah=310%2C284%2C310&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=29%7C0%7C3228%7C17%7C39&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svg/right_chevron_icon.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svg/larger-globe.svg?c=%2380868B HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en/dealer/suburban-hyundai-of-troy--MI060?mx_ch=T3as&jtid=MI060&mx_ch=T3as&jtid=gcp:se_55712:t_kwd-128457298:ag_144441819766:cp_19643299624:n_s:d_c:cr_646829533404:fi_&utm_source=epsilon&utm_medium=cpc&utm_campaign=HMX_Suburban+Hyundai+of+Troy_MI060&gad_source=5&gclid=EAIaIQobChMI77DXl4a0igMVIDkGAB1PhjTREAAYASAAEgJWGfD_BwE HTTP/1.1Host: service.hyundaiusa.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas HTTP/1.1Host: crewmak.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __tad=1734618656.3234473; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "14945032603554686107"
Source: global traffic	HTTP traffic detected: GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol114%2Cpid-bodis-gcontrol458%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol160&client=dp-bodis30_3ph&r=m&sct=ID%3D5db55401f90db0cf%3AT%3D1734618665%3ART%3D1734618665%3AS%3DALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg&sc_status=6&hl=en&ivt=1&rpbu=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0132-1897-a7c7-a2a331878d15&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2168508906786538&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301431%2C17301433%2C17301436%2C17301266%2C72717108&format=r3&nocache=5851734625197218&num=0&output=afd_ads&domain_name=ww25.crewmak.ru&v=3&bsl=8&pac=0&u_his=1&u_tz=-300&dt=1734625197219&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=rs&drt=0&jsid=caf&nfp=1&jsv=704712957&rurl=http%3A%2F%2Fww25.crewmak.ru%2Fuplcv%3Futm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0132-1897-a7c7-a2a331878d15 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "12745204829607064288"
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=6o4ma8wrxpqy&aqid=fi5kZ-SyA6LrovsPu6zBiQI&psid=3113057640&pbt=bs&adbx=290&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=3%7C0%7C2873%7C3205%7C42&lle=0&ifv=1&hpt=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=wmq16foummgr&aqid=fi5kZ-SyA6LrovsPu6zBiQI&psid=3113057640&pbt=bv&adbx=290&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=3%7C0%7C2873%7C3205%7C42&lle=0&ifv=1&hpt=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: "12745204829607064288"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "5624205942609972755"
Source: global traffic	HTTP traffic detected: GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol114%2Cpid-bodis-gcontrol458%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol160&client=dp-bodis30_3ph&r=m&sct=ID%3D5db55401f90db0cf%3AT%3D1734618665%3ART%3D1734618665%3AS%3DALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg&sc_status=6&hl=en&ivt=1&rpbu=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0132-1897-a7c7-a2a331878d15%26query%3DBridgestone%2BDueller%2BTires%26afdToken%3DChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE%26pcsa%3Dfalse%26nb%3D0%26nm%3D9%26nx%3D329%26ny%3D65%26is%3D700x480%26clkt%3D2&max_radlink_len=50&type=0&uiopt=false&swp=as-drid-2168508906786538&q=Bridgestone%20Dueller%20Tires&afdt=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301437%2C17301439%2C17301442%2C17301266%2C72717107&format=n3&ad=n3&nocache=1481734625216068&num=0&output=afd_ads&domain_name=ww25.crewmak.ru&v=3&bsl=8&pac=0&u_his=2&u_tz=-300&dt=1734625216069&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=ad-1&drt=0&jsid=caf&nfp=1&jsv=704712957&rurl=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0132-1897-a7c7-a2a331878d15%26query%3DBridgestone%2BDueller%2BTires%26afdToken%3DChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE%26pcsa%3Dfalse%26nb%3D0%26nm%3D9%26nx%3D329%26ny%3D65%26is%3D700x480%26clkt%3D2&referer=https%3A%2F%2Fsyndicatedsearch.goog%2F HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 17 Sep 2024 06:00:00 GMT
Source: global traffic	HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 17 Sep 2024 06:00:00 GMT
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "17053655172032929682"
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: "14734499669990951257"
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=fc57tqg1fvqz&aqid=kC5kZ5qxO7iAhcIPqL_msAQ&psid=3113057640&pbt=bs&adbx=381.5&adby=143&adbh=1578&adbw=500&adbah=546%2C506%2C526&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=18%7C0%7C3541%7C3296%7C1045&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=7gxkywgwtf7k&aqid=kC5kZ5qxO7iAhcIPqL_msAQ&psid=3113057640&pbt=bv&adbx=381.5&adby=143&adbh=1578&adbw=500&adbah=546%2C506%2C526&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=18%7C0%7C3541%7C3296%7C1045&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=it8cy3jhwpcn&aqid=kC5kZ5qxO7iAhcIPqL_msAQ&psid=3113057640&pbt=cd&csacd=19030 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://ww25.crewmak.ru/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script.min.js?version=manufacturer HTTP/1.1Host: widget.driverreviews.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.hankooktire.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script.min.js?version=manufacturer HTTP/1.1Host: widget.driverreviews.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script.min.js?version=manufacturer HTTP/1.1Host: widget.driverreviews.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"If-None-Match: W/"38c3b-193d4c7e903"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.hankooktire.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iframe_api HTTP/1.1Host: www.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.hankooktire.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/player/03dbdfab/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1Host: www.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.hankooktire.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: YSC=44dSLN0-Ass; VISITOR_INFO1_LIVE=g12obPNykQ4; VISITOR_PRIVACY_METADATA=CgJVUxIEGgAgHQ%3D%3D
Source: global traffic	HTTP traffic detected: GET /iframe_api HTTP/1.1Host: www.youtube.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/player/03dbdfab/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1Host: www.youtube.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BGPXJzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /script.min.js?version=manufacturer HTTP/1.1Host: widget.driverreviews.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.hankooktire.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"38c3b-193d4c7e903"
Source: global traffic	HTTP traffic detected: GET /script.min.js?version=manufacturer HTTP/1.1Host: widget.driverreviews.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"38c3b-193d4c7e903"
Source: global traffic	HTTP traffic detected: GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bXOmyuaKu.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9eAccept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Source: global traffic	HTTP traffic detected: GET /bXOmyuaKu.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Source: global traffic	HTTP traffic detected: GET /_fd?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /bfOiADgAU.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /bfOiADgAU.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /bfOiADgAU.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /_fd?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Source: global traffic	HTTP traffic detected: GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /bIprVmsGS.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /bIprVmsGS.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /_fd?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /bynggNNFL.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /bynggNNFL.js HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /_fd?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2 HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: ww25.crewmak.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba

Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: <a href="https://www.facebook.com/HankookTireUSA/" class="icon icon--facebook" target="_blank"> equals www.facebook.com (Facebook)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/hankook-tire-global/" class="icon icon--linkedin" target="_blank"> equals www.linkedin.com (Linkedin)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: <a href="https://www.youtube.com/user/HankookUSARacing" class="icon icon--youtube" target="_blank"> equals www.youtube.com (Youtube)
Source: chromecache_516.5.dr	String found in binary or memory: <a href="https://www.facebook.com/HankookTireUSA/videos/1113664503707157" target="_blank" rel="noopener noreferrer"> equals www.facebook.com (Facebook)
Source: chromecache_516.5.dr	String found in binary or memory: <a href="https://www.facebook.com/hankooktire.global/videos/1298878217773262/" target="_blank" rel="noopener noreferrer"> equals www.facebook.com (Facebook)
Source: chromecache_516.5.dr	String found in binary or memory: <a href="https://www.youtube.com/watch?v=SKPdyXRguRw" target="_blank" rel="noopener noreferrer"> equals www.youtube.com (Youtube)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: <a href="https://www.facebook.com/HankookTireUSA/" class="icon icon--facebook invert" target="_blank"> equals www.facebook.com (Facebook)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/hankook-tire-global/" class="icon icon--linkedin invert" target="_blank"> equals www.linkedin.com (Linkedin)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: <a href="https://www.youtube.com/user/HankookUSARacing" class="icon icon--youtube invert" target="_blank"> equals www.youtube.com (Youtube)
Source: chromecache_516.5.dr	String found in binary or memory: <a href="https://www.facebook.com/HankookTireUSA/videos/1113664503707157" target="_blank" rel="noopener noreferrer" style="background-image:url('https:\2f\2f asset.hankooktire.com\2f content\2f dam\2fhankooktire\2flocal\2fimg\2fmain\2fsns\2f 2024\2f 12\2f 11new.jpg')"></a> equals www.facebook.com (Facebook)
Source: chromecache_516.5.dr	String found in binary or memory: <a href="https://www.facebook.com/hankooktire.global/videos/1298878217773262/" target="_blank" rel="noopener noreferrer" style="background-image:url('https:\2f\2f asset.hankooktire.com\2f content\2f dam\2fhankooktire\2flocal\2fimg\2fmain\2fsns\2f 2024\2f 12\2f 5.jpg')"></a> equals www.facebook.com (Facebook)
Source: chromecache_516.5.dr	String found in binary or memory: <a href="https://www.youtube.com/watch?v=SKPdyXRguRw" target="_blank" rel="noopener noreferrer" style="background-image:url('https:\2f\2f asset.hankooktire.com\2f content\2f dam\2fhankooktire\2flocal\2fimg\2fmain\2fsns\2f 2024\2f 12\2f 2.jpg')"></a> equals www.youtube.com (Youtube)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: "https://www.facebook.com/hankooktire.korea", equals www.facebook.com (Facebook)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: "https://www.youtube.com/channel/UC86f2_-Etmdmi1KpTjYHupQ", equals www.youtube.com (Youtube)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: "https://www.facebook.com/hankooktire.korea", equals www.facebook.com (Facebook)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: "https://www.youtube.com/channel/UC86f2_-Etmdmi1KpTjYHupQ", equals www.youtube.com (Youtube)
Source: chromecache_653.5.dr	String found in binary or memory: M.getElementsByTagName("iframe"),oa=Q.length,na=0;na<oa;na++)if(!v&&c(Q[na],H.Xe)){UK("https://www.youtube.com/iframe_api");v=!0;break}})}}else G(t.vtp_gtmOnSuccess)}var q=["www.youtube.com","www.youtube-nocookie.com"],r={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},u,v=!1;X.__ytl=n;X.__ytl.o="ytl";X.__ytl.isVendorTemplate=!0;X.__ytl.priorityOverride=0;X.__ytl.isInfrastructure=!1; equals www.youtube.com (Youtube)
Source: chromecache_642.5.dr, chromecache_653.5.dr	String found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},Ik:function(){e=nb()},Gd:function(){d()}}};var Vb=wa(["data-gtm-yt-inspected-"]),XD=["www.youtube.com","www.youtube-nocookie.com"],YD,ZD=!1; equals www.youtube.com (Youtube)
Source: chromecache_616.5.dr, chromecache_583.5.dr	String found in binary or memory: function X(a,b){this.v={};this.playerInfo={};this.videoTitle="";this.j=this.g=null;this.h=0;this.m=!1;this.l=[];this.i=null;this.A={};this.options=null;if(!a)throw Error("YouTube player element ID required.");this.id=qa(this);b=Object.assign({title:"video player",videoId:"",width:640,height:360},b\|\|{});var c=document;if(a=typeof a==="string"?c.getElementById(a):a){W.yt_embedsEnableRsaforFromIframeApi&&tb();c=a.tagName.toLowerCase()==="iframe";b.host\|\|(b.host=c?mb(a.src):"https://www.youtube.com");this.options= equals www.youtube.com (Youtube)
Source: chromecache_616.5.dr, chromecache_583.5.dr	String found in binary or memory: function tb(){var a=new rb,b=["https://www.youtube.com"];b=b===void 0?qb:b;oa(function(c){switch(c.g){case 1:return C(c,sb(),2);case 2:if(!c.m){c.g=3;break}return C(c,Promise.all(b.map(function(d){var g;return oa(function(k){if(k.g==1)return k.l=2,C(k,navigator.permissions.query({name:"top-level-storage-access",requestedOrigin:d}),4);k.g!=2?(g=k.m,g.state==="prompt"&&a.g.push(d),k.g=0,k.l=0):(k.l=0,k.i=null,k.g=0)})})),4); equals www.youtube.com (Youtube)
Source: chromecache_470.5.dr	String found in binary or memory: return b}VD.F="internal.enableAutoEventOnTimer";var Vb=wa(["data-gtm-yt-inspected-"]),XD=["www.youtube.com","www.youtube-nocookie.com"],YD,ZD=!1; equals www.youtube.com (Youtube)
Source: chromecache_675.5.dr	String found in binary or memory: var scriptUrl = 'https:\/\/www.youtube.com\/s\/player\/03dbdfab\/www-widgetapi.vflset\/www-widgetapi.js';try{var ttPolicy=window.trustedTypes.createPolicy("youtube-widget-api",{createScriptURL:function(x){return x}});scriptUrl=ttPolicy.createScriptURL(scriptUrl)}catch(e){}var YT;if(!window["YT"])YT={loading:0,loaded:0};var YTConfig;if(!window["YTConfig"])YTConfig={"host":"https://www.youtube.com"}; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: tfsroanoke.com
Source: global traffic	DNS traffic detected: DNS query: crewmak.ru
Source: global traffic	DNS traffic detected: DNS query: ww25.crewmak.ru
Source: global traffic	DNS traffic detected: DNS query: syndicatedsearch.goog
Source: global traffic	DNS traffic detected: DNS query: afs.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: click-use1.bodis.com
Source: global traffic	DNS traffic detected: DNS query: service.hyundaiusa.com
Source: global traffic	DNS traffic detected: DNS query: x1.i.lencr.org
Source: global traffic	DNS traffic detected: DNS query: www.hankooktire.com
Source: global traffic	DNS traffic detected: DNS query: asset.hankooktire.com
Source: global traffic	DNS traffic detected: DNS query: widget.driverreviews.com
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: www.youtube.com

Source: unknown

HTTP traffic detected: POST /_tr?click=true&session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf&signature=UxFdVMwNFNwN0wzODEybVeyJhcHBfdmVyc2lvbiI6IjAuNS41IiwiY2FmX2NsaWVudF9pZCI6InBhcnRuZXItZHAtYm9kaXMzMF8zcGgiLCJjaGFubmVsIjoicGlkLWJvZGlzLWdjb250cm9sOTcscGlkLWJvZGlzLWdjb250cm9sMTE0LHBpZC1ib2Rpcy1nY29udHJvbDQ1OCxwaWQtYm9kaXMtZ2NvbnRyb2wxNTIscGlkLWJvZGlzLWdjb250cm9sMTYwIiwiZGVza3RvcCI6dHJ1ZSwidGVybXMiOiIiLCJmZF9zZXJ2ZXJfZGF0ZXRpbWUiOjE3MzQ2MTg2ODYsImZkX3NlcnZlciI6ImlwLTEwLTIwMS0xNi0xMjIuZWMyLmludGVybmFsIiwiaG9zdCI6Ind3MjUuY3Jld21hay5ydSIsImlwIjoiOC40Ni4xMjMuMTg5IiwiaXZ0Ijp0cnVlLCJtb2JpbGUiOmZhbHNlLCJwYWdlX21ldGhvZCI6IkdFVCIsInBhZ2VfdGltZSI6MTczNDYxODY4NCwicGFnZV91cmwiOiJodHRwOi8vd3cyNS5jcmV3bWFrLnJ1Lz9jYWY9MSZicHQ9MzQ1JnV0bV90ZXJtPWRpc2NvdmVyeStvYmplY3Rpb25zK2NoZWF0K3NoZWV0K3RleGFzJnN1YmlkMT0yMDI0MTIyMC0wMTMwLTU2YTYtODQ5Yi0wNjIzNmZiZTVhOWUmcXVlcnk9QnV5K2ErVHlyZSZhZmRUb2tlbj1DaE1JaEx6a2lvYTBpZ01WS1VMeEF4MkFYQlJJRW1VQmxMcXBqMHg1RFEyV3R6Q1c3dFhnZ3p3Rm5JY3FRSFRoUUVDaUVGbW1VOWJieHpYVzg2YV96SEt6WmNkSlZZdmx6dEh3VnU2OVlQUmQ5cU45UUNxSkFULVJlZS1LVzBrc2RyenczalhoV1U5OUp4TGVUTHNrZjJDdC1wbnFjTDZESkZ5b2N5QUImcGNzYT1mYWxzZSZuYj0wJm5tPTkmbng9MzMzJm55PTY1JmlzPTcwMHg0ODAmY2xrdD0zIiwidGFibGV0IjpmYWxzZSwidGVtcGxhdGVfaWQiOjM0NSwidHlwZSI6ImNsaWNrIiwidXNlcl9pZCI6Njc5MDUsInV1aWQiOiJiY2E4M2MyYS03YTYxLTQxYjYtYWYzOC02OGUyYzk1ZGQ0Y2YiLCJ0aW1lem9uZV9vZmZzZXQiOi01LCJ3aW5kb3dfcmVzb2x1dGlvbiI6eyJ3aWR0aCI6MTI4MCwiaGVpZ2h0Ijo5MDd9fQ%3D%3D&nc=40055351734625155730 HTTP/1.1Host: click-use1.bodis.comConnection: keep-aliveContent-Length: 0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://syndicatedsearch.googSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 19 Dec 2024 14:30:39 GMTServer: ApacheContent-Length: 315Connection: closeContent-Type: text/html; charset=iso-8859-1

Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://analhospital.net/file/files/tizemutisepu.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://andlupa.com/userfiles/file/98624066432.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://bonaparte-kerkrade.nl/fckeditor/ckfinder/userfiles/file/91032317558.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://clean-ecology.com/Upload/files/judoramupusiwex.pdf)
Source: 77EC63BDA74BD0D0E0426DC8F80085060.16.dr	String found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://eastcoastbiker.de/sites/default/files/file/76950929308.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://erfolgsapp.de/wp-content/plugins/formcraft/file-upload/server/content/files/16155dbdf45b66---
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://icareonline.net.au/ckfinder/icare/files/16012704758.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://kingswaytyres.com/project/kingsway/uploads/file/mofezozuwaka.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://loscogliodifavignana.it/userfiles/files/53929450716.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://massimomoroni.it/userfiles/files/tamelodijawodaxabavifi.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://mitsubishilongbien.vn/images/ckeditor/files/99207838017.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://rollfactorytogo.com/uploads/files/8821421759.pdf)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: http://schema.org
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://support-cmu.com/filedata/file/75808451450.pdf)
Source: chromecache_520.5.dr, chromecache_391.5.dr, chromecache_493.5.dr, chromecache_664.5.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_520.5.dr, chromecache_391.5.dr, chromecache_493.5.dr, chromecache_664.5.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE2.0
Source: chromecache_709.5.dr	String found in binary or memory: http://www.audiservicenow.com/
Source: 2D85F72862B55C4EADD9E66E06947F3D0.16.dr	String found in binary or memory: http://x1.i.lencr.org/
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: http://zgic.ru/
Source: chromecache_470.5.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_709.5.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=Aa2zJtMsvWvEhTdSZjdrPgBK7UrA65ivH
Source: chromecache_709.5.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=Aa2zJtNVylVJ7w7n1J7fjeExtjutXOg7q
Source: chromecache_709.5.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=Aa2zJtPOorgOydN2azxJqKyHIY_ETtsjE
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://ailani.org/wp-content/plugins/super-forms/uploads/php/files/9d071bc4cd03986ebe1aca60b8f20f1f
Source: chromecache_587.5.dr	String found in binary or memory: https://api.driverightdata.com/eu/api/vrm/GetGlobalVRM
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/eu/product/tire_list/pcr/IH01A_normal0311.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/eu/product/tire_list/pcr/IH01_hover.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/eu/product/tire_list/suv/IH01A_normal0311.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/eu/product/tire_list/suv/IH01_hover.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/images/technology-in-motion/empowering-
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_DynaproBF_1024_1000_23103
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_DynaproBF_1920_970_231030
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_DynaproBF_390_750_231030.
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_VentusxRST_1024_1000_2310
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_VentusxRST_1920_970_23103
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_VentusxRST_19LC_VentusxRS
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_VentusxRST_390_750_231030
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_clean_iON_2_390_750_1209.
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_dynapro_2024_12_1024_
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_dynapro_2024_12_1920_
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_dynapro_2024_12_390_7
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_fe_maker_film_1024_10
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_fe_maker_film_1920_97
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_fe_maker_film_390_750
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_ionic5_brandfilmnew_1
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_ionic5_brandfilmnew_3
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_kinergy_1920_970_230523.j
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_kinergy_1920_970_230523.m
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_kinergy_390_750_230523.jp
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_kinergy_390_750_230523.mp
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_us_en_iON_2_1920_970_1110
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_us_en_iON_2_1920_970_1209
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_us_en_iON_2_390_750_1110.
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_ventus_1920_970_1125.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_ventus_1920_970_1125.mp4
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_ventus_390_750_1125.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_ventus_390_750_1125.mp4
Source: chromecache_557.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/kr/tire-list/keyvisual/d_kv_111_7_Electric_Veh
Source: chromecache_557.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/kr/tire-list/keyvisual/m_kv_111_7_Electric_Veh
Source: chromecache_557.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/kr/tire-list/keyvisual/t_kv_111_7_Electric_Veh
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/icon_careguide.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/icon_drivingtips.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/icon_tireguide.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/icon_warranty.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/logo_techinmo.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_RT
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_We
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_io
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_ki
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_sm
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_va
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_ve
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/img_wi
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/logo/5
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-dynapro.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-kinergy.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-smart.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-vantra.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-ventus.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-winter.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/Logo.svg
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/main-key-visual/pc/c_flag_usa.s
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/main-key-visual/pc/logo.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/AL21-1213.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/DL21-1213.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/IH01a-1.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/RF12-3new.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/h446-xp-5new.j
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/h755-2.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/promoted-product/test/h125-7.jp
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/10.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/111.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/11new.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/2.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/3.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/5.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/product-detil-page/bi-image/pcr/bi_V
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/product-detil-page/bi-image/suv/bi_V
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/product-detil-page/tire-list-thumbna
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/product/bi/tbr/bi_Smart_flex_dl15plu
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/techinmotion/240609_BC_DM_DRIVE_001-
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/techinmotion/ventus_maintains_m.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/techinmotion/ventus_maintains_pc2.jp
Source: chromecache_557.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/tires/tire-banner/d_img_Search%20By%
Source: chromecache_557.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/tires/tire-banner/m_img_Search%20By%
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/img/why-hankook/why-hankook(kv).jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/svg/ETC_Award1.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/svg/ETC_Award1_White.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/svg/ETC_Testresult.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/svg/ETC_Testresult_White.svg
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/svg/logo-white.svg
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/local/svg/w_close.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_20241118_01.jp
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_20241120.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_20241129.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_20241210_2.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_img_20241204.j
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_img_20241210.j
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/pcr/BI_Weatherflex_GT.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/pcr/BI_Winter-icept-IZ_0117.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/pcr/bi_Ion_evo_0731.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/pcr/bi_Kinergy_XP1129.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/pcr/bi_ion_evo_as0802.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/suv/BI_Winter-icept-IZ3-X.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/suv/bi_DynaproHPX.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/bi/suv/bi_ion_evo_as_suv0802.svg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/IZ3_X_normal_0606.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/IZ3_normal_0606.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Kinergy_hover1129.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Kinergy_normal0606.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/RA43_hover_new.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/RA43_normal0606.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Weatherflex_GT_hover.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Weatherflex_GT_normal.png
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Winter-icept-IZ3-X_hover.
Source: chromecache_516.5.dr	String found in binary or memory: https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Winter-icept-IZ3_hover_01
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://bhavanarayanaswamy.org/userfiles/file/45130438917.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://binarbaidservices.com/public_html/userfiles/file/pagelofadudalazija.pdf)
Source: chromecache_516.5.dr	String found in binary or memory: https://blog.naver.com/happydriving
Source: chromecache_516.5.dr	String found in binary or memory: https://brand.naver.com/hankooktire
Source: chromecache_520.5.dr, chromecache_391.5.dr, chromecache_493.5.dr, chromecache_664.5.dr	String found in binary or memory: https://bugs.webkit.org/show_bug.cgi?id=210934
Source: chromecache_642.5.dr, chromecache_470.5.dr, chromecache_653.5.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_383.5.dr, chromecache_378.5.dr, chromecache_481.5.dr	String found in binary or memory: https://clipboardjs.com/
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://coherence.cz/userfiles/file/fiwos.pdf)
Source: chromecache_516.5.dr	String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://crewmak.ru/uplcv?utm_term=discovery
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://dev-www.hankooktire.com/
Source: chromecache_391.5.dr, chromecache_664.5.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/Element/scrollHeight#Problems_and_solutions
Source: chromecache_520.5.dr, chromecache_391.5.dr, chromecache_493.5.dr, chromecache_664.5.dr	String found in binary or memory: https://developer.mozilla.org/enUS/docs/Web/API/Element/closest#Polyfill
Source: chromecache_520.5.dr, chromecache_391.5.dr, chromecache_493.5.dr, chromecache_664.5.dr	String found in binary or memory: https://developer.mozilla.org/enUS/docs/Web/API/Element/matches#Polyfill
Source: chromecache_616.5.dr, chromecache_583.5.dr	String found in binary or memory: https://developers.google.com/youtube/iframe_api_reference#Events
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://eklyps.net/images/file/31320979754.pdf)
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://eorder.hankooktire.com
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_520.5.dr, chromecache_393.5.dr, chromecache_493.5.dr	String found in binary or memory: https://github.com/locomotivemtl/locomotive-scroll
Source: chromecache_470.5.dr	String found in binary or memory: https://google.com
Source: chromecache_470.5.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://greensock.com
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://greensock.com/standard-license
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://heps.hankooktech.com/login_e.jsp
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://jqueryvalidation.org/
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://marathonlaval.com/userfiles/files/wenozopowirix.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://multimetrics.com/ckfinder/userfiles/files/buwaxanobupovavemuv.pdf)
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://nceptionsolutions.com/wp-content/plugins/super-forms/uploads/php/files/c3bfb03cfefa9ca53a6f4
Source: chromecache_470.5.dr, chromecache_653.5.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_642.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr, chromecache_470.5.dr, chromecache_653.5.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	String found in binary or memory: https://partner.googleadservices.com/gampad/cookie.js
Source: chromecache_516.5.dr	String found in binary or memory: https://preciseley.com/
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://restaurantenunti.ro/userfiles/file/xanajanokekisoju.pdf)
Source: chromecache_516.5.dr	String found in binary or memory: https://schema.org
Source: chromecache_516.5.dr	String found in binary or memory: https://schema.org/
Source: chromecache_391.5.dr, chromecache_664.5.dr	String found in binary or memory: https://stackoverflow.com/questions/41594997/ios-10-safari-prevent-scrolling-behind-a-fixed-overlay-
Source: chromecache_470.5.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://stg-www.hankooktire.com/
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://swiperjs.com
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	String found in binary or memory: https://syndicatedsearch.goog
Source: chromecache_709.5.dr	String found in binary or memory: https://syndicatedsearch.goog/
Source: chromecache_642.5.dr, chromecache_470.5.dr, chromecache_653.5.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://widget.driverreviews.com/script.min.js?version=manufacturer
Source: chromecache_470.5.dr, chromecache_653.5.dr	String found in binary or memory: https://www.google.com
Source: chromecache_709.5.dr	String found in binary or memory: https://www.google.com/images/afs/snowman.png
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_470.5.dr, chromecache_653.5.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk
Source: chromecache_709.5.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiaua68hrSKAxU4QEECHaifGUYYABAAGgJ3cw
Source: chromecache_709.5.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiaua68hrSKAxU4QEECHaifGUYYABABGgJ3cw
Source: chromecache_709.5.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiaua68hrSKAxU4QEECHaifGUYYABACGgJ3cw
Source: chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_653.5.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_470.5.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-11484059351
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-819160136
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-858588051
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-921280829
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-5S2XSXN
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-M692H37
Source: chromecache_470.5.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-atlasbx.com/en/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-engineeringworks.com/en?lang=en
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-motorsports.com/en/formula-e/about-formula-e.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-motorsports.com/en/lamborghini/super_trofeo_northamaerica.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-motorsports.com/en/main.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-networks.com/en?lang=en
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankook-precisionworks.com/en
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankookandcompany.com/en.do?lang=en
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com
Source: chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/au/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/au/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/au/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/br/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/br/pt/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/br/pt/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/ca/en/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/ca/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/ca/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/ca/fr/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/ca/fr/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/cac/es/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/cac/es/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/cac/es/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/cl/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/cl/es/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/cl/es/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/cn/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/cn/zh/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/cn/zh/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/co-es/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/co/es/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/co/es/tirelist/vehicle/electric-vehicle.html
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/content/dam/hankooktire/global/link_thumb_black.jpg
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/content/dam/hankooktire/local/img/main/main-key-visual/pc/logo.svg
Source: chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/content/hankooktire/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/content/hankooktire/us/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/cz/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/cz/cs/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/cz/cs/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/cz/cs/tirelist/vehicle/electric_vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/de/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/de/de/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/de/de/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/es/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/es/es/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/es/es/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/fr/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/fr/fr/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/fr/fr/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/global/en/hankook-in-your-location.html
Source: chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/global/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/hu/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/hu/hu/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/hu/hu/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/hu/hu/tirelist/vehicle/electric_vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/id/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/id/id/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/id/id/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/it/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/it/it/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/it/it/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/jp/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/jp/ja/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/jp/ja/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/brand-family/dynapro.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/brand-family/kinergy.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/brand-family/smart.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/brand-family/ventus.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/brand-family/winter-i-cept.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/brand-family/winter-i-pike.html
Source: chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/kr/ko/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/mea/ar/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/mea/ar/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/mea/ar/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/mea/en/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/mea/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/mea/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/mts/en/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/mts/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/mts/ko/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/mts/ko/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/mx/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/mx/es/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/mx/es/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/my/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/my/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/my/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/nl/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/nl/nl/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/nl/nl/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/nl/nl/tirelist/vehicle/electric_vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/pl/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/pl/pl/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/pl/pl/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/pl/pl/tirelist/vehicle/electric_vehicle.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/ro/ro/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/ro/ro/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/ru
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/ru/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/ru/ru/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/ru/ru/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/se/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/se/sv/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/se/sv/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/se/sv/tirelist/vehicle/electric_vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/th/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/th/th/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/th/th/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/tr/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/tr/tr/home.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/tr/tr/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/tr/tr/tirelist/vehicle/electric_vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/tw/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/tw/zh/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/tw/zh/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/uk/
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/uk/en/find-a-store.html
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/uk/en/help-support/tire-guide/sizes-specs.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/uk/en/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/uk/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_520.5.dr, chromecache_493.5.dr	String found in binary or memory: https://www.hankooktire.com/us/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/us/en/home.html
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/us/en/privacy-policy.html
Source: chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html
Source: chromecache_516.5.dr	String found in binary or memory: https://www.hankooktire.com/vn/vi/home.html
Source: chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	String found in binary or memory: https://www.hankooktire.com/vn/vi/tirelist/vehicle/electric-vehicle.html
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	String found in binary or memory: https://www.heainc.com/wp-content/plugins/formcraft/file-upload/server/content/files/16170c5c7db372-
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.instagram.com/hankooktire.kr/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.instagram.com/hankooktireusa/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.instagram.com/p/DBsg7nKtk5s/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.instagram.com/p/DCWDODbpZ95/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.instagram.com/p/DCuM5rQKOiw/
Source: chromecache_516.5.dr	String found in binary or memory: https://www.laufenn.com/us
Source: chromecache_516.5.dr	String found in binary or memory: https://www.linkedin.com/company/hankook-tire-global/
Source: chromecache_470.5.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_516.5.dr	String found in binary or memory: https://www.model-solution.com/en/main
Source: chromecache_557.5.dr, chromecache_516.5.dr	String found in binary or memory: https://www.redditstatic.com/ads/pixel.js
Source: chromecache_516.5.dr	String found in binary or memory: https://www.tiktok.com/
Source: chromecache_583.5.dr, chromecache_675.5.dr	String found in binary or memory: https://www.youtube.com
Source: chromecache_516.5.dr	String found in binary or memory: https://www.youtube.com/channel/UC86f2_-Etmdmi1KpTjYHupQ
Source: chromecache_642.5.dr, chromecache_653.5.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_516.5.dr	String found in binary or memory: https://www.youtube.com/user/HankookUSARacing
Source: chromecache_516.5.dr	String found in binary or memory: https://www.youtube.com/watch?v=SKPdyXRguRw

