Edit tour

Windows Analysis Report
http://www.waterbarriers.us

Overview

General Information

Sample URL:	http://www.waterbarriers.us
Analysis ID:	1530839
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

HTML page contains hidden javascript code

Stores files to the Windows start menu directory

Uses insecure TLS / SSL version for HTTPS connection

Classification

Process Tree

System is w10x64

chrome.exe (PID: 7132 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 3920 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1928,i,7871448077309435032,15508831204917086615,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 6328 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.waterbarriers.us" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: http://www.waterbarriers.us/

HTTP Parser: Base64 decoded: {"uuid":"820bd704-8380-4578-8532-30a3694d4917","page_time":1728567784,"page_url":"http://www.waterbarriers.us/","page_method":"GET","page_request":{},"page_headers":{},"host":"www.waterbarriers.us","ip":"8.46.123.33"}

Source: http://www.waterbarriers.us/	HTTP Parser: No favicon
Source: http://www.waterbarriers.us/	HTTP Parser: No favicon
Source: http://www.waterbarriers.us/	HTTP Parser: No favicon
Source: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2	HTTP Parser: No favicon
Source: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2	HTTP Parser: No favicon
Source: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2	HTTP Parser: No favicon
Source: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2	HTTP Parser: No favicon
Source: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d	HTTP Parser: No favicon
Source: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d	HTTP Parser: No favicon
Source: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d	HTTP Parser: No favicon

Source: unknown

HTTPS traffic detected: 23.206.229.209:443 -> 192.168.2.9:49740 version: TLS 1.0

Source: unknown	HTTPS traffic detected: 23.60.203.209:443 -> 192.168.2.9:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.60.203.209:443 -> 192.168.2.9:49728 version: TLS 1.2

