Source: http://www.goo.su/c1Rnox/ |
SlashNext: detection malicious, Label: Fraudulent Website type: Phishing & Social Engineering |
Source: enduresopens.com |
Virustotal: Detection: 5% |
Perma Link |
Source: http://www.goo.su/c1Rnox/ |
Virustotal: Detection: 5% |
Perma Link |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Form action: https://www.technohelp.ru/ liveinternet technohelp |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Iframe src: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-9165516179791802&output=html&adk=1812271804&adf=3025194257&abgtt=4&lmt=1727570731&plat=3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.liveinternet.ru%2F&pra=5&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aifgd=1&aipaq=1&aipecl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1727570728287&bpp=410&bdt=1682&idt=3603&shv=r20240925&mjsv=m202409260101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&nras=1&correlator=3653163056702&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C95339781%2C31087426%2C31087431%2C31087437%2C31087440%2C44798934%2C95331833%2C31087565%2C95335247&oid=2&pvsid=1304130316234422&tmod=555371574&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=49152&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=3741 |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Iframe src: https://googleads.g.doubleclick.net/pagead/html/r20240925/r20110914/zrt_lookup_fy2021.html |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Base64 decoded: [null,null,null,3] |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Form action: /journal_redirect.php |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Form action: https://www.liveinternet.ru/member.php |
Source: https://www.liveinternet.ru/ |
HTTP Parser: Form action: https://g.liveinternet.ru/auth/setcookie.php |
Source: https://www.liveinternet.ru/ |
HTTP Parser: <input type="password" .../> found |
Source: https://www.goo.su/c1Rnox/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/c1Rnox/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/c1Rnox/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/c1Rnox/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.goo.su/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No favicon |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No <meta name="author".. found |
Source: https://www.liveinternet.ru/ |
HTTP Parser: No <meta name="copyright".. found |
Source: unknown |
HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49796 version: TLS 1.0 |
Source: unknown |
HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49718 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.5:49728 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 83.222.109.51:443 -> 192.168.2.5:50405 version: TLS 1.2 |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
HTTP traffic: Redirect from: yandex.ru to https://playhop.com/?clid=4446395&utm_medium=rsya&utm_source=yandex&utm_campaign=en_all_playhop_y_rsya_general_video_desk_tier_main_usa_epk_wide_int460_06.08|113461274&utm_content=k50id|0100000052717834411_52717834411|cid|113461274|gid|5479291355|aid|16399815841|adp|no|pos|none0|src|context_www.goo.su|dvc|desktop|main&k50id=0100000052717834411_52717834411&utm_term=---autotargeting&yclid=1850220880566943743 |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
HTTP traffic: Redirect from: yandex.ru to https://playhop.com/?clid=4446395&utm_medium=rsya&utm_source=yandex&utm_campaign=en_all_playhop_y_rsya_general_video_desk_tier_main_usa_epk_wide_int460_06.08|113461274&utm_content=k50id|0100000052717834411_52717834411|cid|113461274|gid|5479291355|aid|16399815842|adp|no|pos|none0|src|context_www.liveinternet.ru|dvc|desktop|main&k50id=0100000052717834411_52717834411&utm_term=---autotargeting&yclid=12545672572499132415 |
Source: global traffic |
DNS traffic detected: number of DNS queries: 111 |
Source: unknown |