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50042 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50452
Source: unknown	Network traffic detected: HTTP traffic on port 50334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50213
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50224
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50088 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50198
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50244
Source: unknown	Network traffic detected: HTTP traffic on port 50224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50376 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50376
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 50338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50140
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50426
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50098 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 50086 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 50426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50066 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50163
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50442
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50051
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 50344 -> 443

System Summary

Found potential malicious PDF (bad image similarity)

Source: downloaded.pdf.crdownload.1.dr	Static PDF information: Image stream: 8
Source: ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr	Static PDF information: Image stream: 8
Source: chromecache_613.5.dr	Static PDF information: Image stream: 8

Source: classification engine

Classification label: mal68.phis.win@74/576@85/17

Source: chromecache_613.5.dr	Initial sample: https://nceptionsolutions.com/wp-content/plugins/super-forms/uploads/php/files/c3bfb03cfefa9ca53a6f49d42d6a5d7f/virufapipomajigejobor.pdf
Source: chromecache_613.5.dr	Initial sample: http://andlupa.com/userfiles/file/98624066432.pdf
Source: chromecache_613.5.dr	Initial sample: https://binarbaidservices.com/public_html/userfiles/file/pagelofadudalazija.pdf
Source: chromecache_613.5.dr	Initial sample: http://clean-ecology.com/upload/files/judoramupusiwex.pdf
Source: chromecache_613.5.dr	Initial sample: https://www.heainc.com/wp-content/plugins/formcraft/file-upload/server/content/files/16170c5c7db372---pulituderenesifowekinozeg.pdf
Source: chromecache_613.5.dr	Initial sample: https://coherence.cz/userfiles/file/fiwos.pdf
Source: chromecache_613.5.dr	Initial sample: https://restaurantenunti.ro/userfiles/file/xanajanokekisoju.pdf
Source: chromecache_613.5.dr	Initial sample: https://eklyps.net/images/file/31320979754.pdf
Source: chromecache_613.5.dr	Initial sample: http://clean-ecology.com/Upload/files/judoramupusiwex.pdf
Source: chromecache_613.5.dr	Initial sample: http://analhospital.net/file/files/tizemutisepu.pdf
Source: chromecache_613.5.dr	Initial sample: https://ailani.org/wp-content/plugins/super-forms/uploads/php/files/9d071bc4cd03986ebe1aca60b8f20f1f/denolewife.pdf
Source: chromecache_613.5.dr	Initial sample: http://eastcoastbiker.de/sites/default/files/file/76950929308.pdf
Source: chromecache_613.5.dr	Initial sample: http://bonaparte-kerkrade.nl/fckeditor/ckfinder/userfiles/file/91032317558.pdf
Source: chromecache_613.5.dr	Initial sample: http://zgic.ru/!upload/files/52071820194.pdf
Source: chromecache_613.5.dr	Initial sample: http://kingswaytyres.com/project/kingsway/uploads/file/mofezozuwaka.pdf
Source: chromecache_613.5.dr	Initial sample: http://icareonline.net.au/ckfinder/icare/files/16012704758.pdf
Source: chromecache_613.5.dr	Initial sample: https://bhavanarayanaswamy.org/userfiles/file/45130438917.pdf
Source: chromecache_613.5.dr	Initial sample: https://marathonlaval.com/userfiles/files/wenozopowirix.pdf
Source: chromecache_613.5.dr	Initial sample: http://mitsubishilongbien.vn/images/ckeditor/files/99207838017.pdf
Source: chromecache_613.5.dr	Initial sample: http://erfolgsapp.de/wp-content/plugins/formcraft/file-upload/server/content/files/16155dbdf45b66---lofixazepebere.pdf
Source: chromecache_613.5.dr	Initial sample: http://loscogliodifavignana.it/userfiles/files/53929450716.pdf
Source: chromecache_613.5.dr	Initial sample: http://massimomoroni.it/userfiles/files/tamelodijawodaxabavifi.pdf
Source: chromecache_613.5.dr	Initial sample: https://crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas
Source: chromecache_613.5.dr	Initial sample: http://support-cmu.com/filedata/file/75808451450.pdf
Source: chromecache_613.5.dr	Initial sample: https://multimetrics.com/ckfinder/userfiles/files/buwaxanobupovavemuv.pdf
Source: chromecache_613.5.dr	Initial sample: http://rollfactorytogo.com/uploads/files/8821421759.pdf

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\Downloads\8af6dc25-35fb-4db9-8a95-1447ad6865a3.tmp

Jump to behavior

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe

File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-12-19 11-19-22-642.log

Jump to behavior

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CA

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2432 --field-trial-handle=2284,i,14203283781619324304,313292611916500491,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf"
Source: unknown	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Downloads\downloaded.pdf"
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2076 --field-trial-handle=1620,i,5713821891575322523,10176732919877581755,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "https://crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1888,i,12296922024862022079,7502349747072677191,262144 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2432 --field-trial-handle=2284,i,14203283781619324304,313292611916500491,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2076 --field-trial-handle=1620,i,5713821891575322523,10176732919877581755,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1888,i,12296922024862022079,7502349747072677191,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe

File opened: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\crash_reporter.cfg

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: Chrome Cache Entry: 613
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: Chrome Cache Entry: 613			Jump to dropped file

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Spearphishing Link	Windows Management Instrumentation	Path Interception	1 Process Injection	11 Masquerading	OS Credential Dumping	1 System Information Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label
C:\Users\user\Downloads\ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp	100%	Avira	HTML/Malicious.PDF.Gen2
C:\Users\user\Downloads\downloaded.pdf.crdownload	100%	Avira	HTML/Malicious.PDF.Gen2
C:\Users\user\Downloads\ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp	100%	Joe Sandbox ML
C:\Users\user\Downloads\downloaded.pdf.crdownload	100%	Joe Sandbox ML

Name	IP	Active	Malicious	Reputation
widget.driverreviews.com	3.77.62.172	true	false	high
tfsroanoke.com	64.40.13.26	true	false	unknown
syndicatedsearch.goog	216.58.208.238	true	false	high
service.hyundaiusa.com	159.127.64.159	true	false	unknown
stats.g.doubleclick.net	66.102.1.154	true	false	high
bg.microsoft.map.fastly.net	199.232.214.172	true	false	high
67905.bodis.com	199.59.243.227	true	false	high
youtube-ui.l.google.com	142.250.181.14	true	false	high
www.google.com	172.217.19.164	true	false	high
analytics.google.com	172.217.19.238	true	false	high
googlehosted.l.googleusercontent.com	172.217.17.65	true	false	high
crewmak.ru	103.224.182.253	true	false	unknown
click-use1.bodis.com	199.59.243.205	true	false	high
afs.googleusercontent.com	unknown	unknown	false	high
x1.i.lencr.org	unknown	unknown	false	high
www.hankooktire.com	unknown	unknown	false	high
ww25.crewmak.ru	unknown	unknown	false	high
asset.hankooktire.com	unknown	unknown	false	unknown
www.youtube.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Reputation
https://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15	false	unknown
https://syndicatedsearch.goog/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=7gxkywgwtf7k&aqid=kC5kZ5qxO7iAhcIPqL_msAQ&psid=3113057640&pbt=bv&adbx=381.5&adby=143&adbh=1578&adbw=500&adbah=546%2C506%2C526&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=18%7C0%7C3541%7C3296%7C1045&lle=0&ifv=1&hpt=1	false	high
https://syndicatedsearch.goog/afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=fc57tqg1fvqz&aqid=kC5kZ5qxO7iAhcIPqL_msAQ&psid=3113057640&pbt=bs&adbx=381.5&adby=143&adbh=1578&adbw=500&adbah=546%2C506%2C526&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=18%7C0%7C3541%7C3296%7C1045&lle=0&ifv=1&hpt=1	false	high
https://www.google.com/images/afs/snowman.png	false	high
https://syndicatedsearch.goog/afs/ads/i/iframe.html	false	high
https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff	false	high
https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html	false	high
https://syndicatedsearch.goog/adsense/domains/caf.js?pac=2	false	high
https://syndicatedsearch.goog/adsense/domains/caf.js?pac=0	false	high
https://service.hyundaiusa.com/en/dealer/suburban-hyundai-of-troy--MI060?mx_ch=T3as&jtid=MI060&mx_ch=T3as&jtid=gcp:se_55712:t_kwd-128457298:ag_144441819766:cp_19643299624:n_s:d_c:cr_646829533404:fi_&utm_source=epsilon&utm_medium=cpc&utm_campaign=HMX_Suburban+Hyundai+of+Troy_MI060&gad_source=5&gclid=EAIaIQobChMI77DXl4a0igMVIDkGAB1PhjTREAAYASAAEgJWGfD_BwE	false	unknown
http://ww25.crewmak.ru/bfOiADgAU.js	false	unknown
http://ww25.crewmak.ru/_tr	false	unknown
http://ww25.crewmak.ru/_fd?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e	false	unknown
https://www.youtube.com/s/player/03dbdfab/www-widgetapi.vflset/www-widgetapi.js	false	high

URLs from Memory and Binaries

Name	Source	Malicious	Reputation
https://stats.g.doubleclick.net/g/collect	chromecache_470.5.dr	false	high
https://www.hankooktire.com/it/it/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high
https://syndicatedsearch.goog	chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	false	high
https://www.hankooktire.com/se/sv/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/id/id/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high
https://www.redditstatic.com/ads/pixel.js	chromecache_557.5.dr, chromecache_516.5.dr	false	high
https://www.hankooktire.com/id/id/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/my/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/cz/cs/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/th/th/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high
https://www.hankooktire.com/cl/es/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/IZ3_X_normal_0606.png	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-smart.svg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/111.jpg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_hkt_fe_maker_film_1920_97	chromecache_516.5.dr	false	unknown
https://swiperjs.com	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_VentusxRST_1024_1000_2310	chromecache_516.5.dr	false	unknown
https://www.youtube.com	chromecache_583.5.dr, chromecache_675.5.dr	false	high
https://www.hankooktire.com/au/en/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Weatherflex_GT_normal.png	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/mx/es/home.html	chromecache_516.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/kr/tire-list/keyvisual/m_kv_111_7_Electric_Veh	chromecache_557.5.dr	false	unknown
https://www.hankook-precisionworks.com/en	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/kr/ko/tirelist/brand-family/winter-i-cept.html	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/br/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/icon_careguide.svg	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/co/es/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/uk/en/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/Logo.svg	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/ru	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/nl/nl/tirelist/vehicle/electric-vehicle.html	chromecache_557.5.dr	false	high
https://www.hankooktire.com/mx/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/main-key-visual/pc/c_flag_usa.s	chromecache_557.5.dr, chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_DynaproBF_390_750_231030.	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_kinergy_1920_970_230523.m	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_kinergy_1920_970_230523.j	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/de/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
http://kingswaytyres.com/project/kingsway/uploads/file/mofezozuwaka.pdf)	ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	false	unknown
https://multimetrics.com/ckfinder/userfiles/files/buwaxanobupovavemuv.pdf)	ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/svg/ETC_Award1.svg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Kinergy_normal0606.png	chromecache_516.5.dr	false	unknown
https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5	chromecache_403.5.dr, chromecache_381.5.dr, chromecache_636.5.dr, chromecache_556.5.dr, chromecache_677.5.dr	false	high
https://www.hankooktire.com/	chromecache_493.5.dr	false	high
https://www.hankooktire.com/ca/en/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/mea/ar/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/pl/pl/tirelist/vehicle/electric-vehicle.html	chromecache_557.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/us/main/press-release/news_home_img_20241210.j	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/th/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/cz/cs/tirelist/vehicle/electric-vehicle.html	chromecache_557.5.dr	false	high
https://www.hankookandcompany.com/en.do?lang=en	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/11new.jpg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/techinmotion/ventus_maintains_m.jpg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/eu/product/tire_list/pcr/IH01_hover.jpg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_us_en_iON_2_1920_970_1209	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/it/it/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/vn/vi/home.html	chromecache_516.5.dr	false	high
https://schema.org	chromecache_516.5.dr	false	high
https://www.hankooktire.com/nl/nl/tirelist/vehicle/electric_vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/ca/fr/tirelist/vehicle/electric-vehicle.html	chromecache_557.5.dr	false	high
https://www.hankooktire.com/tw/zh/home.html	chromecache_516.5.dr	false	high
https://www.hankooktire.com/nl/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/fr/fr/home.html	chromecache_516.5.dr	false	high
https://www.instagram.com/p/DBsg7nKtk5s/	chromecache_516.5.dr	false	high
https://greensock.com/standard-license	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/cz/cs/tirelist/vehicle/electric_vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-ventus.svg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/sns/2024/12/2.jpg	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/brand-product/our-brands/logo/5	chromecache_516.5.dr	false	unknown
https://coherence.cz/userfiles/file/fiwos.pdf)	ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	false	unknown
https://www.hankooktire.com/se/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://eorder.hankooktire.com	chromecache_557.5.dr, chromecache_516.5.dr	false	unknown
https://www.youtube.com/channel/UC86f2_-Etmdmi1KpTjYHupQ	chromecache_516.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/local/img/product-detil-page/bi-image/pcr/bi_V	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/us/product/tire_list/Weatherflex_GT_hover.jpg	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/tw/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_ventus_1920_970_1125.mp4	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/images/home/icon_drivingtips.svg	chromecache_516.5.dr	false	unknown
http://mitsubishilongbien.vn/images/ckeditor/files/99207838017.pdf)	ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	false	unknown
http://rollfactorytogo.com/uploads/files/8821421759.pdf)	ad651389-fdf5-4171-ab55-dbacbe8d7ab6.tmp.1.dr, chromecache_613.5.dr, downloaded.pdf.crdownload.1.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-dynapro.svg	chromecache_516.5.dr	false	unknown
https://www.hankooktire.com/es/es/home.html	chromecache_516.5.dr	false	high
https://asset.hankooktire.com/content/dam/hankooktire/global/video/main/LC_VentusxRST_19LC_VentusxRS	chromecache_516.5.dr	false	unknown
https://asset.hankooktire.com/content/dam/hankooktire/local/img/main/logo/5logo-kinergy.svg	chromecache_516.5.dr	false	unknown
https://www.youtube.com/user/HankookUSARacing	chromecache_516.5.dr	false	high
https://www.hankooktire.com/au/	chromecache_520.5.dr, chromecache_493.5.dr	false	high
https://www.hankooktire.com/jp/ja/tirelist/vehicle/electric-vehicle.html	chromecache_520.5.dr, chromecache_493.5.dr, chromecache_557.5.dr	false	high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.217.19.164	www.google.com	United States	15169	GOOGLEUS	false
142.250.181.132	unknown	United States	15169	GOOGLEUS	false
66.102.1.154	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
3.76.167.56	unknown	United States	16509	AMAZON-02US	false
172.217.17.65	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
3.77.62.172	widget.driverreviews.com	United States	16509	AMAZON-02US	false
172.217.19.238	analytics.google.com	United States	15169	GOOGLEUS	false
64.40.13.26	tfsroanoke.com	United States	395512	GLOBAL2016US	false
103.224.182.253	crewmak.ru	Australia	133618	TRELLIAN-AS-APTrellianPtyLimitedAU	false
199.59.243.227	67905.bodis.com	United States	395082	BODIS-NJUS	false
199.59.243.205	click-use1.bodis.com	United States	395082	BODIS-NJUS	false
216.58.208.238	syndicatedsearch.goog	United States	15169	GOOGLEUS	false
159.127.64.159	service.hyundaiusa.com	United States	396292	EPSILON-EGIUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.181.14	youtube-ui.l.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.7
192.168.2.10

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1578321
Start date and time:	2024-12-19 15:29:30 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 7m 35s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	27
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal68.phis.win@74/576@85/17
Cookbook Comments:	Found PDF document Close Viewer

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, WMIADAP.exe, SIHClient.exe, SgrmBroker.exe, conhost.exe, backgroundTaskHost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.181.99, 172.217.19.206, 64.233.164.84, 172.217.17.46, 199.232.214.172, 172.217.17.66, 23.193.114.18, 23.193.114.26, 199.232.210.172, 172.217.17.35, 172.217.17.33, 172.217.19.162, 142.250.181.2, 23.218.208.137, 162.159.61.3, 172.64.41.3, 23.195.39.65, 2.19.198.10, 2.19.198.16, 23.32.239.74, 2.19.198.27, 216.58.208.234, 172.217.21.42, 172.217.17.74, 172.217.19.202, 142.250.181.106, 142.250.181.138, 142.250.181.74, 172.217.19.234, 172.217.17.42, 172.217.17.34, 23.32.238.203, 23.32.238.177, 23.50.131.216, 23.50.131.200, 216.58.208.232, 23.32.239.26, 142.250.181.136, 172.217.19.10, 142.250.181.42, 13.107.246.63, 23.218.208.109, 172.202.163.200, 52.6.155.20, 23.56.162.204
Excluded domains from analysis (whitelisted): e4578.dscg.akamaiedge.net, chrome.cloudflare-dns.com, www.googleadservices.com, e8652.dscx.akamaiedge.net, slscr.update.microsoft.com, partner.googleadservices.com, clientservices.googleapis.com, time.windows.com, a767.dspw65.akamai.net, acroipm2.adobe.com, clients2.google.com, redirector.gvt1.com, ssl-delivery.adobe.com.edgekey.net, www.googletagmanager.com, a122.dscd.akamai.net, a884.d.akamai.net, update.googleapis.com, wu-b-net.trafficmanager.net, a1857.r.akamai.net, crl.root-x1.letsencrypt.org.edgekey.net, optimizationguide-pa.googleapis.com, clients1.google.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, otelrules.azureedge.net, ctldl.windowsupdate.com.delivery.microsoft.com, acroipm2.adobe.com.edgesuite.net, ctldl.windowsupdate.com, p13n.adobe.io, fe3cr.delivery.mp.microsoft.com, download.windowsupdate.com.edgesuite.net, edgedl.me.gvt1.com, armmf.adobe.com, tpc.googlesyndication.com, www.hankooktire.com.edgesuite.net, asset.hanko
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing behavior information.
Some HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf

Simulations

Behavior and APIs

Time	Type	Description
11:19:31	API Interceptor	2x Sleep call for process: AcroCEF.exe modified