Source: unknown

HTTPS traffic detected: 23.206.229.209:443 -> 192.168.2.9:49740 version: TLS 1.0

Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60

Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol113%2Cpid-bodis-gcontrol454%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol164&client=dp-bodis01_js&r=m&hl=en&ivt=1&rpbu=http%3A%2F%2Fwww.waterbarriers.us%2F%3Fcaf%3D1%26bpt%3D345&terms=Roof%20Repairs%2CRoofing%20Contractors%2CBuilding%20Contractors%2CResidential%20Roofing%20Repair%20Contractors%2CRoof%20Replacement%20Services%2CResidential%20Roofing%20Companies%2CRain%20Gutters%2CRoof%20Contractors&kw=Roof%20Repairs&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442%2C17301542%2C17301266%2C72717107&format=r3&nocache=6981728567784827&num=0&output=afd_ads&domain_name=www.waterbarriers.us&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1728567784828&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=rs&drt=0&jsid=caf&nfp=1&jsv=681010707&rurl=http%3A%2F%2Fwww.waterbarriers.us%2F HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?pac=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=phsapx8n67p3&aqid=6tkHZ-_eMbG8juwP-rCzMA&psid=3113057640&pbt=bs&adbx=281.5&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=6%7C0%7C1050%7C1249%7C65&lle=0&ifv=1&hpt=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=6y09cmasxazq&aqid=6tkHZ-_eMbG8juwP-rCzMA&psid=3113057640&pbt=bv&adbx=281.5&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=6%7C0%7C1050%7C1249%7C65&lle=0&ifv=1&hpt=0 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol113%2Cpid-bodis-gcontrol454%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol164&client=dp-bodis01_js&r=m&sct=ID%3D75e03cd36f6eea1c%3AT%3D1728567786%3ART%3D1728567786%3AS%3DALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ&sc_status=6&hl=en&ivt=1&rpbu=http%3A%2F%2Fwww.waterbarriers.us%2F%3Fcaf%3D1%26bpt%3D345%26query%3DRoof%2BRepairs%26afdToken%3DChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg%26pcsa%3Dfalse%26nb%3D0%26nm%3D13%26nx%3D354%26ny%3D61%26is%3D700x480%26clkt%3D2&terms=Roof%20Repairs%2CRoofing%20Contractors%2CBuilding%20Contractors%2CResidential%20Roofing%20Repair%20Contractors%2CRoof%20Replacement%20Services%2CResidential%20Roofing%20Companies%2CRain%20Gutters%2CRoof%20Contractors&kw=Roof%20Repairs&max_radlink_len=50&type=0&uiopt=false&swp=as-drid-2148305361097618&q=Roof%20Repairs&afdt=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442%2C17301542%2C17301266%2C72717107&format=n3&ad=n3&nocache=8761728567807807&num=0&output=afd_ads&domain_name=www.waterbarriers.us&v=3&bsl=8&pac=0&u_his=2&u_tz=-240&dt=1728567807807&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=ad-1&drt=0&jsid=caf&nfp=1&jsv=681010707&rurl=http%3A%2F%2Fwww.waterbarriers.us%2F%3Fcaf%3D1%26bpt%3D345%26query%3DRoof%2BRepairs%26afdToken%3DChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg%26pcsa%3Dfalse%26nb%3D0%26nm%3D13%26nx%3D354%26ny%3D61%26is%3D700x480%26clkt%3D2&referer=https%3A%2F%2Fsyndicatedsearch.goog%2F HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/ads/i/iframe.html HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-Modified-Since: Tue, 17 Sep 2024 06:00:00 GMT
Source: global traffic	HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=fs6kujsu28hl&aqid=AtoHZ7DeBeq1xdwP34KECQ&psid=3113057640&pbt=bs&adbx=381.5&adby=143&adbh=1468&adbw=500&adbah=506%2C481%2C481&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=24%7C0%7C1741%7C27%7C169&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=dtl54gln06hm&aqid=AtoHZ7DeBeq1xdwP34KECQ&psid=3113057640&pbt=bv&adbx=381.5&adby=143&adbh=1468&adbw=500&adbah=506%2C481%2C481&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=24%7C0%7C1741%7C27%7C169&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE HTTP/1.1Host: www.bullockbuilders.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE HTTP/1.1Host: bullockbuilders.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /markup/ad HTTP/1.1Host: bullockbuilders.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwEAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1
Source: global traffic	HTTP traffic detected: GET /pb.js HTTP/1.1Host: cdn.poynt.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pb.js HTTP/1.1Host: cdn.poynt.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bullock-builders HTTP/1.1Host: bullockbuilders.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwEAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _scc_session=pc=1&C_TOUCH=2024-10-10T13:43:51.326Z