HTTPS traffic detected: 23.1.237.91:443 -> 192.168.2.5:49796 version: TLS 1.0 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 184.28.90.27 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.1.237.91 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 195.201.198.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 194.190.76.35 |
Source: global traffic |
HTTP traffic detected: GET /c1Rnox/ HTTP/1.1Host: www.goo.suConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /ttkXIvunodY/69489 HTTP/1.1Host: enduresopens.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /metrika/tag.js HTTP/1.1Host: mc.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /top100/top100.js HTTP/1.1Host: st.top100.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /system/context.js HTTP/1.1Host: an.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /hit?t44.11;r;s1280*1024*24;uhttps%3A//www.goo.su/c1Rnox/;hNot%20Found;0.9926144367812813 HTTP/1.1Host: counter.yadro.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /js/code.js HTTP/1.1Host: top-fwz1.mail.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /hit?q;t44.11;r;s1280*1024*24;uhttps%3A//www.goo.su/c1Rnox/;hNot%20Found;0.9926144367812813 HTTP/1.1Host: counter.yadro.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: FTID=1c-ABv3WT-8t1c-ABv002BH8 |
Source: global traffic |
HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic |
HTTP traffic detected: GET /counter-static/images/top100_0062b1.gif HTTP/1.1Host: kraken.rambler.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1Host: yastatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.goo.susec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.goo.su/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /ads/meta/1677322?target-ref=https%3A%2F%2Fwww.goo.su%2Fc1Rnox%2F&pcode-version=1124850&pcodever=1124850&comboblock-unencoded-vast=1&ad-session-id=9084661727570681925&target-id=70005461&pcode-test-ids=918196%2C0%2C17%3B1094009%2C0%2C86%3B1120555%2C0%2C75%3B1123110%2C0%2C84%3B1120870%2C0%2C53%3B1114587%2C0%2C5%3B1108910%2C0%2C83%3B1098498%2C0%2C59%3B1106680%2C0%2C54%3B1094980%2C0%2C17%3B1099660%2C0%2C15%3B1112047%2C0%2C94%3B1112882%2C0%2C1%3B1123894%2C0%2C79%3B1112583%2C0%2C89%3B1035458%2C0%2C2%3B1116504%2C0%2C91%3B1116507%2C0%2C40%3B1121388%2C0%2C8%3B1121753%2C0%2C96%3B1110876%2C0%2C70%3B1111361%2C0%2C50%3B1110879%2C0%2C30%3B1110883%2C0%2C64%3B1085919%2C0%2C80%3B1121756%2C0%2C88%3B1110866%2C0%2C86%3B1122925%2C0%2C81%3B1124850%2C0%2C98&pcode-flags-map=eJy1Wdly20YW%2FRc%2Bmw72xW9NoEl2EVsaACkm5eqiR7StRBZdkuw4dunf53SjuQCkADmT0QuJpQ%2Fvfs%2B9%2BjGKWUkmCRVRXmeV4DRmnEaVYBkpitGb33%2BMvm5uv2xHb0YVr%2Bno1ehx%2B%2FDIrnHtW4bjWKOnt69GS1KKuqQirZOK8TxJgJZV8gvlYkWqaE5jUbGUinw6LWnVj2tbhu8fcDmt%2BFrkmchotcr5QlDOc96P4HqOHyoE%2BaN5XYmCUyXXUcIli2ku9PMWnGngr4UX2qFvDOBN6ukU2tK0qNYiYSnrgv404rIgLP73JZzW%2BP5PUTM44t%2BW9BnM%2F8k%2FlzH%2Ffxb4p96XET7jZCISms2qeesQ8is4PRYYgeE7h2PlPK%2BTWH6sBIkqBrkmdVXhg0FCEi3wpC3F9tvnUzzTsJ3APQLSKE9FVBGcjzglyGeNV7LfaAvo9kMbx3X94FgJaKYKSpJDI3o1IILneJ6njsoCsiaC1yLOUwIdpjkXJEYB%2BLWmZVX2pjyAAs8IDjJoiDxL1tIc0KpfDD8wg9Oak%2BZLqM9m0GImYiKNUtG07AcJPCs8urUgZSkjBXGh7AFVpCFFlYtlSooBqCCwGrNwRFUW5TEA0oLykmSx1Ai%2FUDU5EiUMvu6HCwPbcI%2BRU%2FMlXaOgriBfPuMUgk4IH4BwXcc7jxUSx3tjlwnEGQAJjROQKbtSGAklPBNpzvtPm3CRZx%2B1qJRZl7AJYr%2BdbqYZurbbPm05pt%2FYQKXthGQZMrbO2JRRadKK8imJekVww8DSrUlG62ShPFqqSG3qlYy1PJ3kfSieHzqGv3eu9AJ6XA0LkClkEMqfoprzvJ7N%2B%2FucaRpO0%2BfKlPBKIFFqKuhVISYJCgAKUdlKv99HnzY3t6%2FvvwDl783d9fYbvv9y82nzYfvQuvVh80nduf6%2BvWte33y9edw1Xz%2B9Prm4vrvRdyXyAQE37jffb3ffP%2BrH3%2B%2Bbzy%2F3m9d3278ezl74Y7P7dKOP7v6Un29bqrowfaMqrURMpwRORI7NqMjqdEJ7o9d3TVsX3DXyhlQsElMKr0%2BSHGZC71rNkd8X7MXHbGw5oYlaPDYBeXptda7tzrWjrsnYctFXfEufJ2M3CBzPHCNI9zc8qOfLH3jbKvehZzbJMi1Rh%2FJCJkyfmoFr22aTIBl0RAVDX6hJIuMzJZUkUZKXoSaLlGZ1P5QTWo3FZIDOikqUEWdFbzUPQN1CZy9xTMtFBaH3BBMWFqpOSKf1woSof%2BEehtMV4bHkj%2Bui91hoWYbuAAdOq1IJOk%2BZNEC3TJwBuHZgH7J7D7Jv%2FDLJ4zyqYToYo%2BKkojMQ00lJUU17wy%2B0HFdL9kzZmMK9stkNiIey1pS%2FVq1RfAbeoTRTLBwBzpWzl6xkE5aw6iBmLz5aRNDEW%2FzbHmpBE1oNmc0MrEaufVrCXDAQJakCIQnKmg7IE5EOJqRXUVKjv6UcLLJfQs8xj21MYs%2FRDiXXYNlCe7thDVWdDSjrW27jkpKkknhkMb3Snaz3oG%2F4XtiKsrygGa8mstcXSCw0tEmdLHpBQtfRfQSvz8Sckrg%2FhFBBAtcz1RFSrrOoqfWnR36MHraPs |