LLM Input / Output

Input	Output
URL: https://hankooktire.com Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": false, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": true, "brand_spoofing_attempt": false, "third_party_hosting": false }
URL: https://hankooktire.com
URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=dis... Model: Joe Sandbox AI	{ "risk_score": 6, "reasoning": "The provided JavaScript snippet contains several behaviors that raise moderate security concerns. It appears to be sending user data, including a unique identifier and page details, to an external domain 'ww25.crewmak.ru'. While the intent may be for analytics or tracking purposes, the use of obfuscated data and the interaction with an unfamiliar domain increases the risk. Further investigation would be needed to determine the legitimacy of this script's purpose and the trustworthiness of the receiving domain." }
window.park = "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";
URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=dis... Model: Joe Sandbox AI	{ "risk_score": 6, "reasoning": "The provided JavaScript snippet contains several moderate-risk indicators, including external data transmission to an unknown domain and the use of obfuscated code. While the intent is not entirely clear, the combination of these factors warrants further investigation to determine the legitimacy of the script's purpose." }
window.park = "eyJ1dWlkIjoiYmNhODNjMmEtN2E2MS00MWI2LWFmMzgtNjhlMmM5NWRkNGNmIiwicGFnZV90aW1lIjoxNzM0NjE4Njg0LCJwYWdlX3VybCI6Imh0dHA6Ly93dzI1LmNyZXdtYWsucnUvP2NhZj0xXHUwMDI2YnB0PTM0NVx1MDAyNnV0bV90ZXJtPWRpc2NvdmVyeStvYmplY3Rpb25zK2NoZWF0K3NoZWV0K3RleGFzXHUwMDI2c3ViaWQxPTIwMjQxMjIwLTAxMzAtNTZhNi04NDliLTA2MjM2ZmJlNWE5ZVx1MDAyNnF1ZXJ5PUJ1eSthK1R5cmVcdTAwMjZhZmRUb2tlbj1DaE1JaEx6a2lvYTBpZ01WS1VMeEF4MkFYQlJJRW1VQmxMcXBqMHg1RFEyV3R6Q1c3dFhnZ3p3Rm5JY3FRSFRoUUVDaUVGbW1VOWJieHpYVzg2YV96SEt6WmNkSlZZdmx6dEh3VnU2OVlQUmQ5cU45UUNxSkFULVJlZS1LVzBrc2RyenczalhoV1U5OUp4TGVUTHNrZjJDdC1wbnFjTDZESkZ5b2N5QUJcdTAwMjZwY3NhPWZhbHNlXHUwMDI2bmI9MFx1MDAyNm5tPTlcdTAwMjZueD0zMzNcdTAwMjZueT02NVx1MDAyNmlzPTcwMHg0ODBcdTAwMjZjbGt0PTMiLCJwYWdlX21ldGhvZCI6IkdFVCIsInBhZ2VfcmVxdWVzdCI6eyJhZmRUb2tlbiI6IkNoTUloTHpraW9hMGlnTVZLVUx4QXgyQVhCUklFbVVCbExxcGoweDVEUTJXdHpDVzd0WGdnendGbkljcVFIVGhRRUNpRUZtbVU5YmJ4elhXODZhX3pIS3paY2RKVll2bHp0SHdWdTY5WVBSZDlxTjlRQ3FKQVQtUmVlLUtXMGtzZHJ6dzNqWGhXVTk5SnhMZVRMc2tmMkN0LXBucWNMNkRKRnlvY3lBQiIsImJwdCI6IjM0NSIsImNhZiI6IjEiLCJjbGt0IjoiMyIsImlzIjoiNzAweDQ4MCIsIm5iIjoiMCIsIm5tIjoiOSIsIm54IjoiMzMzIiwibnkiOiI2NSIsInBjc2EiOiJmYWxzZSIsInF1ZXJ5IjoiQnV5K2ErVHlyZSIsInN1YmlkMSI6IjIwMjQxMjIwLTAxMzAtNTZhNi04NDliLTA2MjM2ZmJlNWE5ZSIsInV0bV90ZXJtIjoiZGlzY292ZXJ5K29iamVjdGlvbnMrY2hlYXQrc2hlZXQrdGV4YXMifSwicGFnZV9oZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9zeW5kaWNhdGVkc2VhcmNoLmdvb2cvIl19LCJob3N0Ijoid3cyNS5jcmV3bWFrLnJ1IiwiaXAiOiI4LjQ2LjEyMy4xODkifQo=";
URL: http://ww25.crewmak.ru/bXOmyuaKu.js... Model: Joe Sandbox AI	{ "risk_score": 3, "reasoning": "The provided JavaScript snippet appears to be a part of an ad-blocking detection and handling mechanism. It does not contain any high-risk indicators like dynamic code execution, data exfiltration, or malicious redirects. The script primarily focuses on detecting ad-blocking behavior and adjusting the application state accordingly. While it uses some legacy practices like `XDomainRequest`, the overall intent seems to be legitimate, and the script is likely part of a larger application with a focus on ad-related functionality." }
!function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function(){}))}hasAdblocker(){if(void 0===window.google)return!0;const e=document.querySelectorAll("style");return Array.from(e).some((e=>!!e.innerHTML.includes("adblockkey")))}handleAdblocked(){this.removeAdblockKey(),this.state=Blocking.BLOCKED}removeAdblockKey(){var e;null===(e=document.documentElement.dataset)\|\|void 0===e\|\|delete e.adblockkey}get isBlocked(){return this.state===Blocking.BLOCKED}get isAllowed(){return this.state===Blocking.ALLOWED}toContext(){return{user_has_ad_blocker:null,is_ad_blocked:null}}}const OBFUSCATING_BASE_64_PREFIX="UxFdVMwNFNwN0wzODEybV",encode=e=>OBFUSCATING_BASE_64_PREFIX+btoa(unescape(encodeURIComponent(JSON.stringify(e))));function decode$1(e){return JSON.parse(decodeURIComponent(escape(atob(e.replace(OBFUSCATING_BASE_64_PREFIX,"")))))}var version="0.5.5";const APP_ENV="production",TRACKING_DOMAIN="https://click-use1.bodis.com/",SALES_JS_URL="https://parking.bodiscdn.com/js/inquiry.js",GOOGLE_CAF_TIMEOUT_SCRIPTS="0",GOOGLE_CAF_TIMEOUT_CALLBACKS="0",GOOGLE_MV3_URL_PARAMS="abp=1&bodis=true",APP_VERSION=version,COOKIE_CONSENT_JS_URL="",isLocal=(e=!0)=>"production"!==APP_ENV;function log(...e){}const FIND_DOMAIN_URL="_fd",getFindDomain=(e="",t=!1)=>{const n=`${e}/${FIND_DOMAIN_URL}${window.location.search}`,i=e?"include":"same-origin",s=Object.assign({Accept:"application/json","Content-Type":"application/json"},t?{"X-HOST":window.location.host}:{});return fetch(n,{method:"POST",headers:s,credentials:i}).then((e=>e.text())).then(decode$1)};var ZeroClickReasons;!function(e){e.CAF_TIMEDOUT="caf_timedout",e.CAF_ADLOAD_FAIL_RS="caf_adloadfail_rs",e.CAF_ADLOAD_FAIL_ADS="caf_adloadfail_ads",e.DISABLED_GB="disabled_gb",e.DISABLED_AB="disabled_ab",e.DISABLED_DS="disabled_ds",e.AD_BLOCKED="ad_blocked",e.PREFERRED="preferred"}(ZeroClickReasons\|\|(ZeroClickReasons={}));const getZeroClick=e=>__awaiter(void 0,void 0,void 0,(function(){const t=Object.assign(Object.assign({},e),{type:"zc_fetch"});return fetch("/_zc",{method:"POST",body:JSON.stringify({signature:encode(t)}),headers:{Accept:"application/json","Content-Type":"application/json"}}).then((e=>__awaiter(void 0,void 0,void 0,(function(){try{return decode$1(yield e.text())}catch(e){return{}}}))))})),waiter=(e,t)=>new Promise((n=>{t(e),e<=0&&n();let i=e;const s=()=>{i>0?(i-=1,t(i),setTimeout(s,1e3)):n()};s()})),decode=()=>JSON.parse(atob(window.park\|\|""));var PAGE_STYLES=' {\n font-smoothing: antialiased;\n -webkit-font-smoothing: antialiased;\n -moz-osx-font-smoothing: grayscale;\n}\n\nhtml, body {\n width: 100%;\n margin: 0;\n}\n\nhtml {\n background-color: #2B2B2B;\n height: 100%;\n}\n\nbody {\n min-height: 90%;\n font-family: Arial, sans-serif;\n letter-spacing: 1.2px;\n color: #ccc;\n text-align: center;\n}\n\n/* App Target - This starts hidden until we apply a class to "activate" it /\n\n#target {\n opacity: 0;\n visibility: hidden;\n}\n\n/ Status Messages - These are displayed when we are not rendering ad blocks or Related Search */\n\n#pk-status-message {\n height: 75vh;\n width: 100%;\n display: flex;\n flex-direction: column;\n align-items
URL: https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "Reload", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: file:///C:/Users/user/Downloads/downloaded.pdf Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "Next", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: file:///C:/Users/user/Downloads/downloaded.pdf Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "Next", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf Model: Joe Sandbox AI	{ "brands": "unknown" }
	{ "brands": "unknown" }
URL: file:///C:/Users/user/Downloads/downloaded.pdf Model: Joe Sandbox AI	{ "brands": "unknown" }
	{ "brands": "unknown" }
URL: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Bridgestone Dueller Tires", "prominent_button_name": "Buy a Tyre", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: file:///C:/Users/user/Downloads/downloaded.pdf Model: Joe Sandbox AI	{ "brands": "unknown" }
	{ "brands": "unknown" }
URL: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e Model: Joe Sandbox AI	{ "brands": [ "Bridgestone" ] }
	{ "brands": [ "Bridgestone" ] }
URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztH Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "New Tires For Your Vehicle - Schedule Your Car Care", "prominent_button_name": "Visit Website", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztH Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "New Tires For Your Vehicle - Schedule Your Car Care", "prominent_button_name": "Visit Website", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15 Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztH Model: Joe Sandbox AI	{ "brands": [ "Hyundai", "Hankook" ] }
	{ "brands": [ "Hyundai", "Hankook" ] }
URL: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15 Model: Joe Sandbox AI	{ "brands": [ "Bridgestone", "Airmoto" ] }
	{ "brands": [ "Bridgestone", "Airmoto" ] }
URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztH Model: Joe Sandbox AI	{ "brands": [ "Hyundai", "Hankook", "Itdroll" ] }
	{ "brands": [ "Hyundai", "Hankook", "Itdroll" ] }
URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-Eh Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Drive in Peace, Quiet &Comfort - 30 Days Free Trial - Safe. Dependable. Hankook", "prominent_button_name": "Visit Website", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-Eh Model: Joe Sandbox AI	{ "brands": [ "Bridgestone", "Hankook" ] }
	{ "brands": [ "Bridgestone", "Hankook" ] }
URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html?gad_source=5&gclid=EAIaIQobChMImrmuvIa0igMVOEBBAh2onxlGEAAYASAAEgINXfD_BwE Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html?gad_source=5&gclid=EAIaIQobChMImrmuvIa0igMVOEBBAh2onxlGEAAYASAAEgINXfD_BwE Model: Joe Sandbox AI	{ "brands": [ "Hankook" ] }
	{ "brands": [ "Hankook" ] }
URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": true, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html Model: Joe Sandbox AI	{ "brands": [ "Hankook" ] }
	{ "brands": [ "Hankook" ] }
URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html Model: Joe Sandbox AI	{ "brands": [ "Hankook" ] }
	{ "brands": [ "Hankook" ] }
URL: https://www.hankooktire.com/us/en/tirelist/vehicle/electric-vehicle.html Model: Joe Sandbox AI	```json{ "legit_domain": "hankooktire.com", "classification": "known", "reasons": [ "The URL 'www.hankooktire.com' matches the legitimate domain name for the brand Hankook.", "Hankook is a known brand in the tire industry.", "There are no suspicious elements in the URL such as misspellings, extra characters, or unusual domain extensions.", "The domain name is fully matching with the brand name, which is a good indicator of a legitimate webpage." ], "riskscore": 1}
URL: www.hankooktire.com Brands: Hankook Input Fields: unknown
URL: https://www.hankooktire.com/us/en/home.html Model: Joe Sandbox AI	{ "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "Find Tires", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false, "contains_chinese_text": false, "contains_fake_security_alerts": false }

URL: https://www.hankooktire.com/us/en/home.html Model: Joe Sandbox AI	{ "brands": [ "Hankook" ] }
	{ "brands": [ "Hankook" ] }

Process:	C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	300
Entropy (8bit):	5.175357260409409
Encrypted:	false
SSDEEP:	6:7WpL+q2PcNwi2nKuAl9OmbnIFUt8OWxzzKWZmw+OWxzlLVkwOcNwi2nKuAl9Omb5:7w+vLZHAahFUt8O4zzKW/+O4zNV54ZHi
MD5:	0E661E7B2E8DECF0F645DDD4AC615FB2
SHA1:	D8F2C0481E5E150C72D02C181D5403D40F03503A
SHA-256:	C8D9CF2BC0E6B5C02A0CB4959D179198223B8AAA12E798CADEB159FEB854A194
SHA-512:	0C99495217D172184A59F91DDD8A76FD9F1FA02DCE576724B7305AABF549C4068B8DB019BCDE97B30B3CF1101C0841395ED6F0927DA45D1EF5DED8D374A86DB1
Malicious:	false
Reputation:	low
Preview:	2024/12/19-11:19:20.303 1b3c Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2024/12/19-11:19:20.305 1b3c Recovering log #3.2024/12/19-11:19:20.305 1b3c Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PDF document, version 1.4
Category:	dropped
Size (bytes):	7978
Entropy (8bit):	7.791988353153432
Encrypted:	false
SSDEEP:	192:O4RKGMzVexK0D8mQ+MbuMiEJJBuoqCvVBTiICxR2eZ:pKGrdQbbbiEZud+BT4RRZ
MD5:	C4B0E238C7ABA570DA752D790BF47937
SHA1:	DEEAF51263A74A9113609CCD5BF927BBEE3344C2
SHA-256:	383B237CE87D90C4C10A42E82A604047CAD01C7F891C16E8816AF8DDB383FD2C
SHA-512:	464243C358E87F48EC66C84016AEE701F9DCF4D0BC08981638BB9018B14C1A95E33EA3CEEC2C25B0DF76EAD63A923AEEDB92710BE164E34C59C04555B8F36092
Malicious:	false
Reputation:	low
Preview:	%PDF-1.4.%...1 0 obj.<<./Title ()./Creator (...w.k.h.t.m.l.t.o.p.d.f. .0...1.2...5)./Producer (...Q.t. .5...1.1...3)./CreationDate (D:20211212195521+02'00').>>.endobj.2 0 obj.<<./Type /Catalog./Pages 3 0 R.>>.endobj.4 0 obj.<<./Type /ExtGState./SA true./SM 0.02./ca 1.0./CA 1.0./AIS false./SMask /None>>.endobj.5 0 obj.[/Pattern /DeviceRGB].endobj.8 0 obj.<<./Type /XObject./Subtype /Image./Width 625./Height 155./BitsPerComponent 8./ColorSpace /DeviceRGB./Length 9 0 R./Filter /DCTDecode.>>.stream.......JFIF.....d.d.....C....................................................................C.........................................................................q.."............................................................}........!1A..Qa."q.2....#B...R..$3br........%&'()456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz..............................................................................................................................w.......!1..AQ.aq."2...B.....#3R..br...$4.%.....&'()

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Dec 19, 2024 15:30:31.758694887 CET	53	63063	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:31.767549992 CET	53	57428	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:33.886121988 CET	123	123	192.168.2.7	40.81.94.65
Dec 19, 2024 15:30:34.446717978 CET	123	123	40.81.94.65	192.168.2.7
Dec 19, 2024 15:30:34.738039017 CET	53	56748	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:35.597321987 CET	60400	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:35.597698927 CET	52734	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:35.734369040 CET	53	60400	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:35.734455109 CET	53	52734	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:37.020612001 CET	55538	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:37.023099899 CET	53904	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:37.531687021 CET	53	53904	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:37.532263994 CET	53	55538	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:51.801238060 CET	53	63235	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:53.264136076 CET	50058	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:53.264293909 CET	60525	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:54.286462069 CET	51650	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:54.286602020 CET	57820	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:54.333235025 CET	53	50058	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:54.334187031 CET	53	60525	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:54.424407005 CET	53	57820	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:54.428375959 CET	53	51650	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:56.498486042 CET	61772	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:56.498646021 CET	52938	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:56.984520912 CET	53	52938	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:57.010426044 CET	53	61772	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:58.314970016 CET	59598	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:58.315160990 CET	62878	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:58.452289104 CET	53	59598	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:58.455769062 CET	53	62878	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:59.025229931 CET	50153	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:59.025357962 CET	50303	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:30:59.167608023 CET	53	50303	1.1.1.1	192.168.2.7
Dec 19, 2024 15:30:59.170588017 CET	53	50153	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:01.965538025 CET	63650	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:01.965672016 CET	55910	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:02.102869987 CET	53	63650	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:02.216836929 CET	53	55910	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:02.632075071 CET	54114	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:02.632266998 CET	62217	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:02.660499096 CET	65366	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:02.660751104 CET	64351	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:02.769531965 CET	53	54114	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:02.769860983 CET	53	62217	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:02.797996044 CET	53	65366	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:02.804857016 CET	53	64351	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:08.672390938 CET	57420	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:08.672518015 CET	52123	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:08.746046066 CET	62543	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:08.746455908 CET	63380	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:08.809784889 CET	53	57420	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:08.814863920 CET	53	52123	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:08.883680105 CET	53	62543	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:09.080672026 CET	53	63380	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:10.896694899 CET	53	54546	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:11.529095888 CET	59696	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:11.529272079 CET	58786	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:11.667901039 CET	53	58786	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:11.667973995 CET	53	59696	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:27.509401083 CET	138	138	192.168.2.7	192.168.2.255
Dec 19, 2024 15:31:31.592895985 CET	53	55015	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:32.961075068 CET	56304	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:32.961846113 CET	57695	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:33.098681927 CET	53	57695	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:33.098768950 CET	53	51613	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:33.098778009 CET	53	56304	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:33.344882965 CET	53	57987	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:35.894170046 CET	53	55804	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:46.250611067 CET	55199	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:46.250756979 CET	57238	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:46.626204014 CET	53	55199	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:46.626568079 CET	53	57238	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:48.836600065 CET	49342	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:48.836762905 CET	51649	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:31:49.369579077 CET	53	51649	1.1.1.1	192.168.2.7
Dec 19, 2024 15:31:49.369641066 CET	53	49342	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:00.171822071 CET	56170	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:16.728760958 CET	50639	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:16.728760958 CET	60247	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:16.863050938 CET	53	64244	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:16.867350101 CET	53	50639	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:16.883080006 CET	53	50794	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:17.111439943 CET	53	60247	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:18.998214006 CET	63140	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:18.998353958 CET	62927	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:19.135457039 CET	53	62927	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:19.136626959 CET	53	63140	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:19.744712114 CET	53	49158	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:20.883188963 CET	64240	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:20.883635998 CET	53721	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:21.020937920 CET	53	64240	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:21.021820068 CET	53	53721	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:22.009345055 CET	56069	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:22.009557009 CET	64676	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:22.146819115 CET	53	56069	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:22.147116899 CET	53	64676	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:23.423362970 CET	51279	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:23.423697948 CET	59079	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:23.681850910 CET	53	51279	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:23.681874037 CET	53	59079	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:24.064826012 CET	64661	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:24.065016985 CET	56285	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:24.203582048 CET	53	64661	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:24.204114914 CET	53	56285	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:26.016844034 CET	53	59430	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:27.046072960 CET	60809	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:27.046226025 CET	55129	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:27.187792063 CET	53	60809	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:27.286906004 CET	53	55129	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:27.739495993 CET	60502	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:27.739630938 CET	58050	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:27.740269899 CET	63142	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:27.740436077 CET	50228	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:27.876367092 CET	53	60502	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:27.877109051 CET	53	50228	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:27.877146006 CET	53	63142	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:27.877157927 CET	53	58050	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:33.852622032 CET	53635	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:33.853286982 CET	52372	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:32:33.990180016 CET	53	53635	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:33.993648052 CET	53	52372	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:36.734580994 CET	53	61449	1.1.1.1	192.168.2.7
Dec 19, 2024 15:32:55.430274963 CET	53	54418	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:05.821173906 CET	56785	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:05.821676970 CET	56865	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:06.075443029 CET	53	56785	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:06.086186886 CET	53	56865	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:08.407358885 CET	50065	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:08.407808065 CET	56784	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:09.428241014 CET	58147	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:09.428769112 CET	61261	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:13.401736975 CET	53	50862	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:15.251341105 CET	55050	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:15.251580954 CET	50260	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:15.607335091 CET	58342	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:15.607574940 CET	64949	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:16.348831892 CET	53	52845	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:17.351880074 CET	53	51045	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:17.817599058 CET	53	61076	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:18.213803053 CET	54444	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:18.213972092 CET	64042	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:30.506391048 CET	51299	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:30.506505013 CET	50946	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:30.850045919 CET	53	51299	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:30.853247881 CET	53	50946	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:33.666163921 CET	53	56332	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:33.967137098 CET	52945	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:33.967227936 CET	50658	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:34.105151892 CET	53	50658	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:34.105165005 CET	53	52945	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:35.796241045 CET	63020	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:35.796529055 CET	55355	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:35.934226990 CET	53	63020	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:35.934674978 CET	53	55355	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:44.585490942 CET	63720	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:44.585648060 CET	64754	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:33:44.724085093 CET	53	63720	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:44.724100113 CET	53	64754	1.1.1.1	192.168.2.7
Dec 19, 2024 15:33:48.839082003 CET	53	62508	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:01.295449972 CET	60952	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:01.296240091 CET	57646	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:01.433686972 CET	53	60952	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:01.436141014 CET	53	57646	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:04.381313086 CET	58839	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:04.381470919 CET	52222	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:04.518692017 CET	53	58839	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:04.518750906 CET	53	52222	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:13.197427988 CET	55757	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:13.197643995 CET	51086	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:15.811866045 CET	53	64822	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:18.480114937 CET	53081	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:18.480252028 CET	59429	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:18.701704979 CET	53	63638	1.1.1.1	192.168.2.7
Dec 19, 2024 15:34:18.712367058 CET	55807	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:18.712604046 CET	58217	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:18.877621889 CET	52149	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:18.877778053 CET	61678	53	192.168.2.7	1.1.1.1
Dec 19, 2024 15:34:36.306176901 CET	53	64420	1.1.1.1	192.168.2.7

Timestamp	Source IP	Dest IP	Checksum	Code	Type
Dec 19, 2024 15:30:54.424489021 CET	192.168.2.7	1.1.1.1	c22f	(Port unreachable)	Destination Unreachable
Dec 19, 2024 15:31:02.217000008 CET	192.168.2.7	1.1.1.1	c22a	(Port unreachable)	Destination Unreachable
Dec 19, 2024 15:31:09.080755949 CET	192.168.2.7	1.1.1.1	c248	(Port unreachable)	Destination Unreachable
Dec 19, 2024 15:32:17.111520052 CET	192.168.2.7	1.1.1.1	c22f	(Port unreachable)	Destination Unreachable
Dec 19, 2024 15:32:27.287009001 CET	192.168.2.7	1.1.1.1	c22a	(Port unreachable)	Destination Unreachable
Dec 19, 2024 15:33:09.565291882 CET	192.168.2.7	1.1.1.1	c258	(Port unreachable)	Destination Unreachable

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:30:57.131647110 CET	527	OUT	GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Dec 19, 2024 15:30:58.227545977 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:30:57 GMT content-type: text/html; charset=utf-8 content-length: 1314 x-request-id: bca83c2a-7a61-41b6-af38-68e2c95dd4cf cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_uNmbQqvHV70fGLfaiFwdw7FEO1YOKTsLdky950CaH66EJDC63iXrd+z54xhgCe9rlc7B8W6PFTBYAYi+RwNhGA== set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:45:58 GMT; path=/ Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 75 4e 6d 62 51 71 76 48 56 37 30 66 47 4c 66 61 69 46 77 64 77 37 46 45 4f 31 59 4f 4b 54 73 4c 64 6b 79 39 35 30 43 61 48 36 36 45 4a 44 43 36 33 69 58 72 64 2b 7a 35 34 78 68 67 43 65 39 72 6c 63 37 42 38 57 36 50 46 54 42 59 41 59 69 2b 52 77 4e 68 47 41 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_uNmbQqvHV70fGLfaiFwdw7FEO1YOKTsLdky950CaH66EJDC63iXrd+z54xhgCe9rlc7B8W6PFTBYAYi+RwNhGA==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="pr
Dec 19, 2024 15:30:58.227745056 CET	748	IN	Data Raw: 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 Data Ascii: econnect" href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYmNhODNjMmEtN2E2MS00MWI2LWFmMzgtNjhlMmM5NWRkNGNmIiwicGFnZV90aW1lIjoxNzM0NjE4NjU4LCJwYWdlX3VybCI6I
Dec 19, 2024 15:30:58.316528082 CET	473	OUT	GET /bXOmyuaKu.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Referer: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Dec 19, 2024 15:30:58.637296915 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:30:57 GMT content-type: application/javascript; charset=utf-8 content-length: 35081 x-request-id: 83af5722-b29e-40b4-8072-3bd71700bffa set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:45:58 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}hasAdblocker(){if(void 0===w
Dec 19, 2024 15:30:58.637329102 CET	1236	IN	Data Raw: 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 29 72 65 74 75 72 6e 21 30 3b 63 6f 6e 73 74 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 73 74 79 6c 65 22 29 3b 72 65 74 75 72 6e 20 41 72 72 61 79 2e 66 72 6f 6d Data Ascii: indow.google)return!0;const e=document.querySelectorAll("style");return Array.from(e).some((e=>!!e.innerHTML.includes("adblockkey")))}handleAdblocked(){this.removeAdblockKey(),this.state=Blocking.BLOCKED}removeAdblockKey(){var e;null===(e=docu
Dec 19, 2024 15:30:58.637345076 CET	1236	IN	Data Raw: 2d 6f 72 69 67 69 6e 22 2c 73 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 28 7b 41 63 63 65 70 74 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 6f 6e 22 2c 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 Data Ascii: -origin",s=Object.assign({Accept:"application/json","Content-Type":"application/json"},t?{"X-HOST":window.location.host}:{});return fetch(n,{method:"POST",headers:s,credentials:i}).then((e=>e.text())).then(decode$1)};var ZeroClickReasons;!func
Dec 19, 2024 15:30:58.637399912 CET	1236	IN	Data Raw: 62 6f 64 79 20 7b 5c 6e 20 20 77 69 64 74 68 3a 20 31 30 30 25 3b 5c 6e 20 20 6d 61 72 67 69 6e 3a 20 30 3b 5c 6e 7d 5c 6e 5c 6e 68 74 6d 6c 20 7b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 32 42 32 42 32 42 3b 5c 6e 20 Data Ascii: body {\n width: 100%;\n margin: 0;\n}\n\nhtml {\n background-color: #2B2B2B;\n height: 100%;\n}\n\nbody {\n min-height: 90%;\n font-family: Arial, sans-serif;\n letter-spacing: 1.2px;\n color: #ccc;\n text-align: center;\n}\n\n/* App
Dec 19, 2024 15:30:58.637465000 CET	1236	IN	Data Raw: 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 5c 6e 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 38 70 78 3b 5c 6e 20 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 5c 6e 20 20 74 65 78 74 2d 73 68 61 64 6f 77 3a 20 31 70 78 20 31 70 78 20 30 20 72 Data Ascii: lay: inline-block;\n font-size: 18px;\n color: #fff;\n text-shadow: 1px 1px 0 rgba(0, 0, 0, 0.5);\n background: none;\n}\n\n/* Ellipsis Loader */\n\n.pk-loader {\n display: inline-block;\n position: relative;\n width: 80px;\n height: 8
Dec 19, 2024 15:30:58.637481928 CET	1236	IN	Data Raw: 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 41 6e 69 6d 61 74 69 6f 6e 20 2a 2f 5c 6e 5c 6e 40 6b 65 79 66 72 61 6d 65 73 20 70 6b 2d 61 6e 69 6d 2d 31 20 7b 5c 6e 20 20 30 25 20 7b 5c 6e 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 30 Data Ascii: \n}\n\n/* Animation */\n\n@keyframes pk-anim-1 {\n 0% {\n transform: scale(0);\n }\n 100% {\n transform: scale(1);\n }\n}\n\n@keyframes pk-anim-2 {\n 0% {\n transform: translate(0, 0);\n }\n 100% {\n transform: trans
Dec 19, 2024 15:30:58.637499094 CET	1236	IN	Data Raw: 3b 74 3f 74 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 3a 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 26 26 28 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 29 7d 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 29 7b 69 66 28 21 65 29 72 65 74 Data Ascii: ;t?t.innerHTML=e:this.domNode&&(this.domNode.innerHTML=e)}salesBanner(e){if(!e)return;const{href:t,position:n,message:i,theme:s,status:a}=e,o=document.createElement("div"),r=n\|\|"",d="HIGHLIGHT"===s?"is-highlighted":"";o.innerHTML=t?`\n
Dec 19, 2024 15:30:58.637660027 CET	1156	IN	Data Raw: 50 61 72 6b 69 6e 67 53 65 72 76 69 63 65 73 44 69 73 61 62 6c 65 64 28 29 7b 74 68 69 73 2e 6d 65 73 73 61 67 65 28 22 5c 6e 20 20 20 20 20 20 3c 68 31 3e 41 6e 20 45 72 72 6f 72 20 4f 63 63 75 72 72 65 64 3c 2f 68 31 3e 5c 6e 20 20 20 20 20 20 Data Ascii: ParkingServicesDisabled(){this.message("\n <h1>An Error Occurred</h1>\n <p>Services for this domain name have been disabled.</p>\n ")}errorParkingNoSponsors(e){this.message(`\n <div class="pk-message-title" data-nosnippet>\n
Dec 19, 2024 15:30:58.645385981 CET	1236	IN	Data Raw: 65 63 74 53 74 79 6c 65 73 28 65 2e 73 74 79 6c 65 73 68 65 65 74 29 2c 74 68 69 73 2e 69 6d 70 72 69 6e 74 28 65 2e 69 6d 70 72 69 6e 74 29 2c 74 68 69 73 2e 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 2e 73 61 6c 65 73 42 61 6e 6e 65 72 29 2c 74 68 Data Ascii: ectStyles(e.stylesheet),this.imprint(e.imprint),this.salesBanner(e.salesBanner),this.injectJS(e.javascript),null===(t=e.scripts)\|\|void 0===t\|\|t.forEach((e=>{this.injectScript(e)}))}}const Render=new Renderer(APP_TARGET);var Type;!function(e){e
Dec 19, 2024 15:30:58.645483971 CET	1236	IN	Data Raw: 61 62 6c 65 64 5f 6d 72 22 3a 72 65 74 75 72 6e 22 69 6e 76 61 6c 69 64 5f 72 65 66 65 72 72 61 6c 22 3b 63 61 73 65 22 64 69 73 61 62 6c 65 64 5f 72 63 22 3a 72 65 74 75 72 6e 22 72 65 76 65 6e 75 65 5f 63 61 70 5f 72 65 61 63 68 65 64 22 3b 64 Data Ascii: abled_mr":return"invalid_referral";case"disabled_rc":return"revenue_cap_reached";default:return"no_sponsors_message"}}toContext(){return{cannotPark:this.reason}}}class Failed extends State$2{constructor(){super(...arguments),this.type=Type.Fai
Dec 19, 2024 15:30:59.020378113 CET	653	OUT	POST /_fd?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Content-Length: 0 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://ww25.crewmak.ru Referer: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Dec 19, 2024 15:30:59.347242117 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:30:58 GMT content-type: application/json; charset=utf-8 content-length: 5245 x-request-id: 312f59fb-b981-49ae-867a-34c3c5b1178c set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:45:59 GMT Data Raw: 55 78 46 64 56 4d 77 4e 46 4e 77 4e 30 77 7a 4f 44 45 79 62 56 65 79 4a 69 62 47 39 6a 61 33 4d 69 4f 6c 74 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6e 4a 7a 49 69 77 69 62 6e 56 74 59 6d 56 79 49 6a 6f 7a 4c 43 4a 30 65 58 42 6c 49 6a 6f 69 63 6d 56 73 59 58 52 6c 5a 48 4e 6c 59 58 4a 6a 61 43 49 73 49 6e 56 70 54 33 42 30 61 57 31 70 65 6d 55 69 4f 6d 5a 68 62 48 4e 6c 66 53 78 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6d 46 6b 4c 54 45 69 4c 43 4a 75 64 57 31 69 5a 58 49 69 4f 6a 4d 73 49 6e 52 35 63 47 55 69 4f 69 4a 68 5a 48 4d 69 4c 43 4a 31 61 55 39 77 64 47 6c 74 61 58 70 6c 49 6a 70 6d 59 57 78 7a 5a 58 31 64 4c 43 4a 6a 59 57 35 75 62 33 52 51 59 58 4a 72 49 6a 6f 69 49 69 77 69 59 32 46 75 57 6d 56 79 62 30 4e 73 61 57 4e 72 49 6a 70 30 63 6e 56 6c 4c 43 4a 6b 5a 58 4e 72 64 47 39 77 49 6a 70 30 63 6e 56 6c 4c 43 4a 6b 62 32 31 68 61 57 35 4f 59 57 31 6c 49 6a 6f 69 59 33 4a 6c 64 32 31 68 61 79 35 79 64 53 49 73 49 6d 5a 6b 58 33 4e 6c 63 6e 5a 6c 63 69 49 36 49 [TRUNCATED] Data Ascii: UxFdVMwNFNwN0wzODEybVeyJibG9ja3MiOlt7ImNvbnRhaW5lciI6InJzIiwibnVtYmVyIjozLCJ0eXBlIjoicmVsYXRlZHNlYXJjaCIsInVpT3B0aW1pemUiOmZhbHNlfSx7ImNvbnRhaW5lciI6ImFkLTEiLCJudW1iZXIiOjMsInR5cGUiOiJhZHMiLCJ1aU9wdGltaXplIjpmYWxzZX1dLCJjYW5ub3RQYXJrIjoiIiwiY2FuWmVyb0NsaWNrIjp0cnVlLCJkZXNrdG9wIjp0cnVlLCJkb21haW5OYW1lIjoiY3Jld21hay5ydSIsImZkX3NlcnZlciI6ImlwLTEwLTIwMS0xNi01MS5lYzIuaW50ZXJuYWwiLCJmZF9zZXJ2ZXJfZGF0ZXRpbWUiOjE3MzQ2MTg2NTksImZsZXhfcnVsZSI6eyJhY3Rpb24iOiIiLCJjdXN0b21fcmVhc29uIjoiIiwiZmxleF9pZCI6MCwibWlzbWF0Y2giOmZhbHNlfSwiZ29vZ2xlQW5hbHl0aWNzIjoiIiwiaW1wcmludFRleHQiOiIiLCJpbmxpbmVKcyI6IiIsIm1vYmlsZSI6ZmFsc2UsInBhZ2VPcHRpb25zIjp7ImFkdGVzdCI6Im9mZiIsImJvZGlzVGVtcGxhdGVBbGxvd3NaYyI6dHJ1ZSwiY2hhbm5lbCI6InBpZC1ib2Rpcy1nY29udHJvbDk3LHBpZC1ib2Rpcy1nY29udHJvbDExNCxwaWQtYm9kaXMtZ2NvbnRyb2w0NTgscGlkLWJvZGlzLWdjb250cm9sMTUyLHBpZC1ib2Rpcy1nY29udHJvbDE2MCIsImRvbWFpblJlZ2lzdHJhbnQiOiJhcy1kcmlkLTIxNjg1MDg5MDY3ODY1MzgiLCJrdyI6IiIsIm1heFRlcm1MZW5ndGgiOjUwLCJwZXJzb
Dec 19, 2024 15:31:08.748171091 CET	656	OUT	POST /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Content-Length: 2145 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://ww25.crewmak.ru Referer: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:09.074091911 CET	281	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:08 GMT content-type: application/json; charset=utf-8 content-length: 2 x-request-id: fd120f62-aea9-4fd0-ac6a-6a9a510e95c2 set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:08 GMT Data Raw: 6f 6b Data Ascii: ok