Source: global traffic	HTTP traffic detected: GET /assets/reamaze-godaddy-loader.js HTTP/1.1Host: cdn.reamaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/reamaze-godaddy-loader.js HTTP/1.1Host: cdn.reamaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /accounts/9b768d3e-32db-4613-aa51-84050b3bccd0/config?fields[]=cart HTTP/1.1Host: api.ola.godaddy.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://bullockbuilders.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/reamaze-godaddy-loader.js HTTP/1.1Host: cdn.reamaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dist/embed.js HTTP/1.1Host: cart-checkout.secureserver.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g/api/cart/cart?cartNotifyTimeout=5000&websiteId=9b768d3e-32db-4613-aa51-84050b3bccd0&env=production&cartUrl=https://bullockbuilders.com/g/api/cart&websiteUrl=https://bullockbuilders.com HTTP/1.1Host: bullockbuilders.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://bullockbuilders.com/bullock-buildersAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _scc_session=pc=2&C_TOUCH=2024-10-10T13:43:58.320Z
Source: global traffic	HTTP traffic detected: GET /accounts/9b768d3e-32db-4613-aa51-84050b3bccd0/config?fields[]=cart HTTP/1.1Host: api.ola.godaddy.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dist/embed.js HTTP/1.1Host: cart-checkout.secureserver.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v3/recaptcha HTTP/1.1Host: contact.apps-api.instantpage.secureserver.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://bullockbuilders.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-4a2d2f460e7e1a00.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-07ba49083a3e026b.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-f7fb4d90a816b6ac.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-26072b358821acb0.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/9-f9d89c7cffe1ee17.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/c8b05f54-e0f91b073e7d8a8c.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v3/recaptcha HTTP/1.1Host: contact.apps-api.instantpage.secureserver.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LfjspgUAAAAABsbjG9id6qXQKZkqb6_Hpce6ui_ HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/358-f0bc955bf7e6d941.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-4a2d2f460e7e1a00.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/cart-d35bec9da452c38a.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/9-f9d89c7cffe1ee17.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/c8b05f54-e0f91b073e7d8a8c.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/heHYbIJv63MAslxxKW159/_buildManifest.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/heHYbIJv63MAslxxKW159/_ssgManifest.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-f7fb4d90a816b6ac.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?render=6LfjspgUAAAAABsbjG9id6qXQKZkqb6_Hpce6ui_ HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-07ba49083a3e026b.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-26072b358821acb0.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/heHYbIJv63MAslxxKW159/_buildManifest.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /manifest.webmanifest HTTP/1.1Host: bullockbuilders.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://bullockbuilders.com/bullock-buildersAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/heHYbIJv63MAslxxKW159/_ssgManifest.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/358-f0bc955bf7e6d941.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/websites/9b768d3e-32db-4613-aa51-84050b3bccd0/tax-settings HTTP/1.1Host: cart-checkout.secureserver.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://bullockbuilders.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/cart-d35bec9da452c38a.js HTTP/1.1Host: d2r4erd6f6ydft.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/settings/public/9b768d3e-32db-4613-aa51-84050b3bccd0 HTTP/1.1Host: gopay-checkout-settings.secureserver.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://bullockbuilders.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LfjspgUAAAAABsbjG9id6qXQKZkqb6_Hpce6ui_&co=aHR0cHM6Ly9idWxsb2NrYnVpbGRlcnMuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=y1nw7ffa8b4d HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/websites/9b768d3e-32db-4613-aa51-84050b3bccd0/tax-settings HTTP/1.1Host: cart-checkout.secureserver.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /g/api/checkout/v2/cart?websiteId=9b768d3e-32db-4613-aa51-84050b3bccd0 HTTP/1.1Host: bullockbuilders.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z