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:30:59.307197094 CET	342	OUT	GET /bXOmyuaKu.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Dec 19, 2024 15:31:00.406455994 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:30:59 GMT content-type: application/javascript; charset=utf-8 content-length: 35081 x-request-id: d86742a5-bd2b-4233-b64a-068e83bfcf5c set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:00 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}hasAdblocker(){if(void 0===w
Dec 19, 2024 15:31:00.406517982 CET	1236	IN	Data Raw: 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 29 72 65 74 75 72 6e 21 30 3b 63 6f 6e 73 74 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 73 74 79 6c 65 22 29 3b 72 65 74 75 72 6e 20 41 72 72 61 79 2e 66 72 6f 6d Data Ascii: indow.google)return!0;const e=document.querySelectorAll("style");return Array.from(e).some((e=>!!e.innerHTML.includes("adblockkey")))}handleAdblocked(){this.removeAdblockKey(),this.state=Blocking.BLOCKED}removeAdblockKey(){var e;null===(e=docu
Dec 19, 2024 15:31:00.406533003 CET	448	IN	Data Raw: 2d 6f 72 69 67 69 6e 22 2c 73 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 28 7b 41 63 63 65 70 74 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 6f 6e 22 2c 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 Data Ascii: -origin",s=Object.assign({Accept:"application/json","Content-Type":"application/json"},t?{"X-HOST":window.location.host}:{});return fetch(n,{method:"POST",headers:s,credentials:i}).then((e=>e.text())).then(decode$1)};var ZeroClickReasons;!func
Dec 19, 2024 15:31:00.406666994 CET	1236	IN	Data Raw: 2c 65 2e 41 44 5f 42 4c 4f 43 4b 45 44 3d 22 61 64 5f 62 6c 6f 63 6b 65 64 22 2c 65 2e 50 52 45 46 45 52 52 45 44 3d 22 70 72 65 66 65 72 72 65 64 22 7d 28 5a 65 72 6f 43 6c 69 63 6b 52 65 61 73 6f 6e 73 7c 7c 28 5a 65 72 6f 43 6c 69 63 6b 52 65 Data Ascii: ,e.AD_BLOCKED="ad_blocked",e.PREFERRED="preferred"}(ZeroClickReasons\|\|(ZeroClickReasons={}));const getZeroClick=e=>__awaiter(void 0,void 0,void 0,(function*(){const t=Object.assign(Object.assign({},e),{type:"zc_fetch"});return fetch("/_zc",{me
Dec 19, 2024 15:31:00.406682014 CET	1236	IN	Data Raw: 6f 72 20 52 65 6c 61 74 65 64 20 53 65 61 72 63 68 20 2a 2f 5c 6e 5c 6e 23 70 6b 2d 73 74 61 74 75 73 2d 6d 65 73 73 61 67 65 20 7b 5c 6e 20 20 68 65 69 67 68 74 3a 20 37 35 76 68 3b 5c 6e 20 20 77 69 64 74 68 3a 20 31 30 30 25 3b 5c 6e 20 20 64 Data Ascii: or Related Search /\n\n#pk-status-message {\n height: 75vh;\n width: 100%;\n display: flex;\n flex-direction: column;\n align-items: center;\n justify-content: center;\n}\n\n/ Sales Box - Default State */\n\n#sales-box {\n display: bl
Dec 19, 2024 15:31:00.406703949 CET	1236	IN	Data Raw: 70 6b 2d 6c 6f 61 64 65 72 20 64 69 76 3a 6e 74 68 2d 63 68 69 6c 64 28 31 29 20 7b 5c 6e 20 20 6c 65 66 74 3a 20 38 70 78 3b 5c 6e 20 20 61 6e 69 6d 61 74 69 6f 6e 3a 20 70 6b 2d 61 6e 69 6d 2d 31 20 30 2e 36 73 20 69 6e 66 69 6e 69 74 65 3b 5c Data Ascii: pk-loader div:nth-child(1) {\n left: 8px;\n animation: pk-anim-1 0.6s infinite;\n}\n\n.pk-loader div:nth-child(2) {\n left: 8px;\n animation: pk-anim-2 0.6s infinite;\n}\n\n.pk-loader div:nth-child(3) {\n left: 32px;\n animation: pk-anim
Dec 19, 2024 15:31:00.406721115 CET	1236	IN	Data Raw: 20 52 65 6e 64 65 72 65 72 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 65 29 7b 74 68 69 73 2e 5f 64 6f 6d 49 73 52 65 61 64 79 3d 21 31 2c 74 68 69 73 2e 72 65 76 65 61 6c 50 61 67 65 3d 28 29 3d 3e 7b 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 26 26 74 68 Data Ascii: Renderer{constructor(e){this._domIsReady=!1,this.revealPage=()=>{this.domNode&&this.domNode.classList.add(PAGE_READY_CLASS)},this.injectMetaDescription=e=>{if(!e\|\|0===e.length)return;window.document.title=e;const t=document.createElement("met
Dec 19, 2024 15:31:00.406771898 CET	1236	IN	Data Raw: 22 20 63 6c 61 73 73 3d 22 6e 6f 2d 68 72 65 66 20 24 7b 72 7d 20 24 7b 64 7d 22 3e 5c 6e 20 20 20 20 20 20 20 20 20 20 24 7b 69 7d 5c 6e 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 5c 6e 20 20 20 20 20 20 60 2c 22 42 4f 54 54 4f 4d 22 3d 3d 3d 6e Data Ascii: " class="no-href ${r} ${d}">\n ${i}\n </div>\n `,"BOTTOM"===n?(o.style.marginTop="30px",document.body.appendChild(o)):document.body.prepend(o)}loading(e){let t="a few";e>0&&(t=`<span id="redirect">${e}</span>`),this.messag
Dec 19, 2024 15:31:00.406791925 CET	1236	IN	Data Raw: 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 28 22 23 69 6d 70 72 69 6e 74 2d 74 65 78 74 22 29 3b 74 26 26 28 74 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 2e 72 65 70 6c 61 63 65 28 2f 28 3f 3a 5c 72 5c 6e 7c 5c 72 7c 5c 6e 29 2f 67 2c 22 Data Ascii: ument.querySelector("#imprint-text");t&&(t.innerHTML=e.replace(/(?:\r\n\|\r\|\n)/g,"<br>"))}injectStyles(e){if(!e)return;const t=document.createElement("style");t.innerHTML=e.toString(),document.head.appendChild(t)}injectScript(e){if(!e)return;c
Dec 19, 2024 15:31:00.406806946 CET	1236	IN	Data Raw: 6c 61 73 73 20 44 69 73 61 62 6c 65 64 20 65 78 74 65 6e 64 73 20 53 74 61 74 65 24 32 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 29 7b 73 75 70 65 72 28 2e 2e 2e 61 72 67 75 6d 65 6e 74 73 29 2c 74 68 69 73 2e 74 79 70 65 3d 54 79 70 65 2e 44 69 73 Data Ascii: lass Disabled extends State$2{constructor(){super(...arguments),this.type=Type.Disabled}static build(e,t){let n;switch(t===Blocking.BLOCKED&&(n="adblocker"),e.cannotPark){case"disabled_mr":case"disabled_rc":n=e.cannotPark}if(n){const t=new Dis
Dec 19, 2024 15:31:00.526288033 CET	1236	IN	Data Raw: 28 65 29 7b 63 6f 6e 73 74 20 65 3d 6e 65 77 20 46 61 69 6c 65 64 3b 72 65 74 75 72 6e 20 65 2e 72 65 61 73 6f 6e 3d 22 6e 6f 5f 73 70 6f 6e 73 6f 72 73 22 2c 65 7d 7d 73 74 61 74 69 63 20 66 72 6f 6d 45 72 72 6f 72 28 65 29 7b 63 6f 6e 73 74 20 Data Ascii: (e){const e=new Failed;return e.reason="no_sponsors",e}}static fromError(e){const t=new Failed;return t.reason="js_error",t.error=e,t}get track(){return!!this.trackingType}get message(){switch(this.reason){case"disabled_fr":case"disabled_rc":c
Dec 19, 2024 15:31:09.080785990 CET	425	OUT	GET /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:09.403393984 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:08 GMT content-type: text/html; charset=utf-8 content-length: 1050 x-request-id: df580df4-65b4-43ee-b3df-759fc70f1149 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg== set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:09 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 65 49 58 6f 4e 42 4d 4e 38 47 32 42 2b 2b 6f 66 39 65 44 74 68 76 34 61 4c 75 5a 77 64 42 79 66 65 4c 4b 43 6b 38 74 64 49 71 52 54 6e 74 6e 61 4b 41 36 55 6e 6d 64 63 6a 7a 52 39 45 59 53 64 48 73 78 59 5a 43 69 7a 52 56 52 2f 53 72 59 34 42 50 47 48 57 67 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:30:59.407659054 CET	425	OUT	GET /_fd?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf
Dec 19, 2024 15:31:00.505830050 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:30:59 GMT content-type: text/html; charset=utf-8 content-length: 1310 x-request-id: 9a714c39-b7c2-4302-b3f9-2311e2a11200 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_wqLVdSnAYxLntWLn0ZCXCOYAWXS/Y57M9v5UJ9syvyq6q3bCHGRizdTMb0l4h9BUTbyloF2Zjgbg66yALbH8Kg== set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:00 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 77 71 4c 56 64 53 6e 41 59 78 4c 6e 74 57 4c 6e 30 5a 43 58 43 4f 59 41 57 58 53 2f 59 35 37 4d 39 76 35 55 4a 39 73 79 76 79 71 36 71 33 62 43 48 47 52 69 7a 64 54 4d 62 30 6c 34 68 39 42 55 54 62 79 6c 6f 46 32 5a 6a 67 62 67 36 36 79 41 4c 62 48 38 4b 67 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_wqLVdSnAYxLntWLn0ZCXCOYAWXS/Y57M9v5UJ9syvyq6q3bCHGRizdTMb0l4h9BUTbyloF2Zjgbg66yALbH8Kg==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:31:00.505882978 CET	736	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYmNhODNjMmEtN2E2MS00MWI2LWFmMzgtNjhlMmM5NWRkNGNmIiwicGFnZV90aW1lIjoxNzM0NjE4NjYwLCJwYWdlX3VybCI6Imh0dHA6L

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:31:08.037339926 CET	233	IN	HTTP/1.1 408 Request Time-out Content-length: 110 Cache-Control: no-cache Connection: close Content-Type: text/html Data Raw: 3c 68 74 6d 6c 3e 3c 62 6f 64 79 3e 3c 68 31 3e 34 30 38 20 52 65 71 75 65 73 74 20 54 69 6d 65 2d 6f 75 74 3c 2f 68 31 3e 0a 59 6f 75 72 20 62 72 6f 77 73 65 72 20 64 69 64 6e 27 74 20 73 65 6e 64 20 61 20 63 6f 6d 70 6c 65 74 65 20 72 65 71 75 65 73 74 20 69 6e 20 74 69 6d 65 2e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><body><h1>408 Request Time-out</h1>Your browser didn't send a complete request in time.</body></html>
Dec 19, 2024 15:31:23.920977116 CET	978	OUT	GET /?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:31:10.657021046 CET	233	IN	HTTP/1.1 408 Request Time-out Content-length: 110 Cache-Control: no-cache Connection: close Content-Type: text/html Data Raw: 3c 68 74 6d 6c 3e 3c 62 6f 64 79 3e 3c 68 31 3e 34 30 38 20 52 65 71 75 65 73 74 20 54 69 6d 65 2d 6f 75 74 3c 2f 68 31 3e 0a 59 6f 75 72 20 62 72 6f 77 73 65 72 20 64 69 64 6e 27 74 20 73 65 6e 64 20 61 20 63 6f 6d 70 6c 65 74 65 20 72 65 71 75 65 73 74 20 69 6e 20 74 69 6d 65 2e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><body><h1>408 Request Time-out</h1>Your browser didn't send a complete request in time.</body></html>
Dec 19, 2024 15:31:25.946229935 CET	434	OUT	GET /bfOiADgAU.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:31:24.039499044 CET	978	OUT	GET /?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:25.135797977 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:24 GMT content-type: text/html; charset=utf-8 content-length: 2194 x-request-id: 4485a9ed-b6a7-4efb-bef7-074c116f3c92 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_a1mRNUG307Z2rSmwvpcDXBVGn4XMfvkZvM7mnFkxnQ+ACL00b65WrvfReR3dc73HlPlKw0OrY8XCdXa9vrRgSQ== set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:24 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 61 31 6d 52 4e 55 47 33 30 37 5a 32 72 53 6d 77 76 70 63 44 58 42 56 47 6e 34 58 4d 66 76 6b 5a 76 4d 37 6d 6e 46 6b 78 6e 51 2b 41 43 4c 30 30 62 36 35 57 72 76 66 52 65 52 33 64 63 37 33 48 6c 50 6c 4b 77 30 4f 72 59 38 58 43 64 58 61 39 76 72 52 67 53 51 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_a1mRNUG307Z2rSmwvpcDXBVGn4XMfvkZvM7mnFkxnQ+ACL00b65WrvfReR3dc73HlPlKw0OrY8XCdXa9vrRgSQ==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:31:25.135812998 CET	1236	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYmNhODNjMmEtN2E2MS00MWI2LWFmMzgtNjhlMmM5NWRkNGNmIiwicGFnZV90aW1lIjoxNzM0NjE4Njg0LCJwYWdlX3VybCI6Imh0dHA6L
Dec 19, 2024 15:31:25.135823011 CET	384	IN	Data Raw: 4a 6d 59 57 78 7a 5a 53 49 73 49 6e 46 31 5a 58 4a 35 49 6a 6f 69 51 6e 56 35 4b 32 45 72 56 48 6c 79 5a 53 49 73 49 6e 4e 31 59 6d 6c 6b 4d 53 49 36 49 6a 49 77 4d 6a 51 78 4d 6a 49 77 4c 54 41 78 4d 7a 41 74 4e 54 5a 68 4e 69 30 34 4e 44 6c 69 Data Ascii: JmYWxzZSIsInF1ZXJ5IjoiQnV5K2ErVHlyZSIsInN1YmlkMSI6IjIwMjQxMjIwLTAxMzAtNTZhNi04NDliLTA2MjM2ZmJlNWE5ZSIsInV0bV90ZXJtIjoiZGlzY292ZXJ5K29iamVjdGlvbnMrY2hlYXQrc2hlZXQrdGV4YXMifSwicGFnZV9oZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9zeW5kaWNhdGVkc2VhcmNoL
Dec 19, 2024 15:31:25.372153997 CET	821	OUT	GET /bfOiADgAU.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:25.692532063 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:25 GMT content-type: application/javascript; charset=utf-8 content-length: 35081 x-request-id: 7d6f8e76-ec2c-4067-821f-8f19a772976d set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:25 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}hasAdblocker(){if(void 0===w
Dec 19, 2024 15:31:25.692549944 CET	1236	IN	Data Raw: 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 29 72 65 74 75 72 6e 21 30 3b 63 6f 6e 73 74 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 73 74 79 6c 65 22 29 3b 72 65 74 75 72 6e 20 41 72 72 61 79 2e 66 72 6f 6d Data Ascii: indow.google)return!0;const e=document.querySelectorAll("style");return Array.from(e).some((e=>!!e.innerHTML.includes("adblockkey")))}handleAdblocked(){this.removeAdblockKey(),this.state=Blocking.BLOCKED}removeAdblockKey(){var e;null===(e=docu
Dec 19, 2024 15:31:25.692573071 CET	1236	IN	Data Raw: 2d 6f 72 69 67 69 6e 22 2c 73 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 28 7b 41 63 63 65 70 74 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 6f 6e 22 2c 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 Data Ascii: -origin",s=Object.assign({Accept:"application/json","Content-Type":"application/json"},t?{"X-HOST":window.location.host}:{});return fetch(n,{method:"POST",headers:s,credentials:i}).then((e=>e.text())).then(decode$1)};var ZeroClickReasons;!func
Dec 19, 2024 15:31:25.692584038 CET	1236	IN	Data Raw: 62 6f 64 79 20 7b 5c 6e 20 20 77 69 64 74 68 3a 20 31 30 30 25 3b 5c 6e 20 20 6d 61 72 67 69 6e 3a 20 30 3b 5c 6e 7d 5c 6e 5c 6e 68 74 6d 6c 20 7b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 32 42 32 42 32 42 3b 5c 6e 20 Data Ascii: body {\n width: 100%;\n margin: 0;\n}\n\nhtml {\n background-color: #2B2B2B;\n height: 100%;\n}\n\nbody {\n min-height: 90%;\n font-family: Arial, sans-serif;\n letter-spacing: 1.2px;\n color: #ccc;\n text-align: center;\n}\n\n/* App
Dec 19, 2024 15:31:25.692596912 CET	1236	IN	Data Raw: 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 5c 6e 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 38 70 78 3b 5c 6e 20 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 5c 6e 20 20 74 65 78 74 2d 73 68 61 64 6f 77 3a 20 31 70 78 20 31 70 78 20 30 20 72 Data Ascii: lay: inline-block;\n font-size: 18px;\n color: #fff;\n text-shadow: 1px 1px 0 rgba(0, 0, 0, 0.5);\n background: none;\n}\n\n/* Ellipsis Loader */\n\n.pk-loader {\n display: inline-block;\n position: relative;\n width: 80px;\n height: 8
Dec 19, 2024 15:31:25.692609072 CET	1236	IN	Data Raw: 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 41 6e 69 6d 61 74 69 6f 6e 20 2a 2f 5c 6e 5c 6e 40 6b 65 79 66 72 61 6d 65 73 20 70 6b 2d 61 6e 69 6d 2d 31 20 7b 5c 6e 20 20 30 25 20 7b 5c 6e 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 30 Data Ascii: \n}\n\n/* Animation */\n\n@keyframes pk-anim-1 {\n 0% {\n transform: scale(0);\n }\n 100% {\n transform: scale(1);\n }\n}\n\n@keyframes pk-anim-2 {\n 0% {\n transform: translate(0, 0);\n }\n 100% {\n transform: trans
Dec 19, 2024 15:31:25.692621946 CET	1236	IN	Data Raw: 3b 74 3f 74 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 3a 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 26 26 28 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 29 7d 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 29 7b 69 66 28 21 65 29 72 65 74 Data Ascii: ;t?t.innerHTML=e:this.domNode&&(this.domNode.innerHTML=e)}salesBanner(e){if(!e)return;const{href:t,position:n,message:i,theme:s,status:a}=e,o=document.createElement("div"),r=n\|\|"",d="HIGHLIGHT"===s?"is-highlighted":"";o.innerHTML=t?`\n
Dec 19, 2024 15:31:25.693443060 CET	1156	IN	Data Raw: 50 61 72 6b 69 6e 67 53 65 72 76 69 63 65 73 44 69 73 61 62 6c 65 64 28 29 7b 74 68 69 73 2e 6d 65 73 73 61 67 65 28 22 5c 6e 20 20 20 20 20 20 3c 68 31 3e 41 6e 20 45 72 72 6f 72 20 4f 63 63 75 72 72 65 64 3c 2f 68 31 3e 5c 6e 20 20 20 20 20 20 Data Ascii: ParkingServicesDisabled(){this.message("\n <h1>An Error Occurred</h1>\n <p>Services for this domain name have been disabled.</p>\n ")}errorParkingNoSponsors(e){this.message(`\n <div class="pk-message-title" data-nosnippet>\n
Dec 19, 2024 15:31:25.700702906 CET	1236	IN	Data Raw: 65 63 74 53 74 79 6c 65 73 28 65 2e 73 74 79 6c 65 73 68 65 65 74 29 2c 74 68 69 73 2e 69 6d 70 72 69 6e 74 28 65 2e 69 6d 70 72 69 6e 74 29 2c 74 68 69 73 2e 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 2e 73 61 6c 65 73 42 61 6e 6e 65 72 29 2c 74 68 Data Ascii: ectStyles(e.stylesheet),this.imprint(e.imprint),this.salesBanner(e.salesBanner),this.injectJS(e.javascript),null===(t=e.scripts)\|\|void 0===t\|\|t.forEach((e=>{this.injectScript(e)}))}}const Render=new Renderer(APP_TARGET);var Type;!function(e){e
Dec 19, 2024 15:31:25.941370010 CET	1262	OUT	POST /_fd?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Content-Length: 0 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://ww25.crewmak.ru Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:26.315964937 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:25 GMT content-type: application/json; charset=utf-8 content-length: 5245 x-request-id: d403bcb8-17c7-4f28-b13d-83e04626e91f set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:26 GMT Data Raw: 55 78 46 64 56 4d 77 4e 46 4e 77 4e 30 77 7a 4f 44 45 79 62 56 65 79 4a 69 62 47 39 6a 61 33 4d 69 4f 6c 74 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6e 4a 7a 49 69 77 69 62 6e 56 74 59 6d 56 79 49 6a 6f 7a 4c 43 4a 30 65 58 42 6c 49 6a 6f 69 63 6d 56 73 59 58 52 6c 5a 48 4e 6c 59 58 4a 6a 61 43 49 73 49 6e 56 70 54 33 42 30 61 57 31 70 65 6d 55 69 4f 6d 5a 68 62 48 4e 6c 66 53 78 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6d 46 6b 4c 54 45 69 4c 43 4a 75 64 57 31 69 5a 58 49 69 4f 6a 4d 73 49 6e 52 35 63 47 55 69 4f 69 4a 68 5a 48 4d 69 4c 43 4a 31 61 55 39 77 64 47 6c 74 61 58 70 6c 49 6a 70 6d 59 57 78 7a 5a 58 31 64 4c 43 4a 6a 59 57 35 75 62 33 52 51 59 58 4a 72 49 6a 6f 69 49 69 77 69 59 32 46 75 57 6d 56 79 62 30 4e 73 61 57 4e 72 49 6a 70 30 63 6e 56 6c 4c 43 4a 6b 5a 58 4e 72 64 47 39 77 49 6a 70 30 63 6e 56 6c 4c 43 4a 6b 62 32 31 68 61 57 35 4f 59 57 31 6c 49 6a 6f 69 59 33 4a 6c 64 32 31 68 61 79 35 79 64 53 49 73 49 6d 5a 6b 58 33 4e 6c 63 6e 5a 6c 63 69 49 36 49 [TRUNCATED] Data Ascii: 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
Dec 19, 2024 15:31:32.967694998 CET	912	OUT	POST /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Content-Length: 3009 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://ww25.crewmak.ru Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:33.288320065 CET	281	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:32 GMT content-type: application/json; charset=utf-8 content-length: 2 x-request-id: 1012594d-b791-4845-b035-eddfaf72c8ab set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:33 GMT Data Raw: 6f 6b Data Ascii: ok

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:31:26.067087889 CET	434	OUT	GET /bfOiADgAU.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:27.166877985 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:26 GMT content-type: application/javascript; charset=utf-8 content-length: 35081 x-request-id: 408974e5-5e9a-4fe9-95c4-cb8b3177353b set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:27 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}hasAdblocker(){if(void 0===w
Dec 19, 2024 15:31:27.166959047 CET	1236	IN	Data Raw: 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 29 72 65 74 75 72 6e 21 30 3b 63 6f 6e 73 74 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 73 74 79 6c 65 22 29 3b 72 65 74 75 72 6e 20 41 72 72 61 79 2e 66 72 6f 6d Data Ascii: indow.google)return!0;const e=document.querySelectorAll("style");return Array.from(e).some((e=>!!e.innerHTML.includes("adblockkey")))}handleAdblocked(){this.removeAdblockKey(),this.state=Blocking.BLOCKED}removeAdblockKey(){var e;null===(e=docu
Dec 19, 2024 15:31:27.166996002 CET	1236	IN	Data Raw: 2d 6f 72 69 67 69 6e 22 2c 73 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 28 7b 41 63 63 65 70 74 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 6f 6e 22 2c 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 Data Ascii: -origin",s=Object.assign({Accept:"application/json","Content-Type":"application/json"},t?{"X-HOST":window.location.host}:{});return fetch(n,{method:"POST",headers:s,credentials:i}).then((e=>e.text())).then(decode$1)};var ZeroClickReasons;!func
Dec 19, 2024 15:31:27.167030096 CET	1236	IN	Data Raw: 62 6f 64 79 20 7b 5c 6e 20 20 77 69 64 74 68 3a 20 31 30 30 25 3b 5c 6e 20 20 6d 61 72 67 69 6e 3a 20 30 3b 5c 6e 7d 5c 6e 5c 6e 68 74 6d 6c 20 7b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 32 42 32 42 32 42 3b 5c 6e 20 Data Ascii: body {\n width: 100%;\n margin: 0;\n}\n\nhtml {\n background-color: #2B2B2B;\n height: 100%;\n}\n\nbody {\n min-height: 90%;\n font-family: Arial, sans-serif;\n letter-spacing: 1.2px;\n color: #ccc;\n text-align: center;\n}\n\n/* App
Dec 19, 2024 15:31:27.167082071 CET	1236	IN	Data Raw: 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 5c 6e 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 38 70 78 3b 5c 6e 20 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 5c 6e 20 20 74 65 78 74 2d 73 68 61 64 6f 77 3a 20 31 70 78 20 31 70 78 20 30 20 72 Data Ascii: lay: inline-block;\n font-size: 18px;\n color: #fff;\n text-shadow: 1px 1px 0 rgba(0, 0, 0, 0.5);\n background: none;\n}\n\n/* Ellipsis Loader */\n\n.pk-loader {\n display: inline-block;\n position: relative;\n width: 80px;\n height: 8
Dec 19, 2024 15:31:27.167114973 CET	1236	IN	Data Raw: 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 41 6e 69 6d 61 74 69 6f 6e 20 2a 2f 5c 6e 5c 6e 40 6b 65 79 66 72 61 6d 65 73 20 70 6b 2d 61 6e 69 6d 2d 31 20 7b 5c 6e 20 20 30 25 20 7b 5c 6e 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 30 Data Ascii: \n}\n\n/* Animation */\n\n@keyframes pk-anim-1 {\n 0% {\n transform: scale(0);\n }\n 100% {\n transform: scale(1);\n }\n}\n\n@keyframes pk-anim-2 {\n 0% {\n transform: translate(0, 0);\n }\n 100% {\n transform: trans
Dec 19, 2024 15:31:27.167150974 CET	1236	IN	Data Raw: 3b 74 3f 74 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 3a 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 26 26 28 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 29 7d 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 29 7b 69 66 28 21 65 29 72 65 74 Data Ascii: ;t?t.innerHTML=e:this.domNode&&(this.domNode.innerHTML=e)}salesBanner(e){if(!e)return;const{href:t,position:n,message:i,theme:s,status:a}=e,o=document.createElement("div"),r=n\|\|"",d="HIGHLIGHT"===s?"is-highlighted":"";o.innerHTML=t?`\n
Dec 19, 2024 15:31:27.167185068 CET	1236	IN	Data Raw: 50 61 72 6b 69 6e 67 53 65 72 76 69 63 65 73 44 69 73 61 62 6c 65 64 28 29 7b 74 68 69 73 2e 6d 65 73 73 61 67 65 28 22 5c 6e 20 20 20 20 20 20 3c 68 31 3e 41 6e 20 45 72 72 6f 72 20 4f 63 63 75 72 72 65 64 3c 2f 68 31 3e 5c 6e 20 20 20 20 20 20 Data Ascii: ParkingServicesDisabled(){this.message("\n <h1>An Error Occurred</h1>\n <p>Services for this domain name have been disabled.</p>\n ")}errorParkingNoSponsors(e){this.message(`\n <div class="pk-message-title" data-nosnippet>\n
Dec 19, 2024 15:31:27.167220116 CET	1224	IN	Data Raw: 74 68 69 73 2e 69 6e 6a 65 63 74 4a 53 28 65 2e 6a 61 76 61 73 63 72 69 70 74 29 2c 6e 75 6c 6c 3d 3d 3d 28 74 3d 65 2e 73 63 72 69 70 74 73 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 74 7c 7c 74 2e 66 6f 72 45 61 63 68 28 28 65 3d 3e 7b 74 68 69 73 2e Data Ascii: this.injectJS(e.javascript),null===(t=e.scripts)\|\|void 0===t\|\|t.forEach((e=>{this.injectScript(e)}))}}const Render=new Renderer(APP_TARGET);var Type;!function(e){e[e.Failed=0]="Failed",e[e.Disabled=1]="Disabled",e[e.Redirect=2]="Redirect",e[e.
Dec 19, 2024 15:31:27.167256117 CET	1236	IN	Data Raw: 63 61 70 5f 72 65 61 63 68 65 64 22 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 22 6e 6f 5f 73 70 6f 6e 73 6f 72 73 5f 6d 65 73 73 61 67 65 22 7d 7d 74 6f 43 6f 6e 74 65 78 74 28 29 7b 72 65 74 75 72 6e 7b 63 61 6e 6e 6f 74 50 61 72 6b 3a 74 68 Data Ascii: cap_reached";default:return"no_sponsors_message"}}toContext(){return{cannotPark:this.reason}}}class Failed extends State$2{constructor(){super(...arguments),this.type=Type.Failed}static cannotPark({cannotPark:e}){switch(e){case"disabled_b":cas
Dec 19, 2024 15:31:27.286916018 CET	1236	IN	Data Raw: 68 69 73 20 64 6f 6d 61 69 6e 20 6e 61 6d 65 20 68 61 76 65 20 62 65 65 6e 20 64 69 73 61 62 6c 65 64 2e 3c 2f 70 3e 5c 6e 20 20 20 20 20 20 20 20 22 7d 7d 67 65 74 20 74 72 61 63 6b 69 6e 67 54 79 70 65 28 29 7b 73 77 69 74 63 68 28 74 68 69 73 Data Ascii: his domain name have been disabled.</p>\n "}}get trackingType(){switch(this.reason){case"disabled_rc":return"revenue_cap_reached";case"disabled_mr":return"invalid_referral";case"adblock":return"ad_blocked_message";case"no_sponsors":retu

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:31:26.450632095 CET	778	OUT	GET /_fd?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e&query=Buy+a+Tyre&afdToken=ChMIhLzkioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false&nb=0&nm=9&nx=333&ny=65&is=700x480&clkt=3 HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:27.547179937 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:27 GMT content-type: text/html; charset=utf-8 content-length: 2138 x-request-id: 6df60ac9-7af7-484d-9a39-414eefa503cf cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_ohUi+Y2LRHlcrAar9W4Ot+SSOkVO/e82jAzXtAlYzebqlcPWBFE7OenYXT7KHbbTGxij0oipgiIcbPRA0yznYQ== set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:27 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 6f 68 55 69 2b 59 32 4c 52 48 6c 63 72 41 61 72 39 57 34 4f 74 2b 53 53 4f 6b 56 4f 2f 65 38 32 6a 41 7a 58 74 41 6c 59 7a 65 62 71 6c 63 50 57 42 46 45 37 4f 65 6e 59 58 54 37 4b 48 62 62 54 47 78 69 6a 30 6f 69 70 67 69 49 63 62 50 52 41 30 79 7a 6e 59 51 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_ohUi+Y2LRHlcrAar9W4Ot+SSOkVO/e82jAzXtAlYzebqlcPWBFE7OenYXT7KHbbTGxij0oipgiIcbPRA0yznYQ==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:31:27.547233105 CET	1236	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYmNhODNjMmEtN2E2MS00MWI2LWFmMzgtNjhlMmM5NWRkNGNmIiwicGFnZV90aW1lIjoxNzM0NjE4Njg3LCJwYWdlX3VybCI6Imh0dHA6L
Dec 19, 2024 15:31:27.547247887 CET	328	IN	Data Raw: 45 69 4f 69 4a 6d 59 57 78 7a 5a 53 49 73 49 6e 46 31 5a 58 4a 35 49 6a 6f 69 51 6e 56 35 4b 32 45 72 56 48 6c 79 5a 53 49 73 49 6e 4e 31 59 6d 6c 6b 4d 53 49 36 49 6a 49 77 4d 6a 51 78 4d 6a 49 77 4c 54 41 78 4d 7a 41 74 4e 54 5a 68 4e 69 30 34 Data Ascii: EiOiJmYWxzZSIsInF1ZXJ5IjoiQnV5K2ErVHlyZSIsInN1YmlkMSI6IjIwMjQxMjIwLTAxMzAtNTZhNi04NDliLTA2MjM2ZmJlNWE5ZSIsInV0bV90ZXJtIjoiZGlzY292ZXJ5K29iamVjdGlvbnMrY2hlYXQrc2hlZXQrdGV4YXMifSwicGFnZV9oZWFkZXJzIjp7fSwiaG9zdCI6Ind3MjUuY3Jld21hay5ydSIsImlwIjoiO
Dec 19, 2024 15:31:33.292506933 CET	425	OUT	GET /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg
Dec 19, 2024 15:31:33.615329027 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:31:32 GMT content-type: text/html; charset=utf-8 content-length: 1050 x-request-id: 9dbbd239-263a-4aa6-a171-52eb3f972b44 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg== set-cookie: parking_session=bca83c2a-7a61-41b6-af38-68e2c95dd4cf; expires=Thu, 19 Dec 2024 14:46:33 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 65 49 58 6f 4e 42 4d 4e 38 47 32 42 2b 2b 6f 66 39 65 44 74 68 76 34 61 4c 75 5a 77 64 42 79 66 65 4c 4b 43 6b 38 74 64 49 71 52 54 6e 74 6e 61 4b 41 36 55 6e 6d 64 63 6a 7a 52 39 45 59 53 64 48 73 78 59 5a 43 69 7a 52 56 52 2f 53 72 59 34 42 50 47 48 57 67 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:31:33.615480900 CET	476	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYmNhODNjMmEtN2E2MS00MWI2LWFmMzgtNjhlMmM5NWRkNGNmIiwicGFnZV90aW1lIjoxNzM0NjE4NjkzLCJwYWdlX3VybCI6Imh0dHA6L

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:32:24.328330994 CET	434	OUT	GET /bIprVmsGS.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:25.425112963 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:24 GMT content-type: application/javascript; charset=utf-8 content-length: 35081 x-request-id: d6df6110-44d3-4b4e-b520-c2ff2dc2c7e0 set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:25 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}hasAdblocker(){if(void 0===w
Dec 19, 2024 15:32:25.425137043 CET	1236	IN	Data Raw: 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 29 72 65 74 75 72 6e 21 30 3b 63 6f 6e 73 74 20 65 3d 64 6f 63 75 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 22 73 74 79 6c 65 22 29 3b 72 65 74 75 72 6e 20 41 72 72 61 79 2e 66 72 6f 6d Data Ascii: indow.google)return!0;const e=document.querySelectorAll("style");return Array.from(e).some((e=>!!e.innerHTML.includes("adblockkey")))}handleAdblocked(){this.removeAdblockKey(),this.state=Blocking.BLOCKED}removeAdblockKey(){var e;null===(e=docu
Dec 19, 2024 15:32:25.425157070 CET	1236	IN	Data Raw: 2d 6f 72 69 67 69 6e 22 2c 73 3d 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 28 7b 41 63 63 65 70 74 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 6f 6e 22 2c 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 3a 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6a 73 Data Ascii: -origin",s=Object.assign({Accept:"application/json","Content-Type":"application/json"},t?{"X-HOST":window.location.host}:{});return fetch(n,{method:"POST",headers:s,credentials:i}).then((e=>e.text())).then(decode$1)};var ZeroClickReasons;!func
Dec 19, 2024 15:32:25.425172091 CET	1236	IN	Data Raw: 62 6f 64 79 20 7b 5c 6e 20 20 77 69 64 74 68 3a 20 31 30 30 25 3b 5c 6e 20 20 6d 61 72 67 69 6e 3a 20 30 3b 5c 6e 7d 5c 6e 5c 6e 68 74 6d 6c 20 7b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 20 23 32 42 32 42 32 42 3b 5c 6e 20 Data Ascii: body {\n width: 100%;\n margin: 0;\n}\n\nhtml {\n background-color: #2B2B2B;\n height: 100%;\n}\n\nbody {\n min-height: 90%;\n font-family: Arial, sans-serif;\n letter-spacing: 1.2px;\n color: #ccc;\n text-align: center;\n}\n\n/* App
Dec 19, 2024 15:32:25.425198078 CET	1236	IN	Data Raw: 6c 61 79 3a 20 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 5c 6e 20 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 31 38 70 78 3b 5c 6e 20 20 63 6f 6c 6f 72 3a 20 23 66 66 66 3b 5c 6e 20 20 74 65 78 74 2d 73 68 61 64 6f 77 3a 20 31 70 78 20 31 70 78 20 30 20 72 Data Ascii: lay: inline-block;\n font-size: 18px;\n color: #fff;\n text-shadow: 1px 1px 0 rgba(0, 0, 0, 0.5);\n background: none;\n}\n\n/* Ellipsis Loader */\n\n.pk-loader {\n display: inline-block;\n position: relative;\n width: 80px;\n height: 8
Dec 19, 2024 15:32:25.425224066 CET	1236	IN	Data Raw: 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 41 6e 69 6d 61 74 69 6f 6e 20 2a 2f 5c 6e 5c 6e 40 6b 65 79 66 72 61 6d 65 73 20 70 6b 2d 61 6e 69 6d 2d 31 20 7b 5c 6e 20 20 30 25 20 7b 5c 6e 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 30 Data Ascii: \n}\n\n/* Animation */\n\n@keyframes pk-anim-1 {\n 0% {\n transform: scale(0);\n }\n 100% {\n transform: scale(1);\n }\n}\n\n@keyframes pk-anim-2 {\n 0% {\n transform: translate(0, 0);\n }\n 100% {\n transform: trans
Dec 19, 2024 15:32:25.425240993 CET	776	IN	Data Raw: 3b 74 3f 74 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 3a 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 26 26 28 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 2e 69 6e 6e 65 72 48 54 4d 4c 3d 65 29 7d 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 29 7b 69 66 28 21 65 29 72 65 74 Data Ascii: ;t?t.innerHTML=e:this.domNode&&(this.domNode.innerHTML=e)}salesBanner(e){if(!e)return;const{href:t,position:n,message:i,theme:s,status:a}=e,o=document.createElement("div"),r=n\|\|"",d="HIGHLIGHT"===s?"is-highlighted":"";o.innerHTML=t?`\n
Dec 19, 2024 15:32:25.425256014 CET	1236	IN	Data Raw: 20 3c 64 69 76 3e 3c 2f 64 69 76 3e 5c 6e 20 20 20 20 20 20 20 20 3c 64 69 76 3e 3c 2f 64 69 76 3e 5c 6e 20 20 20 20 20 20 3c 2f 64 69 76 3e 5c 6e 20 20 20 20 20 20 3c 64 69 76 20 63 6c 61 73 73 3d 22 70 6b 2d 6c 6f 61 64 65 72 2d 74 65 78 74 20 Data Ascii: <div></div>\n <div></div>\n </div>\n <div class="pk-loader-text hidden-xs">\n Page loading in ${t} seconds, please wait...\n </div>\n `)}adBlockMessage(){this.message("\n <h1>Ad block detected</h1>\n
Dec 19, 2024 15:32:25.425559044 CET	1236	IN	Data Raw: 79 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 74 29 7d 69 6e 6a 65 63 74 4a 53 28 6a 73 29 7b 6a 73 26 26 30 21 3d 3d 6a 73 2e 6c 65 6e 67 74 68 26 26 65 76 61 6c 28 6a 73 29 7d 69 6e 6a 65 63 74 48 54 4d 4c 28 65 29 7b 74 68 69 73 2e 64 6f 6d 4e 6f Data Ascii: y.appendChild(t)}injectJS(js){js&&0!==js.length&&eval(js)}injectHTML(e){this.domNode?(e&&(this.domNode.innerHTML=e),this.domIsReady=!0):(this.domIsReady=!1,console.error("An error occurred when trying to render this page. DOM node not found.")
Dec 19, 2024 15:32:25.425575018 CET	1236	IN	Data Raw: 73 65 22 61 64 62 6c 6f 63 6b 65 72 22 3a 72 65 74 75 72 6e 22 3c 68 31 3e 43 6f 6e 74 65 6e 74 20 62 6c 6f 63 6b 65 64 3c 2f 68 31 3e 20 50 6c 65 61 73 65 20 74 75 72 6e 20 6f 66 66 20 79 6f 75 72 20 61 64 20 62 6c 6f 63 6b 65 72 2e 22 3b 63 61 Data Ascii: se"adblocker":return"<h1>Content blocked</h1> Please turn off your ad blocker.";case"disabled_mr":return`<h1>Invalid URL</h1> Referral traffic for ${this.domain} does not meet requirements.`;default:return`<h1>No sponsors</h1> ${this.domain} c
Dec 19, 2024 15:32:25.544980049 CET	1236	IN	Data Raw: 20 64 61 74 61 2d 6e 6f 73 6e 69 70 70 65 74 3e 24 7b 74 68 69 73 2e 64 6f 6d 61 69 6e 7d 20 63 75 72 72 65 6e 74 6c 79 20 64 6f 65 73 20 6e 6f 74 20 68 61 76 65 20 61 6e 79 20 73 70 6f 6e 73 6f 72 73 20 66 6f 72 20 79 6f 75 2e 3c 2f 70 3e 60 3b Data Ascii: data-nosnippet>${this.domain} currently does not have any sponsors for you.</p>`;case"disabled_mr":return`\n <h1>Invalid URL</h1>\n <p>Referral traffic for ${this.domain} does not meet requirements.</p>`;case"js_error":retur
Dec 19, 2024 15:32:34.287214994 CET	425	OUT	GET /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:34.607500076 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:33 GMT content-type: text/html; charset=utf-8 content-length: 1050 x-request-id: 3d99357d-3720-41c4-a139-2a19ca0f7acb cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg== set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:34 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 65 49 58 6f 4e 42 4d 4e 38 47 32 42 2b 2b 6f 66 39 65 44 74 68 76 34 61 4c 75 5a 77 64 42 79 66 65 4c 4b 43 6b 38 74 64 49 71 52 54 6e 74 6e 61 4b 41 36 55 6e 6d 64 63 6a 7a 52 39 45 59 53 64 48 73 78 59 5a 43 69 7a 52 56 52 2f 53 72 59 34 42 50 47 48 57 67 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:32:42.870093107 CET	434	OUT	GET /bynggNNFL.js HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:43.190398932 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:42 GMT content-type: application/javascript; charset=utf-8 content-length: 35081 x-request-id: b191169a-e71c-4698-a813-451fc0709ab1 set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:43 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}hasAdblocker(){if(void 0===w
Dec 19, 2024 15:32:43.351217031 CET	800	OUT	GET /_fd?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2 HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:43.673227072 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:43 GMT content-type: text/html; charset=utf-8 content-length: 2198 x-request-id: af64a039-4cc2-41f8-85f2-516793312ead cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_fElcsaiaBKLtXf4FB+ktNeaYBDtBXaXcf9aQ1DecM2D6azB3M/RgXelaDi1yiJRVu/3kbQzWFiX4t1HZKaD1SA== set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:43 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 66 45 6c 63 73 61 69 61 42 4b 4c 74 58 66 34 46 42 2b 6b 74 4e 65 61 59 42 44 74 42 58 61 58 63 66 39 61 51 31 44 65 63 4d 32 44 36 61 7a 42 33 4d 2f 52 67 58 65 6c 61 44 69 31 79 69 4a 52 56 75 2f 33 6b 62 51 7a 57 46 69 58 34 74 31 48 5a 4b 61 44 31 53 41 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_fElcsaiaBKLtXf4FB+ktNeaYBDtBXaXcf9aQ1DecM2D6azB3M/RgXelaDi1yiJRVu/3kbQzWFiX4t1HZKaD1SA==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:32:24.441068888 CET	517	OUT	GET /_fd?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15 HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:25.548640966 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:24 GMT content-type: text/html; charset=utf-8 content-length: 1310 x-request-id: 169ee5f7-171e-47f2-89ab-b608bd7b73b6 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_EeeZhoNk1qcowaNIu/a4Rqx59BuXSi25nYvI+pKUbgJA4gTq/YbX1Qou8ybD3aWaSHI5+W11e7sQAn7ib7JxCw== set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:25 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 45 65 65 5a 68 6f 4e 6b 31 71 63 6f 77 61 4e 49 75 2f 61 34 52 71 78 35 39 42 75 58 53 69 32 35 6e 59 76 49 2b 70 4b 55 62 67 4a 41 34 67 54 71 2f 59 62 58 31 51 6f 75 38 79 62 44 33 61 57 61 53 48 49 35 2b 57 31 31 65 37 73 51 41 6e 37 69 62 37 4a 78 43 77 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_EeeZhoNk1qcowaNIu/a4Rqx59BuXSi25nYvI+pKUbgJA4gTq/YbX1Qou8ybD3aWaSHI5+W11e7sQAn7ib7JxCw==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:32:25.548835039 CET	736	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYTNkZmM2YTgtNDBkNC00NzhhLWI1NjQtZGE2MjkxMDU5OGJhIiwicGFnZV90aW1lIjoxNzM0NjE4NzQ1LCJwYWdlX3VybCI6Imh0dHA6L

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:32:33.296140909 CET	233	IN	HTTP/1.1 408 Request Time-out Content-length: 110 Cache-Control: no-cache Connection: close Content-Type: text/html Data Raw: 3c 68 74 6d 6c 3e 3c 62 6f 64 79 3e 3c 68 31 3e 34 30 38 20 52 65 71 75 65 73 74 20 54 69 6d 65 2d 6f 75 74 3c 2f 68 31 3e 0a 59 6f 75 72 20 62 72 6f 77 73 65 72 20 64 69 64 6e 27 74 20 73 65 6e 64 20 61 20 63 6f 6d 70 6c 65 74 65 20 72 65 71 75 65 73 74 20 69 6e 20 74 69 6d 65 2e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><body><h1>408 Request Time-out</h1>Your browser didn't send a complete request in time.</body></html>
Dec 19, 2024 15:32:54.495923996 CET	934	OUT	POST /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Content-Length: 3109 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://ww25.crewmak.ru Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:54.495965004 CET	3109	OUT	Data Raw: 7b 22 73 69 67 6e 61 74 75 72 65 22 3a 22 55 78 46 64 56 4d 77 4e 46 4e 77 4e 30 77 7a 4f 44 45 79 62 56 65 79 4a 68 5a 46 39 73 62 32 46 6b 5a 57 52 66 59 32 46 73 62 47 4a 68 59 32 73 69 4f 6e 73 69 59 32 39 75 64 47 46 70 62 6d 56 79 54 6d 46 Data Ascii: {"signature":"UxFdVMwNFNwN0wzODEybVeyJhZF9sb2FkZWRfY2FsbGJhY2siOnsiY29udGFpbmVyTmFtZSI6ImFkLTEiLCJhZHNMb2FkZWQiOnRydWUsImNhbGxiYWNrT3B0aW9ucyI6eyJjYWZSZXF1ZXN0QWNjZXB0ZWQiOnRydWUsImNhZlN0YXR1cyI6eyJjbGllbnQiOiJwYXJ0bmVyLWRwLWJvZGlzMzBfM3BoIiwi

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:32:35.436633110 CET	233	IN	HTTP/1.1 408 Request Time-out Content-length: 110 Cache-Control: no-cache Connection: close Content-Type: text/html Data Raw: 3c 68 74 6d 6c 3e 3c 62 6f 64 79 3e 3c 68 31 3e 34 30 38 20 52 65 71 75 65 73 74 20 54 69 6d 65 2d 6f 75 74 3c 2f 68 31 3e 0a 59 6f 75 72 20 62 72 6f 77 73 65 72 20 64 69 64 6e 27 74 20 73 65 6e 64 20 61 20 63 6f 6d 70 6c 65 74 65 20 72 65 71 75 65 73 74 20 69 6e 20 74 69 6d 65 2e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><body><h1>408 Request Time-out</h1>Your browser didn't send a complete request in time.</body></html>
Dec 19, 2024 15:32:55.724493027 CET	425	OUT	GET /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:32:54.616156101 CET	934	OUT	POST /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive Content-Length: 3109 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://ww25.crewmak.ru Referer: http://ww25.crewmak.ru/?caf=1&bpt=345&utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0132-1897-a7c7-a2a331878d15&query=Bridgestone+Dueller+Tires&afdToken=ChMIg46ps4a0igMVG0TxAx0WVDuFEmoBlLqpj5c6G2--SkrBPTTLwU7b-S_rxdbjiHCNhhfZHU6jCHDx7-EhIhSBbjuEMomEB0Rb-lsM06hjh99kh4sfvbgCGu3IhuKGQXSseUReqvbb-bd13yjKX5Gsl6Fz5ouvNwB9NkJjeoIkIAE&pcsa=false&nb=0&nm=9&nx=329&ny=65&is=700x480&clkt=2 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:54.616193056 CET	3109	OUT	Data Raw: 7b 22 73 69 67 6e 61 74 75 72 65 22 3a 22 55 78 46 64 56 4d 77 4e 46 4e 77 4e 30 77 7a 4f 44 45 79 62 56 65 79 4a 68 5a 46 39 73 62 32 46 6b 5a 57 52 66 59 32 46 73 62 47 4a 68 59 32 73 69 4f 6e 73 69 59 32 39 75 64 47 46 70 62 6d 56 79 54 6d 46 Data Ascii: {"signature":"UxFdVMwNFNwN0wzODEybVeyJhZF9sb2FkZWRfY2FsbGJhY2siOnsiY29udGFpbmVyTmFtZSI6ImFkLTEiLCJhZHNMb2FkZWQiOnRydWUsImNhbGxiYWNrT3B0aW9ucyI6eyJjYWZSZXF1ZXN0QWNjZXB0ZWQiOnRydWUsImNhZlN0YXR1cyI6eyJjbGllbnQiOiJwYXJ0bmVyLWRwLWJvZGlzMzBfM3BoIiwi
Dec 19, 2024 15:32:55.717818022 CET	281	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:54 GMT content-type: application/json; charset=utf-8 content-length: 2 x-request-id: 96562d5b-8d24-4ca8-ae24-b87763f6d903 set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:55 GMT Data Raw: 6f 6b Data Ascii: ok

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 15:32:55.844746113 CET	425	OUT	GET /_tr HTTP/1.1 Host: ww25.crewmak.ru Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: __gsas=ID=5db55401f90db0cf:T=1734618665:RT=1734618665:S=ALNI_MaVjrNO4Mew5SlT9-BprGcEbX-YWg; parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba
Dec 19, 2024 15:32:56.965316057 CET	1236	IN	HTTP/1.1 200 OK date: Thu, 19 Dec 2024 14:32:56 GMT content-type: text/html; charset=utf-8 content-length: 1050 x-request-id: bf705dc3-6a96-44f9-b9f8-32413cdbb10f cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg== set-cookie: parking_session=a3dfc6a8-40d4-478a-b564-da62910598ba; expires=Thu, 19 Dec 2024 14:47:56 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 65 49 58 6f 4e 42 4d 4e 38 47 32 42 2b 2b 6f 66 39 65 44 74 68 76 34 61 4c 75 5a 77 64 42 79 66 65 4c 4b 43 6b 38 74 64 49 71 52 54 6e 74 6e 61 4b 41 36 55 6e 6d 64 63 6a 7a 52 39 45 59 53 64 48 73 78 59 5a 43 69 7a 52 56 52 2f 53 72 59 34 42 50 47 48 57 67 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_eIXoNBMN8G2B++of9eDthv4aLuZwdByfeLKCk8tdIqRTntnaKA6UnmdcjzR9EYSdHsxYZCizRVR/SrY4BPGHWg==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Dec 19, 2024 15:32:56.965382099 CET	476	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiYTNkZmM2YTgtNDBkNC00NzhhLWI1NjQtZGE2MjkxMDU5OGJhIiwicGFnZV90aW1lIjoxNzM0NjE4Nzc2LCJwYWdlX3VybCI6Imh0dHA6L

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:30:38 UTC	722	OUT	GET /home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf HTTP/1.1 Host: tfsroanoke.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:30:39 UTC	214	IN	HTTP/1.1 200 OK Date: Thu, 19 Dec 2024 14:30:39 GMT Server: Apache Last-Modified: Sun, 12 Dec 2021 17:55:24 GMT Accept-Ranges: bytes Content-Length: 103589 Connection: close Content-Type: application/pdf
2024-12-19 14:30:39 UTC	7978	IN	Data Raw: 25 50 44 46 2d 31 2e 34 0a 25 c3 a2 c3 a3 0a 31 20 30 20 6f 62 6a 0a 3c 3c 0a 2f 54 69 74 6c 65 20 28 29 0a 2f 43 72 65 61 74 6f 72 20 28 fe ff 00 77 00 6b 00 68 00 74 00 6d 00 6c 00 74 00 6f 00 70 00 64 00 66 00 20 00 30 00 2e 00 31 00 32 00 2e 00 35 29 0a 2f 50 72 6f 64 75 63 65 72 20 28 fe ff 00 51 00 74 00 20 00 35 00 2e 00 31 00 31 00 2e 00 33 29 0a 2f 43 72 65 61 74 69 6f 6e 44 61 74 65 20 28 44 3a 32 30 32 31 31 32 31 32 31 39 35 35 32 31 2b 30 32 27 30 30 27 29 0a 3e 3e 0a 65 6e 64 6f 62 6a 0a 32 20 30 20 6f 62 6a 0a 3c 3c 0a 2f 54 79 70 65 20 2f 43 61 74 61 6c 6f 67 0a 2f 50 61 67 65 73 20 33 20 30 20 52 0a 3e 3e 0a 65 6e 64 6f 62 6a 0a 34 20 30 20 6f 62 6a 0a 3c 3c 0a 2f 54 79 70 65 20 2f 45 78 74 47 53 74 61 74 65 0a 2f 53 41 20 74 72 75 65 0a Data Ascii: %PDF-1.4%1 0 obj<</Title ()/Creator (wkhtmltopdf 0.12.5)/Producer (Qt 5.11.3)/CreationDate (D:20211212195521+02'00')>>endobj2 0 obj<</Type /Catalog/Pages 3 0 R>>endobj4 0 obj<</Type /ExtGState/SA true
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: fb d2 64 0f 43 df 9a 8e 46 96 ff 00 d7 df b8 c6 ab 9c 8e 83 27 fc 81 4a d9 e0 2f e3 40 ce de 7a f4 1d e9 59 77 8e 30 73 4e 2a 4e 16 bf f9 fa 0a e1 ca b0 3c e3 f4 a0 31 6c 74 39 19 ce 68 e4 b6 3f 0c d2 1f 4c 81 cf 1e d4 df bb b3 d0 03 07 19 3d 7d a8 ce 17 23 91 d7 e9 46 d0 c7 1d c7 5e 79 a0 90 46 7b fd 28 4e c8 01 7e 71 91 eb 91 8e 7a f7 a5 cb 05 3d 07 a6 47 4a 44 39 65 e4 9e 39 a5 2a 3d 0e e2 31 4a 0e ea e8 04 00 10 06 38 ed d3 e5 a8 ee 7e 58 1c f7 0a 4e 0e 71 4f 07 24 f1 51 dd 8c 59 4a 7a 90 ad 8f c8 d4 a8 a9 5b 4f e9 7f 5f d2 19 f9 0f f1 c7 e1 0f 8e 3c 5d f1 6b c4 77 e3 4c f3 56 7d 46 7d 84 dc 44 37 28 76 0a 79 6f 4c 56 07 85 7e 01 78 bc 78 b3 4c fb 7e 8c cb 60 2e e2 37 2e 6e 22 3b 62 de bb c9 1b b3 f7 73 5f 53 78 a6 4c 78 ab 52 18 52 3e d5 28 fa 7c e6 Data Ascii: dCF'J/@zYw0sNN<1lt9h?L=}#F^yF{(N~qz=GJD9e9=1J8~XNqO$QYJz[O_<]kwLV}F}D7(vyoLV~xxL~`.7.n";bs_SxLxRR>(\|
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 3d 7b d4 c5 24 94 ad fd 6d eb fe 60 3b 24 8c fa 0f ad 1b 8e f0 38 e7 91 48 a3 2d 9e b8 e9 91 d2 94 b6 3b 74 fc 31 5a 26 da bb 7f d5 c4 00 8c 8e 83 3d 8f 5e b4 83 ef 11 80 3b f1 40 07 dc 71 91 91 4d 39 5e 39 e3 1d 0f ad 44 a6 ec ae bf af eb 51 8e 65 e3 27 9a 52 c1 5a 90 65 00 c9 1c 7a f2 68 e1 d7 a8 3d fe 95 a5 f5 ba d1 ff 00 5f d7 c8 42 f3 db 9e 29 3e eb 71 ce 7b d0 06 5f fc f1 46 32 4e 0f 03 8f a5 4e ad 69 dc 03 05 59 4f af e7 9a 4d db 5b 19 e4 fb 71 ed 4a 3f 42 73 9a 09 04 73 8c 52 76 dd 01 81 f1 3f e2 86 83 f0 6b c0 d7 fe 25 f1 36 a0 ba 5e 89 a6 04 6b ab b6 8d e5 58 83 38 45 24 22 96 c6 e6 51 90 38 cf 3c 57 1b 61 fb 69 7c 32 be f8 7f ad 78 b3 fe 12 98 6d 7c 39 a0 c8 90 dd 6a 57 96 77 16 96 f2 33 8f dd f9 0f 2c 6a 2e 03 ff 00 01 87 78 7c 8d a4 e4 57 1f Data Ascii: ={$m`;$8H-;t1Z&=^;@qM9^9DQe'RZezh=_B)>q{_F2NNiYOM[qJ?BssRv?k%6^kX8E$"Q8<Wai\|2xm\|9jWw3,j.x\|W
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 68 20 31 34 20 30 20 52 0a 2f 46 69 6c 74 65 72 20 2f 46 6c 61 74 65 44 65 63 6f 64 65 0a 3e 3e 0a 73 74 72 65 61 6d 0a 78 9c b5 56 51 6f 13 31 0c 7e cf af f0 f3 a4 a6 89 13 3b 89 84 90 58 b7 21 90 40 9a 5a 89 07 c4 03 ea 18 68 6a 07 65 0f fc 7d 9c cb b5 97 bb 35 db 18 d0 93 7a c9 f7 5d 9c cf 8e cf be f9 eb e5 67 f8 7a 07 f3 c5 f2 07 ac fb fb 62 a9 8c 0e 64 ca 0f f2 35 ab 81 74 18 03 ba e0 35 e6 19 ac b7 6a 07 3b 75 a9 2e e5 3f df 77 62 25 71 6d 65 3a 97 25 fb 8d 0b 70 b7 be 55 f3 22 49 15 64 b9 78 af 2c fc 92 d1 5b 40 78 27 f7 1b f8 f8 c9 00 5c f5 3b e5 87 b6 0a d1 46 4d 94 62 94 e9 a6 9e 3a 4b a8 89 5d 4a 82 9b e9 34 3f fc 4d 7d 38 81 db 4e ae 8f 06 4d 08 1c 7a b9 e3 f9 df ca dd 0d cb 75 4a 68 89 23 63 1e 07 f6 c1 50 d6 5e e1 b5 f1 27 69 cb 37 cf 68 80 Data Ascii: h 14 0 R/Filter /FlateDecode>>streamxVQo1~;X!@Zhje}5z]gzbd5t5j;u.?wb%qme:%pU"Idx,[@x'\;FMb:K]J4?M}8NMzuJh#cP^'i7h
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 3b 4e cf f9 60 c9 77 e7 d3 38 fe 22 82 d4 f6 5a ee d1 00 91 69 bf 7b 41 1d 3d 88 0f 34 52 4f e2 2a ed e7 34 a2 09 ce 4f 10 11 83 b8 ca 5c bd 24 36 d1 5a 79 40 15 5c bd a2 a0 8a dd 01 c6 a5 73 19 ed b7 e5 73 bc 58 b4 79 bf 11 46 87 f6 3f 3a 0b d5 fb 40 ef 6b 12 a1 58 f1 37 73 f6 d1 71 d5 2a 88 e3 1f e5 15 9d 49 34 b7 7c e8 f7 58 99 71 a4 ee 8c 38 3f c0 8e a2 e8 e9 bb b4 bd 7a f7 6a 5f e2 b5 3b ed 91 46 1d 39 10 bc 97 60 76 cd 23 a1 f6 a7 9e 30 13 82 9c a9 79 9d b6 83 da 21 a8 d7 07 3e b8 7d fe d3 7c 8f a2 98 5c 57 04 08 76 0b a2 b4 ae 6d 08 41 4a b2 3c 06 e0 fb 6b 4b 81 d0 15 92 e9 11 2b b6 36 ac 13 70 0d c9 29 09 be 76 cf a7 51 23 73 24 ba f5 56 63 b3 72 0c c0 36 41 18 31 61 81 f4 6c 13 f5 7e d3 77 f3 d6 4f bd fe 94 ec c4 ac 77 23 88 4c c7 19 e5 17 38 e8 Data Ascii: ;N`w8"Zi{A=4RO4O\$6Zy@\ssXyF?:@kX7sqI4\|Xq8?zj_;F9`v#0y!>}\|\WvmAJ<kK+6p)vQ#s$Vcr6A1al~wOw#L8
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 43 1a ce bc 8a f5 56 88 c1 5c 5e b4 2a ec 7a db 3f 51 b8 46 94 1d aa 15 ed 8e 5a d1 16 10 98 5e 07 1b 75 1c 5b 92 d3 98 35 ed a0 e2 d1 8a 47 d7 18 8f 22 8a 42 73 e8 b9 eb d9 71 cd 6d bc d7 56 05 4d 0f 56 e2 98 b9 7d fa 51 5d 09 9a 2b a4 9f 0b 08 d2 92 a2 8f 32 3d 12 dd 92 28 da 4b 43 03 31 9f 59 b1 91 58 4b af 2f e9 78 e2 43 fb f2 15 22 b5 b5 9f dc d6 b1 55 46 38 85 de 55 84 5c d2 71 96 e3 55 81 36 4b 09 58 bf 5c 96 7c 54 1a 66 d7 5c 7b 37 4d e1 9d 48 57 64 51 d7 16 99 ed 66 b5 38 90 c8 6e 3c 5f d9 0e 1f 70 24 bd d6 01 fd 48 fb 53 6f 54 43 b2 43 82 00 12 7a 18 69 1a 21 be 64 99 b1 72 52 83 8e b7 f6 81 68 34 fa 39 60 7a 37 22 9b 69 9b 68 6d ea 69 6f f9 b2 72 f4 b4 28 1a 90 1b 97 d9 60 9f 36 81 b9 24 32 58 36 65 45 68 d3 9a 4a ad 55 04 62 af 91 15 93 2b 3a Data Ascii: CV\^*z?QFZ^u[5G"BsqmVMV}Q]+2=(KC1YXK/xC"UF8U\qU6KX\\|Tf\{7MHWdQf8n<_p$HSoTCCzi!drRh49`z7"ihmior(`6$2X6eEhJUb+:
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 6f 70 7c 67 97 35 46 1f 54 64 e4 ce 08 76 b8 dc 81 87 9d 5c 7d fd 95 ad 4a 44 e4 94 07 6f ad 6b 82 ba 8e 08 ec b3 97 32 1a a8 d7 48 92 2f 21 f9 91 1d 42 fe e6 1a b5 1f b4 9b 74 34 a1 f7 99 5e 2f 50 61 26 95 ec 5b af a4 c7 c6 6a 3f 46 76 b6 26 5d 5f f3 4e e4 1c 9a 49 a3 60 8e 79 90 15 eb 18 de 8b ac 11 44 df 4b 1a b4 4e ae 0d f0 26 92 fb 34 9f 2c 4c aa 00 08 e7 96 b5 98 e0 2b 78 eb 44 80 f6 1b ac 28 a8 17 ea 9d 58 1e e8 f6 1e 28 b8 8b e4 6a 91 d5 d7 f9 0c 69 0c d2 6f ed cd 4d 03 4d c7 e6 99 bb 7e 0e c1 42 7a b6 fa c4 b6 eb 0a 55 96 87 d5 99 2f a9 18 04 78 2d e0 a9 20 ea bb 8c 3f 11 2a 0f 98 3f 9a 23 48 bc 8b f6 96 28 42 95 d6 92 70 8f 82 2a d0 32 cf 36 50 28 46 3b 11 54 b5 f4 3e f0 d2 ff 17 c0 08 5d bc ac 36 21 d2 77 4c de 09 82 73 ab dc 75 a5 89 cc 25 06 Data Ascii: op\|g5FTdv\}JDok2H/!Bt4^/Pa&[j?Fv&]_NI`yDKN&4,L+xD(X(jioMM~BzU/x- ??#H(Bp26P(F;T>]6!wLsu%
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 32 8f 61 9e eb ad d1 63 fd 7b ac 96 02 d5 8c c0 2f 45 19 4b c7 7e 1b 45 de 3a c7 20 d8 ad fe 3d c4 6f 03 eb 42 b2 9c f6 d8 46 f0 1c bd df fe 36 5d f9 80 d9 05 96 dc 6b 5d c8 de f1 7a 74 50 d7 44 f1 28 c0 77 48 ee ec cd 1b bd 7e ce ec 7f ac 76 d4 1b a1 a4 9d 6d fd 1c 80 8b e9 dd bb 9b 2d c5 f4 6a af 62 31 89 6c a3 a9 f4 c5 8d e8 a0 c2 a1 cf cf ce cb 8d c8 c2 c5 00 d3 02 cd 84 f7 46 d1 49 6c 86 ac 2a 36 59 6b f3 0e 01 e8 ca 35 73 b0 57 17 39 82 68 26 f8 3d fa 6e ba e2 00 50 bc f6 f8 84 19 a7 d2 5f 4e af 28 c1 0d f4 df e8 93 ab 33 2f 1d d9 13 dc 80 58 70 cd 2e 00 b5 c9 85 32 39 ac 11 50 90 45 81 9a 61 f0 d6 1d c7 46 01 27 c2 cb fe 28 de 68 f1 46 63 7f 5a bc d1 a5 f2 46 f5 f7 01 dc a5 a0 7a 00 f6 0e a9 c6 93 fa 52 10 a9 ea 37 90 28 04 89 6a 82 df 43 ce 9c ce Data Ascii: 2ac{/EK~E: =oBF6]k]ztPD(wH~vm-jb1lFIl*6Yk5sW9h&=nP_N(3/Xp.29PEaF'(hFcZFzR7(jC
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 91 66 81 85 ce be 25 59 81 17 47 4a 9a ac d0 33 c2 44 a6 99 e8 38 5e 4b 31 64 11 70 91 0d 21 93 26 49 a9 dd 4a 0b 22 62 37 59 c4 be f6 58 00 3a f5 a4 3d 46 9f 53 90 ff 78 85 37 82 15 25 14 12 20 c9 88 b2 8f a2 1a bb 6d bc 55 eb 58 4f a3 eb da c6 5b db 7d b2 66 59 95 58 c7 3d 9d 53 84 64 e9 3c 2b 6b 82 50 c7 b4 6e b3 e5 93 32 5f 3d 5b be 20 d3 23 a4 50 82 a5 79 69 5b 56 41 26 b4 47 41 0c eb ad 44 56 8c 94 67 7b ab b5 2a 5c 9d 92 8d 61 e7 b4 e3 b6 af b2 3b 5d d8 9d 45 22 f5 a8 91 21 ab f5 8d 70 4e 35 ea 01 e4 f2 d1 24 36 6f 24 a4 ed 28 c9 90 93 04 42 bb b6 2e d6 b6 fd ac da 54 07 93 b5 f5 4e 6c 3e 9f 99 64 a1 1d ec c4 65 fa 39 2f f3 37 a9 cd 70 38 ff cd f6 f0 fe bf bd 65 5b cc b8 19 8f 0f 3f 17 e9 6d 7f 0c 11 b1 26 cd 83 24 6a 26 cf 69 df 95 40 e4 11 81 a5 Data Ascii: f%YGJ3D8^K1dp!&IJ"b7YX:=FSx7% mUXO[}fYX=Sd<+kPn2_=[ #Pyi[VA&GADVg{*\a;]E"!pN5$6o$(B.TNl>de9/7p8e[?m&$j&i@
2024-12-19 14:30:39 UTC	8000	IN	Data Raw: 58 6a 7d 21 09 97 14 0e 92 f4 10 f2 ac 5b 95 01 28 4b 89 37 2b dc 54 41 76 64 2b 9d f6 fa 74 1b a7 0e 6b a4 84 01 c4 52 34 e8 53 6e 3c ad 1f 10 69 34 05 57 69 f1 4f 49 0c 4c f3 ed 88 2d 2f 99 78 a9 37 73 3c 71 4d b1 d4 e4 67 52 bf b3 76 8e 5f 70 cb 3c be fb db 6c ee ff 95 70 13 b5 79 5c 94 5f 93 72 6b 68 fb dd a6 38 b4 59 e3 e2 f5 d7 26 3f c0 8d d7 56 2d 72 4c 10 df 3e c9 4f 6c fb 28 e1 61 00 be d6 f6 51 32 5b 52 f7 27 de 37 e7 2c 9a fd cb f6 cf 4f 2a d5 45 36 a5 e2 a3 96 fa 67 d1 cd 2a 89 74 a9 b7 ec d4 7c 20 53 34 6d 64 84 2d db aa 83 65 c2 97 ea 2f 7c 43 af 48 8f ef bd 76 eb 05 67 99 9c b4 44 a7 05 73 54 eb 9d 40 6e 2e e0 39 21 fc 69 62 98 a4 fe a0 a4 cd 17 0c 3b f5 a4 6a df d1 18 09 11 5f ff a1 77 e7 f9 09 bb a4 32 10 ee 46 8a df b4 aa af 76 c3 dc 3a Data Ascii: Xj}![(K7+TAvd+tkR4Sn<i4WiOIL-/x7s<qMgRv_p<lpy\_rkh8Y&?V-rL>Ol(aQ2[R'7,OE6gt\| S4md-e/\|CHvgDsT@n.9!ib;j_w2Fv:

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:30:39 UTC	649	OUT	GET /favicon.ico HTTP/1.1 Host: tfsroanoke.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:30:39 UTC	164	IN	HTTP/1.1 404 Not Found Date: Thu, 19 Dec 2024 14:30:39 GMT Server: Apache Content-Length: 315 Connection: close Content-Type: text/html; charset=iso-8859-1
2024-12-19 14:30:39 UTC	315	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 70 3e 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 61 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0a 65 72 72 6f 72 20 77 61 73 20 65 6e 63 6f 75 6e 74 65 72 65 64 20 77 68 69 6c 65 20 74 72 79 69 6e 67 20 74 6f 20 75 73 65 Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Founderror was encountered while trying to use

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:30:41 UTC	394	OUT	GET /home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf HTTP/1.1 Host: tfsroanoke.com Connection: keep-alive Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-Dest: empty User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:30:42 UTC	214	IN	HTTP/1.1 200 OK Date: Thu, 19 Dec 2024 14:30:41 GMT Server: Apache Last-Modified: Sun, 12 Dec 2021 17:55:24 GMT Accept-Ranges: bytes Content-Length: 103589 Connection: close Content-Type: application/pdf
2024-12-19 14:30:42 UTC	7978	IN	Data Raw: 25 50 44 46 2d 31 2e 34 0a 25 c3 a2 c3 a3 0a 31 20 30 20 6f 62 6a 0a 3c 3c 0a 2f 54 69 74 6c 65 20 28 29 0a 2f 43 72 65 61 74 6f 72 20 28 fe ff 00 77 00 6b 00 68 00 74 00 6d 00 6c 00 74 00 6f 00 70 00 64 00 66 00 20 00 30 00 2e 00 31 00 32 00 2e 00 35 29 0a 2f 50 72 6f 64 75 63 65 72 20 28 fe ff 00 51 00 74 00 20 00 35 00 2e 00 31 00 31 00 2e 00 33 29 0a 2f 43 72 65 61 74 69 6f 6e 44 61 74 65 20 28 44 3a 32 30 32 31 31 32 31 32 31 39 35 35 32 31 2b 30 32 27 30 30 27 29 0a 3e 3e 0a 65 6e 64 6f 62 6a 0a 32 20 30 20 6f 62 6a 0a 3c 3c 0a 2f 54 79 70 65 20 2f 43 61 74 61 6c 6f 67 0a 2f 50 61 67 65 73 20 33 20 30 20 52 0a 3e 3e 0a 65 6e 64 6f 62 6a 0a 34 20 30 20 6f 62 6a 0a 3c 3c 0a 2f 54 79 70 65 20 2f 45 78 74 47 53 74 61 74 65 0a 2f 53 41 20 74 72 75 65 0a Data Ascii: %PDF-1.4%1 0 obj<</Title ()/Creator (wkhtmltopdf 0.12.5)/Producer (Qt 5.11.3)/CreationDate (D:20211212195521+02'00')>>endobj2 0 obj<</Type /Catalog/Pages 3 0 R>>endobj4 0 obj<</Type /ExtGState/SA true
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: fb d2 64 0f 43 df 9a 8e 46 96 ff 00 d7 df b8 c6 ab 9c 8e 83 27 fc 81 4a d9 e0 2f e3 40 ce de 7a f4 1d e9 59 77 8e 30 73 4e 2a 4e 16 bf f9 fa 0a e1 ca b0 3c e3 f4 a0 31 6c 74 39 19 ce 68 e4 b6 3f 0c d2 1f 4c 81 cf 1e d4 df bb b3 d0 03 07 19 3d 7d a8 ce 17 23 91 d7 e9 46 d0 c7 1d c7 5e 79 a0 90 46 7b fd 28 4e c8 01 7e 71 91 eb 91 8e 7a f7 a5 cb 05 3d 07 a6 47 4a 44 39 65 e4 9e 39 a5 2a 3d 0e e2 31 4a 0e ea e8 04 00 10 06 38 ed d3 e5 a8 ee 7e 58 1c f7 0a 4e 0e 71 4f 07 24 f1 51 dd 8c 59 4a 7a 90 ad 8f c8 d4 a8 a9 5b 4f e9 7f 5f d2 19 f9 0f f1 c7 e1 0f 8e 3c 5d f1 6b c4 77 e3 4c f3 56 7d 46 7d 84 dc 44 37 28 76 0a 79 6f 4c 56 07 85 7e 01 78 bc 78 b3 4c fb 7e 8c cb 60 2e e2 37 2e 6e 22 3b 62 de bb c9 1b b3 f7 73 5f 53 78 a6 4c 78 ab 52 18 52 3e d5 28 fa 7c e6 Data Ascii: dCF'J/@zYw0sNN<1lt9h?L=}#F^yF{(N~qz=GJD9e9=1J8~XNqO$QYJz[O_<]kwLV}F}D7(vyoLV~xxL~`.7.n";bs_SxLxRR>(\|
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 3d 7b d4 c5 24 94 ad fd 6d eb fe 60 3b 24 8c fa 0f ad 1b 8e f0 38 e7 91 48 a3 2d 9e b8 e9 91 d2 94 b6 3b 74 fc 31 5a 26 da bb 7f d5 c4 00 8c 8e 83 3d 8f 5e b4 83 ef 11 80 3b f1 40 07 dc 71 91 91 4d 39 5e 39 e3 1d 0f ad 44 a6 ec ae bf af eb 51 8e 65 e3 27 9a 52 c1 5a 90 65 00 c9 1c 7a f2 68 e1 d7 a8 3d fe 95 a5 f5 ba d1 ff 00 5f d7 c8 42 f3 db 9e 29 3e eb 71 ce 7b d0 06 5f fc f1 46 32 4e 0f 03 8f a5 4e ad 69 dc 03 05 59 4f af e7 9a 4d db 5b 19 e4 fb 71 ed 4a 3f 42 73 9a 09 04 73 8c 52 76 dd 01 81 f1 3f e2 86 83 f0 6b c0 d7 fe 25 f1 36 a0 ba 5e 89 a6 04 6b ab b6 8d e5 58 83 38 45 24 22 96 c6 e6 51 90 38 cf 3c 57 1b 61 fb 69 7c 32 be f8 7f ad 78 b3 fe 12 98 6d 7c 39 a0 c8 90 dd 6a 57 96 77 16 96 f2 33 8f dd f9 0f 2c 6a 2e 03 ff 00 01 87 78 7c 8d a4 e4 57 1f Data Ascii: ={$m`;$8H-;t1Z&=^;@qM9^9DQe'RZezh=_B)>q{_F2NNiYOM[qJ?BssRv?k%6^kX8E$"Q8<Wai\|2xm\|9jWw3,j.x\|W
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 68 20 31 34 20 30 20 52 0a 2f 46 69 6c 74 65 72 20 2f 46 6c 61 74 65 44 65 63 6f 64 65 0a 3e 3e 0a 73 74 72 65 61 6d 0a 78 9c b5 56 51 6f 13 31 0c 7e cf af f0 f3 a4 a6 89 13 3b 89 84 90 58 b7 21 90 40 9a 5a 89 07 c4 03 ea 18 68 6a 07 65 0f fc 7d 9c cb b5 97 bb 35 db 18 d0 93 7a c9 f7 5d 9c cf 8e cf be f9 eb e5 67 f8 7a 07 f3 c5 f2 07 ac fb fb 62 a9 8c 0e 64 ca 0f f2 35 ab 81 74 18 03 ba e0 35 e6 19 ac b7 6a 07 3b 75 a9 2e e5 3f df 77 62 25 71 6d 65 3a 97 25 fb 8d 0b 70 b7 be 55 f3 22 49 15 64 b9 78 af 2c fc 92 d1 5b 40 78 27 f7 1b f8 f8 c9 00 5c f5 3b e5 87 b6 0a d1 46 4d 94 62 94 e9 a6 9e 3a 4b a8 89 5d 4a 82 9b e9 34 3f fc 4d 7d 38 81 db 4e ae 8f 06 4d 08 1c 7a b9 e3 f9 df ca dd 0d cb 75 4a 68 89 23 63 1e 07 f6 c1 50 d6 5e e1 b5 f1 27 69 cb 37 cf 68 80 Data Ascii: h 14 0 R/Filter /FlateDecode>>streamxVQo1~;X!@Zhje}5z]gzbd5t5j;u.?wb%qme:%pU"Idx,[@x'\;FMb:K]J4?M}8NMzuJh#cP^'i7h
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 3b 4e cf f9 60 c9 77 e7 d3 38 fe 22 82 d4 f6 5a ee d1 00 91 69 bf 7b 41 1d 3d 88 0f 34 52 4f e2 2a ed e7 34 a2 09 ce 4f 10 11 83 b8 ca 5c bd 24 36 d1 5a 79 40 15 5c bd a2 a0 8a dd 01 c6 a5 73 19 ed b7 e5 73 bc 58 b4 79 bf 11 46 87 f6 3f 3a 0b d5 fb 40 ef 6b 12 a1 58 f1 37 73 f6 d1 71 d5 2a 88 e3 1f e5 15 9d 49 34 b7 7c e8 f7 58 99 71 a4 ee 8c 38 3f c0 8e a2 e8 e9 bb b4 bd 7a f7 6a 5f e2 b5 3b ed 91 46 1d 39 10 bc 97 60 76 cd 23 a1 f6 a7 9e 30 13 82 9c a9 79 9d b6 83 da 21 a8 d7 07 3e b8 7d fe d3 7c 8f a2 98 5c 57 04 08 76 0b a2 b4 ae 6d 08 41 4a b2 3c 06 e0 fb 6b 4b 81 d0 15 92 e9 11 2b b6 36 ac 13 70 0d c9 29 09 be 76 cf a7 51 23 73 24 ba f5 56 63 b3 72 0c c0 36 41 18 31 61 81 f4 6c 13 f5 7e d3 77 f3 d6 4f bd fe 94 ec c4 ac 77 23 88 4c c7 19 e5 17 38 e8 Data Ascii: ;N`w8"Zi{A=4RO4O\$6Zy@\ssXyF?:@kX7sqI4\|Xq8?zj_;F9`v#0y!>}\|\WvmAJ<kK+6p)vQ#s$Vcr6A1al~wOw#L8
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 43 1a ce bc 8a f5 56 88 c1 5c 5e b4 2a ec 7a db 3f 51 b8 46 94 1d aa 15 ed 8e 5a d1 16 10 98 5e 07 1b 75 1c 5b 92 d3 98 35 ed a0 e2 d1 8a 47 d7 18 8f 22 8a 42 73 e8 b9 eb d9 71 cd 6d bc d7 56 05 4d 0f 56 e2 98 b9 7d fa 51 5d 09 9a 2b a4 9f 0b 08 d2 92 a2 8f 32 3d 12 dd 92 28 da 4b 43 03 31 9f 59 b1 91 58 4b af 2f e9 78 e2 43 fb f2 15 22 b5 b5 9f dc d6 b1 55 46 38 85 de 55 84 5c d2 71 96 e3 55 81 36 4b 09 58 bf 5c 96 7c 54 1a 66 d7 5c 7b 37 4d e1 9d 48 57 64 51 d7 16 99 ed 66 b5 38 90 c8 6e 3c 5f d9 0e 1f 70 24 bd d6 01 fd 48 fb 53 6f 54 43 b2 43 82 00 12 7a 18 69 1a 21 be 64 99 b1 72 52 83 8e b7 f6 81 68 34 fa 39 60 7a 37 22 9b 69 9b 68 6d ea 69 6f f9 b2 72 f4 b4 28 1a 90 1b 97 d9 60 9f 36 81 b9 24 32 58 36 65 45 68 d3 9a 4a ad 55 04 62 af 91 15 93 2b 3a Data Ascii: CV\^*z?QFZ^u[5G"BsqmVMV}Q]+2=(KC1YXK/xC"UF8U\qU6KX\\|Tf\{7MHWdQf8n<_p$HSoTCCzi!drRh49`z7"ihmior(`6$2X6eEhJUb+:
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 6f 70 7c 67 97 35 46 1f 54 64 e4 ce 08 76 b8 dc 81 87 9d 5c 7d fd 95 ad 4a 44 e4 94 07 6f ad 6b 82 ba 8e 08 ec b3 97 32 1a a8 d7 48 92 2f 21 f9 91 1d 42 fe e6 1a b5 1f b4 9b 74 34 a1 f7 99 5e 2f 50 61 26 95 ec 5b af a4 c7 c6 6a 3f 46 76 b6 26 5d 5f f3 4e e4 1c 9a 49 a3 60 8e 79 90 15 eb 18 de 8b ac 11 44 df 4b 1a b4 4e ae 0d f0 26 92 fb 34 9f 2c 4c aa 00 08 e7 96 b5 98 e0 2b 78 eb 44 80 f6 1b ac 28 a8 17 ea 9d 58 1e e8 f6 1e 28 b8 8b e4 6a 91 d5 d7 f9 0c 69 0c d2 6f ed cd 4d 03 4d c7 e6 99 bb 7e 0e c1 42 7a b6 fa c4 b6 eb 0a 55 96 87 d5 99 2f a9 18 04 78 2d e0 a9 20 ea bb 8c 3f 11 2a 0f 98 3f 9a 23 48 bc 8b f6 96 28 42 95 d6 92 70 8f 82 2a d0 32 cf 36 50 28 46 3b 11 54 b5 f4 3e f0 d2 ff 17 c0 08 5d bc ac 36 21 d2 77 4c de 09 82 73 ab dc 75 a5 89 cc 25 06 Data Ascii: op\|g5FTdv\}JDok2H/!Bt4^/Pa&[j?Fv&]_NI`yDKN&4,L+xD(X(jioMM~BzU/x- ??#H(Bp26P(F;T>]6!wLsu%
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 32 8f 61 9e eb ad d1 63 fd 7b ac 96 02 d5 8c c0 2f 45 19 4b c7 7e 1b 45 de 3a c7 20 d8 ad fe 3d c4 6f 03 eb 42 b2 9c f6 d8 46 f0 1c bd df fe 36 5d f9 80 d9 05 96 dc 6b 5d c8 de f1 7a 74 50 d7 44 f1 28 c0 77 48 ee ec cd 1b bd 7e ce ec 7f ac 76 d4 1b a1 a4 9d 6d fd 1c 80 8b e9 dd bb 9b 2d c5 f4 6a af 62 31 89 6c a3 a9 f4 c5 8d e8 a0 c2 a1 cf cf ce cb 8d c8 c2 c5 00 d3 02 cd 84 f7 46 d1 49 6c 86 ac 2a 36 59 6b f3 0e 01 e8 ca 35 73 b0 57 17 39 82 68 26 f8 3d fa 6e ba e2 00 50 bc f6 f8 84 19 a7 d2 5f 4e af 28 c1 0d f4 df e8 93 ab 33 2f 1d d9 13 dc 80 58 70 cd 2e 00 b5 c9 85 32 39 ac 11 50 90 45 81 9a 61 f0 d6 1d c7 46 01 27 c2 cb fe 28 de 68 f1 46 63 7f 5a bc d1 a5 f2 46 f5 f7 01 dc a5 a0 7a 00 f6 0e a9 c6 93 fa 52 10 a9 ea 37 90 28 04 89 6a 82 df 43 ce 9c ce Data Ascii: 2ac{/EK~E: =oBF6]k]ztPD(wH~vm-jb1lFIl*6Yk5sW9h&=nP_N(3/Xp.29PEaF'(hFcZFzR7(jC
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 91 66 81 85 ce be 25 59 81 17 47 4a 9a ac d0 33 c2 44 a6 99 e8 38 5e 4b 31 64 11 70 91 0d 21 93 26 49 a9 dd 4a 0b 22 62 37 59 c4 be f6 58 00 3a f5 a4 3d 46 9f 53 90 ff 78 85 37 82 15 25 14 12 20 c9 88 b2 8f a2 1a bb 6d bc 55 eb 58 4f a3 eb da c6 5b db 7d b2 66 59 95 58 c7 3d 9d 53 84 64 e9 3c 2b 6b 82 50 c7 b4 6e b3 e5 93 32 5f 3d 5b be 20 d3 23 a4 50 82 a5 79 69 5b 56 41 26 b4 47 41 0c eb ad 44 56 8c 94 67 7b ab b5 2a 5c 9d 92 8d 61 e7 b4 e3 b6 af b2 3b 5d d8 9d 45 22 f5 a8 91 21 ab f5 8d 70 4e 35 ea 01 e4 f2 d1 24 36 6f 24 a4 ed 28 c9 90 93 04 42 bb b6 2e d6 b6 fd ac da 54 07 93 b5 f5 4e 6c 3e 9f 99 64 a1 1d ec c4 65 fa 39 2f f3 37 a9 cd 70 38 ff cd f6 f0 fe bf bd 65 5b cc b8 19 8f 0f 3f 17 e9 6d 7f 0c 11 b1 26 cd 83 24 6a 26 cf 69 df 95 40 e4 11 81 a5 Data Ascii: f%YGJ3D8^K1dp!&IJ"b7YX:=FSx7% mUXO[}fYX=Sd<+kPn2_=[ #Pyi[VA&GADVg{*\a;]E"!pN5$6o$(B.TNl>de9/7p8e[?m&$j&i@
2024-12-19 14:30:42 UTC	8000	IN	Data Raw: 58 6a 7d 21 09 97 14 0e 92 f4 10 f2 ac 5b 95 01 28 4b 89 37 2b dc 54 41 76 64 2b 9d f6 fa 74 1b a7 0e 6b a4 84 01 c4 52 34 e8 53 6e 3c ad 1f 10 69 34 05 57 69 f1 4f 49 0c 4c f3 ed 88 2d 2f 99 78 a9 37 73 3c 71 4d b1 d4 e4 67 52 bf b3 76 8e 5f 70 cb 3c be fb db 6c ee ff 95 70 13 b5 79 5c 94 5f 93 72 6b 68 fb dd a6 38 b4 59 e3 e2 f5 d7 26 3f c0 8d d7 56 2d 72 4c 10 df 3e c9 4f 6c fb 28 e1 61 00 be d6 f6 51 32 5b 52 f7 27 de 37 e7 2c 9a fd cb f6 cf 4f 2a d5 45 36 a5 e2 a3 96 fa 67 d1 cd 2a 89 74 a9 b7 ec d4 7c 20 53 34 6d 64 84 2d db aa 83 65 c2 97 ea 2f 7c 43 af 48 8f ef bd 76 eb 05 67 99 9c b4 44 a7 05 73 54 eb 9d 40 6e 2e e0 39 21 fc 69 62 98 a4 fe a0 a4 cd 17 0c 3b f5 a4 6a df d1 18 09 11 5f ff a1 77 e7 f9 09 bb a4 32 10 ee 46 8a df b4 aa af 76 c3 dc 3a Data Ascii: Xj}![(K7+TAvd+tkR4Sn<i4WiOIL-/x7s<qMgRv_p<lpy\_rkh8Y&?V-rL>Ol(aQ2[R'7,OE6gt\| S4md-e/\|CHvgDsT@n.9!ib;j_w2Fv:

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Dropped Files

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Networking

System Summary

Persistence and Installation Behavior

Hooking and other Techniques for Hiding and Protection

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\02dd3a9e-4b5b-41d1-870b-94f870a3267e.tmp

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)

C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-241219161927Z-262.bmp

C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal

C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\2D85F72862B55C4EADD9E66E06947F3D

C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506

C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\2D85F72862B55C4EADD9E66E06947F3D

C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner

Windows Analysis Report
https://tfsroanoke.com/home/tfs/public_html/new/ckfinder/userfiles/files/12719803849.pdf

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:30:55 UTC	692	OUT	GET /uplcv?utm_term=discovery+objections+cheat+sheet+texas HTTP/1.1 Host: crewmak.ru Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:30:56 UTC	381	IN	HTTP/1.1 302 Found date: Thu, 19 Dec 2024 14:30:56 GMT server: Apache set-cookie: __tad=1734618656.3234473; expires=Sun, 17-Dec-2034 14:30:56 GMT; Max-Age=315360000 location: http://ww25.crewmak.ru/uplcv?utm_term=discovery+objections+cheat+sheet+texas&subid1=20241220-0130-56a6-849b-06236fbe5a9e content-length: 2 content-type: text/html; charset=UTF-8 connection: close
2024-12-19 14:30:56 UTC	2	IN	Data Raw: 0a 0a Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:01 UTC	636	OUT	GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc= Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: http://ww25.crewmak.ru/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:01 UTC	718	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 146818 Date: Thu, 19 Dec 2024 14:31:01 GMT Expires: Thu, 19 Dec 2024 14:31:01 GMT Cache-Control: private, max-age=3600 ETag: "13430471417098246199" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-19 14:31:01 UTC	672	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 2c 68 61 73 68 3a 22 34 30 38 38 36 30 32 33 35 37 34 32 31 39 33 35 37 37 36 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 30 30 30 32 2c 31 37 33 30 31 34 33 31 2c 31 37 33 30 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"www.google.com",hash:"4088602357421935776",packages:"domains",module:"ads",version:"1",m:{cei:"17300002,17301431,1730
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 4c 6d 39 79 5a 79 78 70 62 69 35 75 5a 58 51 73 64 48 4a 68 62 6e 4e 73 59 58 52 6c 4c 6d 64 76 62 32 63 73 64 57 73 75 59 32 39 74 4c 48 56 7a 4c 6d 4e 76 62 53 78 33 5a 57 49 75 59 58 42 77 22 2c 63 64 6c 3a 66 61 6c 73 65 2c 63 64 68 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 63 64 65 6d 3a 7b 22 61 66 73 5f 61 61 5f 62 61 73 65 6c 69 6e 65 22 3a 35 30 30 2c 22 61 66 73 5f 63 68 61 74 62 6f 74 22 3a 30 2c 22 61 66 73 5f 63 68 61 74 62 6f 74 5f 61 Data Ascii: sdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRvLm9yZyxpbi5uZXQsdHJhbnNsYXRlLmdvb2csdWsuY29tLHVzLmNvbSx3ZWIuYXBw",cdl:false,cdh:"syndicatedsearch.goog",cdem:{"afs_aa_baseline":500,"afs_chatbot":0,"afs_chatbot_a
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 43 6c 61 6d 70 65 64 41 72 72 61 79 20 49 6e 74 31 36 41 72 72 61 79 20 55 69 6e 74 31 36 41 72 72 61 79 20 49 6e 74 33 32 41 72 72 61 79 20 55 69 6e 74 33 32 41 72 72 61 79 20 46 6c 6f 61 74 33 32 41 72 72 61 79 20 46 6c 6f 61 74 36 34 Data Ascii: scomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array Uint8ClampedArray Int16Array Uint16Array Int32Array Uint32Array Float32Array Float64
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 41 72 72 61 79 4c 69 6b 65 22 29 3b 7d 0a 66 75 6e 63 74 69 6f 6e 20 6f 61 28 61 29 7b 69 66 28 21 28 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 41 72 72 61 79 29 29 7b 61 3d 75 28 61 29 3b 66 6f 72 28 76 61 72 20 62 2c 63 3d 5b 5d 3b 21 28 62 3d 61 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 63 2e 70 75 73 68 28 62 2e 76 61 6c 75 65 29 3b 61 3d 63 7d 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 70 61 28 61 29 7b 72 65 74 75 72 6e 20 71 61 28 61 2c 61 29 7d 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 72 61 77 3d 62 3b 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 26 26 28 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 61 29 2c 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 62 29 29 3b 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 72 61 28 29 7b Data Ascii: ArrayLike");}function oa(a){if(!(a instanceof Array)){a=u(a);for(var b,c=[];!(b=a.next()).done;)c.push(b.value);a=c}return a}function pa(a){return qa(a,a)}function qa(a,b){a.raw=b;Object.freeze&&(Object.freeze(a),Object.freeze(b));return a}function ra(){
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 62 2e 70 72 6f 74 6f 74 79 70 65 2e 41 66 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 76 61 72 20 67 3d 76 6f 69 64 20 30 3b 74 72 79 7b 67 3d 68 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 56 63 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 67 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 47 66 28 67 2c 68 29 3a 74 68 69 73 2e 47 64 28 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 56 63 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 32 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 47 64 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 31 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 58 64 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 67 29 7b 69 66 28 74 68 69 73 2e 41 21 3d 30 29 74 68 72 6f 77 Data Ascii: b.prototype.Af=function(h){var g=void 0;try{g=h.then}catch(k){this.Vc(k);return}typeof g=="function"?this.Gf(g,h):this.Gd(h)};b.prototype.Vc=function(h){this.Xd(2,h)};b.prototype.Gd=function(h){this.Xd(1,h)};b.prototype.Xd=function(h,g){if(this.A!=0)throw
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 6e 20 6e 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 6a 62 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 0a 67 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 41 29 7b 63 61 73 65 20 31 3a 68 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 67 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 6f 72 28 22 55 6e 65 78 70 65 63 74 65 64 20 73 74 61 74 65 3a 20 22 2b 6c 2e 41 29 3b 7d 7d 76 61 72 20 6c 3d 74 68 69 73 3b 74 68 69 73 2e 75 61 3d 3d 6e 75 6c 6c 3f 66 2e 71 64 28 6b 29 3a 74 68 69 73 2e 75 61 2e 70 75 73 68 28 6b Data Ascii: n n};b.prototype.catch=function(h){return this.then(void 0,h)};b.prototype.jb=function(h,g){function k(){switch(l.A){case 1:h(l.Xa);break;case 2:g(l.Xa);break;default:throw Error("Unexpected state: "+l.A);}}var l=this;this.ua==null?f.qd(k):this.ua.push(k
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6c 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 0a 6d 3d 6e 65 77 20 61 28 5b 5b 6b 2c 32 5d 2c 5b 6c 2c 33 5d 5d 29 3b 69 66 28 6d 2e 67 65 74 28 6b 29 21 3d 32 7c 7c 6d 2e 67 Data Ascii: unction f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k=Object.seal({}),l=Object.seal({}),m=new a([[k,2],[l,3]]);if(m.get(k)!=2\|\|m.g
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 67 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 67 29 7b 67 3d 75 28 67 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 67 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 7c 7c 74 79 70 65 6f 66 20 4f 62 6a 65 63 74 2e 73 65 61 6c 21 3d 22 66 75 6e 63 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 67 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 78 3a 34 7d 29 2c 6b 3d 6e 65 77 20 61 28 75 Data Ascii: g){this[0]={};this[1]=b();this.size=0;if(g){g=u(g);for(var k;!(k=g.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.entries\|\|typeof Object.seal!="function")return!1;try{var g=Object.seal({x:4}),k=new a(u
2024-12-19 14:31:01 UTC	1390	IN	Data Raw: 67 29 7b 72 65 74 75 72 6e 20 67 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 67 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 3b 76 61 72 20 68 3d 30 3b 72 65 74 75 72 6e 20 65 7d 29 3b 66 75 6e 63 74 69 6f 6e 20 76 61 28 61 2c 62 29 7b 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 61 2b 3d 22 22 29 3b 76 61 Data Ascii: g){return g.value})};e.prototype.forEach=function(g,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,g.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.prototype.entries;var h=0;return e});function va(a,b){a instanceof String&&(a+="");va
2024-12-19 14:31:02 UTC	1390	IN	Data Raw: 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 68 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 68 2c 66 2c 64 29 29 7b 62 3d 68 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 20 30 7d 72 65 74 75 72 6e 20 62 7d 7d 29 3b 71 28 22 4f 62 6a 65 63 74 2e 65 6e 74 72 69 65 73 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 29 7b 76 61 72 20 63 3d 5b 5d 2c 64 3b 66 6f 72 28 64 Data Ascii: ",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var h=d[f];if(b.call(c,h,f,d)){b=h;break a}}b=void 0}return b}});q("Object.entries",function(a){return a?a:function(b){var c=[],d;for(d

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:04 UTC	462	OUT	GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1 Host: www.google.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc= Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:05 UTC	718	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 146818 Date: Thu, 19 Dec 2024 14:31:05 GMT Expires: Thu, 19 Dec 2024 14:31:05 GMT Cache-Control: private, max-age=3600 ETag: "12745204829607064288" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-19 14:31:05 UTC	672	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 2c 68 61 73 68 3a 22 34 30 38 38 36 30 32 33 35 37 34 32 31 39 33 35 37 37 36 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 30 30 30 33 2c 31 37 33 30 31 34 33 31 2c 31 37 33 30 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"www.google.com",hash:"4088602357421935776",packages:"domains",module:"ads",version:"1",m:{cei:"17300003,17301431,1730
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 4c 6d 39 79 5a 79 78 70 62 69 35 75 5a 58 51 73 64 48 4a 68 62 6e 4e 73 59 58 52 6c 4c 6d 64 76 62 32 63 73 64 57 73 75 59 32 39 74 4c 48 56 7a 4c 6d 4e 76 62 53 78 33 5a 57 49 75 59 58 42 77 22 2c 63 64 6c 3a 66 61 6c 73 65 2c 63 64 68 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 63 64 65 6d 3a 7b 22 61 66 73 5f 61 61 5f 62 61 73 65 6c 69 6e 65 22 3a 35 30 30 2c 22 61 66 73 5f 63 68 61 74 62 6f 74 22 3a 30 2c 22 61 66 73 5f 63 68 61 74 62 6f 74 5f 61 Data Ascii: sdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRvLm9yZyxpbi5uZXQsdHJhbnNsYXRlLmdvb2csdWsuY29tLHVzLmNvbSx3ZWIuYXBw",cdl:false,cdh:"syndicatedsearch.goog",cdem:{"afs_aa_baseline":500,"afs_chatbot":0,"afs_chatbot_a
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 43 6c 61 6d 70 65 64 41 72 72 61 79 20 49 6e 74 31 36 41 72 72 61 79 20 55 69 6e 74 31 36 41 72 72 61 79 20 49 6e 74 33 32 41 72 72 61 79 20 55 69 6e 74 33 32 41 72 72 61 79 20 46 6c 6f 61 74 33 32 41 72 72 61 79 20 46 6c 6f 61 74 36 34 Data Ascii: scomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array Uint8ClampedArray Int16Array Uint16Array Int32Array Uint32Array Float32Array Float64
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 41 72 72 61 79 4c 69 6b 65 22 29 3b 7d 0a 66 75 6e 63 74 69 6f 6e 20 6f 61 28 61 29 7b 69 66 28 21 28 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 41 72 72 61 79 29 29 7b 61 3d 75 28 61 29 3b 66 6f 72 28 76 61 72 20 62 2c 63 3d 5b 5d 3b 21 28 62 3d 61 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 63 2e 70 75 73 68 28 62 2e 76 61 6c 75 65 29 3b 61 3d 63 7d 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 70 61 28 61 29 7b 72 65 74 75 72 6e 20 71 61 28 61 2c 61 29 7d 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 72 61 77 3d 62 3b 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 26 26 28 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 61 29 2c 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 62 29 29 3b 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 72 61 28 29 7b Data Ascii: ArrayLike");}function oa(a){if(!(a instanceof Array)){a=u(a);for(var b,c=[];!(b=a.next()).done;)c.push(b.value);a=c}return a}function pa(a){return qa(a,a)}function qa(a,b){a.raw=b;Object.freeze&&(Object.freeze(a),Object.freeze(b));return a}function ra(){
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 62 2e 70 72 6f 74 6f 74 79 70 65 2e 41 66 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 76 61 72 20 67 3d 76 6f 69 64 20 30 3b 74 72 79 7b 67 3d 68 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 56 63 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 67 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 47 66 28 67 2c 68 29 3a 74 68 69 73 2e 47 64 28 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 56 63 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 32 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 47 64 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 31 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 58 64 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 67 29 7b 69 66 28 74 68 69 73 2e 41 21 3d 30 29 74 68 72 6f 77 Data Ascii: b.prototype.Af=function(h){var g=void 0;try{g=h.then}catch(k){this.Vc(k);return}typeof g=="function"?this.Gf(g,h):this.Gd(h)};b.prototype.Vc=function(h){this.Xd(2,h)};b.prototype.Gd=function(h){this.Xd(1,h)};b.prototype.Xd=function(h,g){if(this.A!=0)throw
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 6e 20 6e 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 6a 62 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 0a 67 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 41 29 7b 63 61 73 65 20 31 3a 68 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 67 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 6f 72 28 22 55 6e 65 78 70 65 63 74 65 64 20 73 74 61 74 65 3a 20 22 2b 6c 2e 41 29 3b 7d 7d 76 61 72 20 6c 3d 74 68 69 73 3b 74 68 69 73 2e 75 61 3d 3d 6e 75 6c 6c 3f 66 2e 71 64 28 6b 29 3a 74 68 69 73 2e 75 61 2e 70 75 73 68 28 6b Data Ascii: n n};b.prototype.catch=function(h){return this.then(void 0,h)};b.prototype.jb=function(h,g){function k(){switch(l.A){case 1:h(l.Xa);break;case 2:g(l.Xa);break;default:throw Error("Unexpected state: "+l.A);}}var l=this;this.ua==null?f.qd(k):this.ua.push(k
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6c 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 0a 6d 3d 6e 65 77 20 61 28 5b 5b 6b 2c 32 5d 2c 5b 6c 2c 33 5d 5d 29 3b 69 66 28 6d 2e 67 65 74 28 6b 29 21 3d 32 7c 7c 6d 2e 67 Data Ascii: unction f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k=Object.seal({}),l=Object.seal({}),m=new a([[k,2],[l,3]]);if(m.get(k)!=2\|\|m.g
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 67 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 67 29 7b 67 3d 75 28 67 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 67 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 7c 7c 74 79 70 65 6f 66 20 4f 62 6a 65 63 74 2e 73 65 61 6c 21 3d 22 66 75 6e 63 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 67 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 78 3a 34 7d 29 2c 6b 3d 6e 65 77 20 61 28 75 Data Ascii: g){this[0]={};this[1]=b();this.size=0;if(g){g=u(g);for(var k;!(k=g.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.entries\|\|typeof Object.seal!="function")return!1;try{var g=Object.seal({x:4}),k=new a(u
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 67 29 7b 72 65 74 75 72 6e 20 67 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 67 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 3b 76 61 72 20 68 3d 30 3b 72 65 74 75 72 6e 20 65 7d 29 3b 66 75 6e 63 74 69 6f 6e 20 76 61 28 61 2c 62 29 7b 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 61 2b 3d 22 22 29 3b 76 61 Data Ascii: g){return g.value})};e.prototype.forEach=function(g,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,g.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.prototype.entries;var h=0;return e});function va(a,b){a instanceof String&&(a+="");va
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 68 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 68 2c 66 2c 64 29 29 7b 62 3d 68 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 20 30 7d 72 65 74 75 72 6e 20 62 7d 7d 29 3b 71 28 22 4f 62 6a 65 63 74 2e 65 6e 74 72 69 65 73 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 29 7b 76 61 72 20 63 3d 5b 5d 2c 64 3b 66 6f 72 28 64 Data Ascii: ",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var h=d[f];if(b.call(c,h,f,d)){b=h;break a}}b=void 0}return b}});q("Object.entries",function(a){return a?a:function(b){var c=[],d;for(d

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:04 UTC	1610	OUT	GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol114%2Cpid-bodis-gcontrol458%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol160&client=dp-bodis30_3ph&r=m&hl=en&ivt=1&rpbu=http%3A%2F%2Fww25.crewmak.ru%2F%3Fcaf%3D1%26bpt%3D345%26utm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0130-56a6-849b-06236fbe5a9e&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2168508906786538&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300002%2C17301431%2C17301433%2C17301436%2C17301266%2C72717108&format=r3&nocache=391734625112156&num=0&output=afd_ads&domain_name=ww25.crewmak.ru&v=3&bsl=8&pac=2&u_his=2&u_tz=-300&dt=1734625112157&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=rs&drt=0&jsid=caf&nfp=1&jsv=704712957&rurl=http%3A%2F%2Fww25.crewmak.ru%2Fuplcv%3Futm_term%3Ddiscovery%2Bobjections%2Bcheat%2Bsheet%2Btexas%26subid1%3D20241220-0130-56a6-849b-06236fbe5a9e HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: http://ww25.crewmak.ru/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:05 UTC	807	IN	HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Content-Disposition: inline Date: Thu, 19 Dec 2024 14:31:05 GMT Expires: Thu, 19 Dec 2024 14:31:05 GMT Cache-Control: private, max-age=3600 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-a541rnp2MajMnYeI_D0czw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Server: gws X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-12-19 14:31:05 UTC	583	IN	Data Raw: 33 36 35 30 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 20 3c 68 65 61 64 3e 20 3c 73 74 79 6c 65 20 69 64 3d 22 73 73 72 2d 62 6f 69 6c 65 72 70 6c 61 74 65 22 3e 62 6f 64 79 7b 2d 77 65 62 6b 69 74 2d 74 65 78 74 2d 73 69 7a 65 2d 61 64 6a 75 73 74 3a 31 30 30 25 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 72 67 69 6e 3a 30 3b 7d 2e 64 69 76 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 30 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 25 3b 7d 2e 73 70 61 6e 3a 6c 61 73 74 2d 63 68 69 6c 64 2c 20 2e 64 69 76 3a 6c 61 73 Data Ascii: 3650<!doctype html><html lang="en"> <head> <style id="ssr-boilerplate">body{-webkit-text-size-adjust:100%; font-family:arial,sans-serif; margin:0;}.div{-webkit-box-flex:0 0; -webkit-flex-shrink:0; flex-shrink:0;max-width:100%;}.span:last-child, .div:las
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 69 5f 7b 64 69 73 70 6c 61 79 3a 2d 6d 73 2d 66 6c 65 78 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 66 6c 65 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 20 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 2e 76 5f 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 Data Ascii: i_{display:-ms-flexbox; display:-webkit-box; display:-webkit-flex; display:flex;-ms-flex-align:start; -webkit-box-align:start; -webkit-align-items:flex-start; align-items:flex-start;box-sizing:border-box; overflow:hidden;}.v_{-webkit-box-flex:1 0; -webkit
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 5f 7b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 2e 6f 5f 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 7d 2e 78 5f 7b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 7d 2e 79 5f 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 7a 2d 69 6e 64 65 78 3a 31 3b 7d 2e 6b 5f 3e 64 69 76 3a 6e 6f 74 28 2e 79 5f 29 20 7b 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 69 6e 6c 69 6e 65 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 6d 6f 7a 2d 69 6e 6c 69 6e 65 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 6d 73 2d 69 6e 6c 69 6e 65 2d 66 6c 65 78 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 69 6e 6c 69 6e 65 2d 66 6c 65 78 3b 20 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 66 Data Ascii: _{overflow:hidden;}.o_{white-space:nowrap;}.x_{cursor:pointer;}.y_{display:none; position:absolute; z-index:1;}.k_>div:not(.y_) {display:-webkit-inline-box; display:-moz-inline-box; display:-ms-inline-flexbox; display:-webkit-inline-flex; display:inline-f
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 73 74 61 72 74 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 7d 2e 66 6c 65 78 41 6c 69 67 6e 42 6f 74 74 6f 6d 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 3b 7d 2e 66 6c 65 78 41 6c 69 67 6e 43 65 6e 74 65 72 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 Data Ascii: start; align-items:flex-start;}.flexAlignBottom{-ms-flex-align:end; -webkit-box-align:end; -webkit-align-items:flex-end; align-items:flex-end;}.flexAlignCenter{-ms-flex-align:center; -webkit-box-align:center; -webkit-align-items:center; align-items:center
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 7d 2e 73 69 31 30 32 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 31 36 70 78 3b 68 65 69 67 68 74 3a 30 70 78 3b 77 69 64 74 68 3a 30 70 78 3b 7d 2e 73 69 31 33 33 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 32 62 32 62 32 62 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 32 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 35 70 78 3b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 31 30 70 78 3b 63 6f 6c 6f 72 3a 23 39 32 39 31 39 32 3b 7d 2e 73 69 31 33 35 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 32 62 32 62 32 62 3b 68 65 Data Ascii: ebkit-box-flex:1 0; -webkit-flex-shrink:1; flex-shrink:1;}.si102{border-radius:16px;height:0px;width:0px;}.si133{background-color:#2b2b2b;border-radius:2px;font-size:14px;margin-bottom:5px;margin-left:10px;color:#929192;}.si135{background-color:#2b2b2b;he
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 70 5f 20 73 69 31 33 33 20 73 70 61 6e 22 3e 52 65 6c 61 74 65 64 20 73 65 61 72 63 68 65 73 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 69 64 3d 22 65 31 22 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 20 63 6c 69 63 6b 74 72 61 63 6b 65 64 41 64 5f 6a 73 20 73 69 31 30 31 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 Data Ascii: le="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;"><span class="p_ si133 span">Related searches</span></div><div id="e1" class="i_ div clicktrackedAd_js si101" style="-ms-flex-direction:row; -webkit
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 22 3e 3c 64 69 76 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 20 74 61 62 69 6e 64 65 78 3d 22 2d 31 22 20 63 6c 61 73 73 3d 22 64 69 76 20 71 5f 20 73 69 31 30 32 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 61 66 73 2e 67 6f 6f 67 6c 65 75 73 65 72 63 6f 6e 74 65 6e 74 2e 63 6f 6d 2f 61 64 5f 69 63 Data Ascii: -items:center;"><div class="i_ div" style="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;"><div aria-hidden="true" tabindex="-1" class="div q_ si102"><img src="https://afs.googleusercontent.com/ad_ic
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 69 6f 61 30 69 67 4d 56 4b 55 4c 78 41 78 32 41 58 42 52 49 45 6d 55 42 6c 4c 71 70 6a 30 78 35 44 51 32 57 74 7a 43 57 37 74 58 67 67 7a 77 46 6e 49 63 71 51 48 54 68 51 45 43 69 45 46 6d 6d 55 39 62 62 78 7a 58 57 38 36 61 5f 7a 48 4b 7a 5a 63 64 4a 56 59 76 6c 7a 74 48 77 56 75 36 39 59 50 52 64 39 71 4e 39 51 43 71 4a 41 54 2d 52 65 65 2d 4b 57 30 6b 73 64 72 7a 77 33 6a 58 68 57 55 39 39 4a 78 4c 65 54 4c 73 6b 66 32 43 74 2d 70 6e 71 63 4c 36 44 4a 46 79 6f 63 79 41 42 26 61 6d 70 3b 70 63 73 61 3d 66 61 6c 73 65 22 20 64 61 74 61 2d 6e 62 3d 22 30 22 20 74 61 72 67 65 74 3d 22 5f 74 6f 70 22 20 63 6c 61 73 73 3d 22 69 5f 20 61 20 73 69 31 34 34 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 Data Ascii: ioa0igMVKULxAx2AXBRIEmUBlLqpj0x5DQ2WtzCW7tXggzwFnIcqQHThQECiEFmmU9bbxzXW86a_zHKzZcdJVYvlztHwVu69YPRd9qN9QCqJAT-Ree-KW0ksdrzw3jXhWU99JxLeTLskf2Ct-pnqcL6DJFyocyAB&pcsa=false" data-nb="0" target="_top" class="i_ a si144" style="-ms-flex-direction:row; -w
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 61 63 6b 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 6e 74 65 72 3b 20 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 6e 74 65 72 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 22 3e 3c 73 70 61 6e 20 64 61 74 61 2d 6c 69 6e 65 73 3d 22 31 22 20 64 61 74 61 2d 74 72 75 6e 63 61 74 65 3d 22 30 22 20 63 6c 61 73 73 3d 22 6d 5f 20 6e 5f 20 73 69 33 34 20 73 70 61 6e 22 3e 42 75 79 20 61 20 54 79 72 65 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 64 69 76 Data Ascii: ack:center; -webkit-justify-content:center; justify-content:center;-ms-flex-align:center; -webkit-box-align:center; -webkit-align-items:center; align-items:center;"><span data-lines="1" data-truncate="0" class="m_ n_ si34 span">Buy a Tyre</span></div><div
2024-12-19 14:31:05 UTC	1390	IN	Data Raw: 6c 61 73 73 3d 22 69 5f 20 64 69 76 20 73 69 36 39 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 6e 74 65 72 3b 20 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 6e 74 65 72 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 Data Ascii: lass="i_ div si69" style="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;-ms-flex-pack:center; -webkit-box-pack:center; -webkit-justify-content:center; justify-content:center;-ms-flex-align:center; -w

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:07 UTC	555	OUT	GET /adsense/domains/caf.js?pac=2 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:08 UTC	717	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 146835 Date: Thu, 19 Dec 2024 14:31:07 GMT Expires: Thu, 19 Dec 2024 14:31:07 GMT Cache-Control: private, max-age=3600 ETag: "8997441194165875752" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-19 14:31:08 UTC	673	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 68 61 73 68 3a 22 34 30 38 38 36 30 32 33 35 37 34 32 31 39 33 35 37 37 36 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 30 30 30 31 2c 31 37 33 30 31 34 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"syndicatedsearch.goog",hash:"4088602357421935776",packages:"domains",module:"ads",version:"1",m:{cei:"17300001,173014
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 7d 2c 6d 64 70 3a 31 38 30 30 30 30 30 2c 73 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 4c 6d 39 79 5a 79 78 70 62 69 35 75 5a 58 51 73 64 48 4a 68 62 6e 4e 73 59 58 52 6c 4c 6d 64 76 62 32 63 73 64 57 73 75 59 32 39 74 4c 48 56 7a 4c 6d 4e 76 62 53 78 33 5a 57 49 75 59 58 42 77 22 2c 63 64 6c 3a 66 61 6c 73 65 2c 63 64 68 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 63 64 65 6d 3a 7b 22 61 66 73 5f 61 61 5f 62 61 73 65 6c 69 6e 65 22 3a 35 30 30 2c 22 61 66 73 5f 63 68 61 74 62 6f 74 22 3a 30 Data Ascii: },mdp:1800000,ssdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRvLm9yZyxpbi5uZXQsdHJhbnNsYXRlLmdvb2csdWsuY29tLHVzLmNvbSx3ZWIuYXBw",cdl:false,cdh:"syndicatedsearch.goog",cdem:{"afs_aa_baseline":500,"afs_chatbot":0
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 68 69 73 2e 68 65 7d 3b 76 61 72 20 64 3d 22 6a 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 43 6c 61 6d 70 65 64 41 72 72 61 79 20 49 6e 74 31 36 41 72 72 61 79 20 55 69 6e 74 31 36 41 72 72 61 79 20 49 6e 74 33 32 41 72 72 61 79 20 55 69 6e 74 33 32 41 72 72 61 79 20 46 6c 6f 61 Data Ascii: his.he};var d="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array Uint8ClampedArray Int16Array Uint16Array Int32Array Uint32Array Floa
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 20 61 6e 20 69 74 65 72 61 62 6c 65 20 6f 72 20 41 72 72 61 79 4c 69 6b 65 22 29 3b 7d 0a 66 75 6e 63 74 69 6f 6e 20 6f 61 28 61 29 7b 69 66 28 21 28 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 41 72 72 61 79 29 29 7b 61 3d 75 28 61 29 3b 66 6f 72 28 76 61 72 20 62 2c 63 3d 5b 5d 3b 21 28 62 3d 61 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 63 2e 70 75 73 68 28 62 2e 76 61 6c 75 65 29 3b 61 3d 63 7d 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 70 61 28 61 29 7b 72 65 74 75 72 6e 20 71 61 28 61 2c 61 29 7d 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 72 61 77 3d 62 3b 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 26 26 28 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 61 29 2c 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 62 29 29 3b 72 65 74 75 72 6e 20 Data Ascii: an iterable or ArrayLike");}function oa(a){if(!(a instanceof Array)){a=u(a);for(var b,c=[];!(b=a.next()).done;)c.push(b.value);a=c}return a}function pa(a){return qa(a,a)}function qa(a,b){a.raw=b;Object.freeze&&(Object.freeze(a),Object.freeze(b));return
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 68 29 3a 74 68 69 73 2e 47 64 28 68 29 7d 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 41 66 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 76 61 72 20 67 3d 76 6f 69 64 20 30 3b 74 72 79 7b 67 3d 68 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 56 63 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 67 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 47 66 28 67 2c 68 29 3a 74 68 69 73 2e 47 64 28 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 56 63 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 32 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 47 64 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 31 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 58 64 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 67 29 7b 69 66 Data Ascii: h):this.Gd(h)}};b.prototype.Af=function(h){var g=void 0;try{g=h.then}catch(k){this.Vc(k);return}typeof g=="function"?this.Gf(g,h):this.Gd(h)};b.prototype.Vc=function(h){this.Xd(2,h)};b.prototype.Gd=function(h){this.Xd(1,h)};b.prototype.Xd=function(h,g){if
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 6c 29 2c 6b 28 67 2c 6d 29 29 3b 72 65 74 75 72 6e 20 6e 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 6a 62 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 0a 67 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 41 29 7b 63 61 73 65 20 31 3a 68 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 67 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 6f 72 28 22 55 6e 65 78 70 65 63 74 65 64 20 73 74 61 74 65 3a 20 22 2b 6c 2e 41 29 3b 7d 7d 76 61 72 20 6c 3d 74 68 69 73 3b 74 68 69 73 2e 75 61 3d 3d 6e 75 6c 6c 3f 66 2e 71 64 28 6b Data Ascii: l),k(g,m));return n};b.prototype.catch=function(h){return this.then(void 0,h)};b.prototype.jb=function(h,g){function k(){switch(l.A){case 1:h(l.Xa);break;case 2:g(l.Xa);break;default:throw Error("Unexpected state: "+l.A);}}var l=this;this.ua==null?f.qd(k
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 2c 68 2c 7b 76 61 6c 75 65 3a 6c 7d 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6c 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 0a 6d 3d 6e 65 77 20 61 28 5b 5b 6b 2c 32 5d 2c 5b 6c 2c 33 5d 5d 29 3b 69 66 28 Data Ascii: ,h,{value:l})}}function f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k=Object.seal({}),l=Object.seal({}),m=new a([[k,2],[l,3]]);if(
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 64 20 30 7d 7d 66 75 6e 63 74 69 6f 6e 20 65 28 67 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 67 29 7b 67 3d 75 28 67 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 67 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 7c 7c 74 79 70 65 6f 66 20 4f 62 6a 65 63 74 2e 73 65 61 6c 21 3d 22 66 75 6e 63 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 67 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 Data Ascii: d 0}}function e(g){this[0]={};this[1]=b();this.size=0;if(g){g=u(g);for(var k;!(k=g.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.entries\|\|typeof Object.seal!="function")return!1;try{var g=Object.seal(
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 63 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 20 67 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 67 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 3b 76 61 72 20 68 3d 30 3b 72 65 74 75 72 6e 20 65 7d 29 3b 66 75 6e 63 74 69 6f 6e 20 76 61 28 61 2c 62 29 7b 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 Data Ascii: c(this,function(g){return g.value})};e.prototype.forEach=function(g,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,g.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.prototype.entries;var h=0;return e});function va(a,b){a instanceof St
2024-12-19 14:31:08 UTC	1390	IN	Data Raw: 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 69 6e 64 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 68 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 68 2c 66 2c 64 29 29 7b 62 3d 68 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 20 30 7d 72 65 74 75 72 6e 20 62 7d 7d 29 3b 71 28 22 4f 62 6a 65 63 74 2e 65 6e 74 72 69 65 73 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 29 7b Data Ascii: y.prototype.find",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var h=d[f];if(b.call(c,h,f,d)){b=h;break a}}b=void 0}return b}});q("Object.entries",function(a){return a?a:function(b){

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:10 UTC	864	OUT	GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=s8p049e0js9w&aqid=KS5kZ6rTAqS4hcIPv4XzoA0&psid=3113057640&pbt=bs&adbx=290&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=4%7C0%7C2854%7C3179%7C36&lle=0&ifv=1&hpt=0 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: http://ww25.crewmak.ru/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:10 UTC	715	IN	HTTP/1.1 204 No Content Content-Type: text/html; charset=UTF-8 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-mHtZZ5HHx4cwJRSJVznJ_A' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Permissions-Policy: unload=() Date: Thu, 19 Dec 2024 14:31:10 GMT Server: gws Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:10 UTC	373	OUT	GET /adsense/domains/caf.js?pac=2 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:11 UTC	717	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 146825 Date: Thu, 19 Dec 2024 14:31:11 GMT Expires: Thu, 19 Dec 2024 14:31:11 GMT Cache-Control: private, max-age=3600 ETag: "1370697830765293227" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-19 14:31:11 UTC	673	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 68 61 73 68 3a 22 34 30 38 38 36 30 32 33 35 37 34 32 31 39 33 35 37 37 36 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 30 30 30 32 2c 31 37 33 30 31 34 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"syndicatedsearch.goog",hash:"4088602357421935776",packages:"domains",module:"ads",version:"1",m:{cei:"17300002,173014
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 30 30 30 30 2c 73 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 4c 6d 39 79 5a 79 78 70 62 69 35 75 5a 58 51 73 64 48 4a 68 62 6e 4e 73 59 58 52 6c 4c 6d 64 76 62 32 63 73 64 57 73 75 59 32 39 74 4c 48 56 7a 4c 6d 4e 76 62 53 78 33 5a 57 49 75 59 58 42 77 22 2c 63 64 6c 3a 66 61 6c 73 65 2c 63 64 68 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 63 64 65 6d 3a 7b 22 61 66 73 5f 61 61 5f 62 61 73 65 6c 69 6e 65 22 3a 35 30 30 2c 22 61 66 73 5f 63 68 61 74 62 6f 74 22 3a 30 2c 22 61 66 73 5f 63 68 61 Data Ascii: 0000,ssdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRvLm9yZyxpbi5uZXQsdHJhbnNsYXRlLmdvb2csdWsuY29tLHVzLmNvbSx3ZWIuYXBw",cdl:false,cdh:"syndicatedsearch.goog",cdem:{"afs_aa_baseline":500,"afs_chatbot":0,"afs_cha
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 72 20 64 3d 22 6a 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 43 6c 61 6d 70 65 64 41 72 72 61 79 20 49 6e 74 31 36 41 72 72 61 79 20 55 69 6e 74 31 36 41 72 72 61 79 20 49 6e 74 33 32 41 72 72 61 79 20 55 69 6e 74 33 32 41 72 72 61 79 20 46 6c 6f 61 74 33 32 41 72 72 61 79 20 46 Data Ascii: r d="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array Uint8ClampedArray Int16Array Uint16Array Int32Array Uint32Array Float32Array F
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 6c 65 20 6f 72 20 41 72 72 61 79 4c 69 6b 65 22 29 3b 7d 0a 66 75 6e 63 74 69 6f 6e 20 6f 61 28 61 29 7b 69 66 28 21 28 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 41 72 72 61 79 29 29 7b 61 3d 75 28 61 29 3b 66 6f 72 28 76 61 72 20 62 2c 63 3d 5b 5d 3b 21 28 62 3d 61 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 63 2e 70 75 73 68 28 62 2e 76 61 6c 75 65 29 3b 61 3d 63 7d 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e 20 70 61 28 61 29 7b 72 65 74 75 72 6e 20 71 61 28 61 2c 61 29 7d 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 72 61 77 3d 62 3b 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 26 26 28 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 61 29 2c 4f 62 6a 65 63 74 2e 66 72 65 65 7a 65 28 62 29 29 3b 72 65 74 75 72 6e 20 61 7d 66 75 6e 63 74 69 6f 6e Data Ascii: le or ArrayLike");}function oa(a){if(!(a instanceof Array)){a=u(a);for(var b,c=[];!(b=a.next()).done;)c.push(b.value);a=c}return a}function pa(a){return qa(a,a)}function qa(a,b){a.raw=b;Object.freeze&&(Object.freeze(a),Object.freeze(b));return a}function
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 28 68 29 7d 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 41 66 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 76 61 72 20 67 3d 76 6f 69 64 20 30 3b 74 72 79 7b 67 3d 68 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 56 63 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 67 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 47 66 28 67 2c 68 29 3a 74 68 69 73 2e 47 64 28 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 56 63 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 32 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 47 64 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 74 68 69 73 2e 58 64 28 31 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 58 64 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 67 29 7b 69 66 28 74 68 69 73 2e 41 21 3d 30 Data Ascii: (h)}};b.prototype.Af=function(h){var g=void 0;try{g=h.then}catch(k){this.Vc(k);return}typeof g=="function"?this.Gf(g,h):this.Gd(h)};b.prototype.Vc=function(h){this.Xd(2,h)};b.prototype.Gd=function(h){this.Xd(1,h)};b.prototype.Xd=function(h,g){if(this.A!=0
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 3b 72 65 74 75 72 6e 20 6e 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 68 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 6a 62 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 0a 67 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 41 29 7b 63 61 73 65 20 31 3a 68 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 67 28 6c 2e 58 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 6f 72 28 22 55 6e 65 78 70 65 63 74 65 64 20 73 74 61 74 65 3a 20 22 2b 6c 2e 41 29 3b 7d 7d 76 61 72 20 6c 3d 74 68 69 73 3b 74 68 69 73 2e 75 61 3d 3d 6e 75 6c 6c 3f 66 2e 71 64 28 6b 29 3a 74 68 69 73 2e 75 61 2e Data Ascii: ;return n};b.prototype.catch=function(h){return this.then(void 0,h)};b.prototype.jb=function(h,g){function k(){switch(l.A){case 1:h(l.Xa);break;case 2:g(l.Xa);break;default:throw Error("Unexpected state: "+l.A);}}var l=this;this.ua==null?f.qd(k):this.ua.
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 6c 7d 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 6c 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 7d 29 2c 0a 6d 3d 6e 65 77 20 61 28 5b 5b 6b 2c 32 5d 2c 5b 6c 2c 33 5d 5d 29 3b 69 66 28 6d 2e 67 65 74 28 6b 29 21 3d Data Ascii: l})}}function f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k=Object.seal({}),l=Object.seal({}),m=new a([[k,2],[l,3]]);if(m.get(k)!=
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 69 6f 6e 20 65 28 67 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 67 29 7b 67 3d 75 28 67 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 67 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 7c 7c 74 79 70 65 6f 66 20 4f 62 6a 65 63 74 2e 73 65 61 6c 21 3d 22 66 75 6e 63 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 67 3d 4f 62 6a 65 63 74 2e 73 65 61 6c 28 7b 78 3a 34 7d 29 2c 6b 3d 6e Data Ascii: ion e(g){this[0]={};this[1]=b();this.size=0;if(g){g=u(g);for(var k;!(k=g.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.entries\|\|typeof Object.seal!="function")return!1;try{var g=Object.seal({x:4}),k=n
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 20 67 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 67 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 3b 76 61 72 20 68 3d 30 3b 72 65 74 75 72 6e 20 65 7d 29 3b 66 75 6e 63 74 69 6f 6e 20 76 61 28 61 2c 62 29 7b 61 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 61 2b 3d Data Ascii: ction(g){return g.value})};e.prototype.forEach=function(g,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,g.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.prototype.entries;var h=0;return e});function va(a,b){a instanceof String&&(a+=
2024-12-19 14:31:11 UTC	1390	IN	Data Raw: 65 2e 66 69 6e 64 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 68 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 68 2c 66 2c 64 29 29 7b 62 3d 68 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 20 30 7d 72 65 74 75 72 6e 20 62 7d 7d 29 3b 71 28 22 4f 62 6a 65 63 74 2e 65 6e 74 72 69 65 73 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 29 7b 76 61 72 20 63 3d 5b 5d 2c 64 Data Ascii: e.find",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var h=d[f];if(b.call(c,h,f,d)){b=h;break a}}b=void 0}return b}});q("Object.entries",function(a){return a?a:function(b){var c=[],d

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:10 UTC	737	OUT	GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1 Host: afs.googleusercontent.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc= Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:11 UTC	800	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers Cross-Origin-Opener-Policy: same-origin; report-to="afs-native-asset-managers" Report-To: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} Content-Length: 200 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 19 Dec 2024 05:23:55 GMT Expires: Fri, 20 Dec 2024 04:23:55 GMT Cache-Control: public, max-age=82800 Age: 32836 Last-Modified: Thu, 02 Nov 2023 22:48:00 GMT Content-Type: image/svg+xml Vary: Accept-Encoding Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-19 14:31:11 UTC	200	IN	Data Raw: 3c 73 76 67 20 66 69 6c 6c 3d 27 23 30 32 31 39 38 62 27 20 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 20 77 69 64 74 68 3d 22 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 30 20 30 68 32 34 76 32 34 48 30 7a 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 2f 3e 3c 70 61 74 68 20 64 3d 22 4d 35 2e 38 38 20 34 2e 31 32 4c 31 33 2e 37 36 20 31 32 6c 2d 37 2e 38 38 20 37 2e 38 38 4c 38 20 32 32 6c 31 30 2d 31 30 4c 38 20 32 7a 22 2f 3e 3c 2f 73 76 67 3e Data Ascii: <svg fill='#02198b' xmlns="http://www.w3.org/2000/svg" height="24" viewBox="0 0 24 24" width="24"><path d="M0 0h24v24H0z" fill="none"/><path d="M5.88 4.12L13.76 12l-7.88 7.88L8 22l10-10L8 2z"/></svg>

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:12 UTC	864	OUT	GET /afs/gen_204?client=dp-bodis30_3ph&output=uds_ads_only&zx=xs4pb1xirkwp&aqid=KS5kZ6rTAqS4hcIPv4XzoA0&psid=3113057640&pbt=bv&adbx=290&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis30_3ph&errv=704712957&csala=4%7C0%7C2854%7C3179%7C36&lle=0&ifv=1&hpt=0 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: http://ww25.crewmak.ru/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:12 UTC	715	IN	HTTP/1.1 204 No Content Content-Type: text/html; charset=UTF-8 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-9krttGuzmIznD0YFwzoVSQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Permissions-Policy: unload=() Date: Thu, 19 Dec 2024 14:31:12 GMT Server: gws Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-12-19 14:31:13 UTC	509	OUT	GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIlaHLAQiFoM0BCLnKzQEIitPNARj1yc0BGOuNpRc= Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-12-19 14:31:14 UTC	800	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers Cross-Origin-Opener-Policy: same-origin; report-to="afs-native-asset-managers" Report-To: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} Content-Length: 444 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 19 Dec 2024 05:23:55 GMT Expires: Fri, 20 Dec 2024 04:23:55 GMT Cache-Control: public, max-age=82800 Age: 32838 Last-Modified: Tue, 27 Jun 2023 17:28:00 GMT Content-Type: image/svg+xml Vary: Accept-Encoding Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-12-19 14:31:14 UTC	444	IN	Data Raw: 3c 73 76 67 20 66 69 6c 6c 3d 27 23 66 66 66 66 66 66 27 20 20 78 6d 6c 6e 73 3a 64 63 3d 22 68 74 74 70 3a 2f 2f 70 75 72 6c 2e 6f 72 67 2f 64 63 2f 65 6c 65 6d 65 6e 74 73 2f 31 2e 31 2f 22 20 78 6d 6c 6e 73 3a 63 63 3d 22 68 74 74 70 3a 2f 2f 63 72 65 61 74 69 76 65 63 6f 6d 6d 6f 6e 73 2e 6f 72 67 2f 6e 73 23 22 20 78 6d 6c 6e 73 3a 72 64 66 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 30 32 2f 32 32 2d 72 64 66 2d 73 79 6e 74 61 78 2d 6e 73 23 22 20 78 6d 6c 6e 73 3a 73 76 67 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f Data Ascii: <svg fill='#ffffff' xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:cc="http://creativecommons.org/ns#" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:svg="http://www.w3.org/2000/svg" xmlns="http://www.w3.org/2000/svg" height="24" viewBo