Source: global traffic	HTTP traffic detected: GET /v1/settings/public/9b768d3e-32db-4613-aa51-84050b3bccd0 HTTP/1.1Host: gopay-checkout-settings.secureserver.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfjspgUAAAAABsbjG9id6qXQKZkqb6_Hpce6ui_&co=aHR0cHM6Ly9idWxsb2NrYnVpbGRlcnMuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=y1nw7ffa8b4dAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/zEg4NaMiOUeKKZ2pqXY4HMvMf5VCq4avNU_6WgNs2Cw.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfjspgUAAAAABsbjG9id6qXQKZkqb6_Hpce6ui_&co=aHR0cHM6Ly9idWxsb2NrYnVpbGRlcnMuY29tOjQ0Mw..&hl=en&v=xds0rzGrktR88uEZ2JUvdgOY&size=invisible&cb=y1nw7ffa8b4dAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/zEg4NaMiOUeKKZ2pqXY4HMvMf5VCq4avNU_6WgNs2Cw.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/282429905966327?v=2.9.170&r=stable&domain=bullockbuilders.com&hme=d82868061a8c707cd31395a3055e7449daa03bd520872727258c39e6af34523e&ex_m=70%2C120%2C106%2C110%2C61%2C4%2C99%2C69%2C16%2C96%2C88%2C51%2C54%2C171%2C174%2C186%2C182%2C183%2C185%2C29%2C100%2C53%2C77%2C184%2C166%2C169%2C179%2C180%2C187%2C130%2C41%2C34%2C142%2C15%2C50%2C193%2C192%2C132%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C92%2C17%2C14%2C95%2C91%2C90%2C107%2C52%2C109%2C39%2C108%2C30%2C93%2C26%2C167%2C170%2C139%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C101%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C103%2C102%2C104%2C97%2C10%2C20%2C3%2C38%2C74%2C19%2C85%2C56%2C83%2C33%2C73%2C0%2C94%2C32%2C82%2C87%2C47%2C46%2C86%2C37%2C5%2C89%2C81%2C44%2C35%2C84%2C2%2C36%2C63%2C42%2C105%2C45%2C79%2C68%2C111%2C60%2C59%2C31%2C98%2C58%2C55%2C49%2C78%2C72%2C24%2C112 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/reamaze.js HTTP/1.1Host: cdn.reamaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /m/api/reamaze/v2/customers/auth?brand=9b768d3e-32db-4613-aa51-84050b3bccd0 HTTP/1.1Host: bullockbuilders.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/bullock-buildersAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z; _ga=GA1.1.1132907150.1728567838; _ga_BF2FDR6KMM=GS1.1.1728567838.1.1.1728567851.0.0.0; cookie_warning_dismissed=true; cookie_terms_accepted=true
Source: global traffic	HTTP traffic detected: GET /assets/reamaze.js HTTP/1.1Host: cdn.reamaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/brands/9b768d3e-32db-4613-aa51-84050b3bccd0/ping HTTP/1.1Host: cdn.reamaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://bullockbuilders.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /m/api/reamaze/v2/customers/auth?brand=9b768d3e-32db-4613-aa51-84050b3bccd0 HTTP/1.1Host: bullockbuilders.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z; _ga=GA1.1.1132907150.1728567838; _ga_BF2FDR6KMM=GS1.1.1728567838.1.1.1728567851.0.0.0; cookie_warning_dismissed=true; cookie_terms_accepted=true
Source: global traffic	HTTP traffic detected: GET /assets/reamaze-push.js HTTP/1.1Host: push.reamaze.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pusher/7.0.1/pusher.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/brands/9b768d3e-32db-4613-aa51-84050b3bccd0/ping HTTP/1.1Host: cdn.reamaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /assets/reamaze-push.js HTTP/1.1Host: push.reamaze.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=282429905966327&ev=PageView&dl=https%3A%2F%2Fbullockbuilders.com%2Fbullock-builders%23396c777d-6613-45bb-ace9-789a5a49aa9d&rl=https%3A%2F%2Fbullockbuilders.com%2F%3Fgad_source%3D5%26gclid%3DEAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE&if=false&ts=1728567855730&sw=1280&sh=1024&v=2.9.170&r=stable&ec=0&o=4126&fbp=fb.1.1728567855727.407407704672427350&cdl=API_unavailable&it=1728567851922&coo=false&exp=h2&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=282429905966327&ev=PageView&dl=https%3A%2F%2Fbullockbuilders.com%2Fbullock-builders%23396c777d-6613-45bb-ace9-789a5a49aa9d&rl=https%3A%2F%2Fbullockbuilders.com%2F%3Fgad_source%3D5%26gclid%3DEAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE&if=false&ts=1728567855730&sw=1280&sh=1024&v=2.9.170&r=stable&ec=0&o=4126&fbp=fb.1.1728567855727.407407704672427350&cdl=API_unavailable&it=1728567851922&coo=false&exp=h2&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://bullockbuilders.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/282429905966327?v=2.9.170&r=stable&domain=bullockbuilders.com&hme=d82868061a8c707cd31395a3055e7449daa03bd520872727258c39e6af34523e&ex_m=70%2C120%2C106%2C110%2C61%2C4%2C99%2C69%2C16%2C96%2C88%2C51%2C54%2C171%2C174%2C186%2C182%2C183%2C185%2C29%2C100%2C53%2C77%2C184%2C166%2C169%2C179%2C180%2C187%2C130%2C41%2C34%2C142%2C15%2C50%2C193%2C192%2C132%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C92%2C17%2C14%2C95%2C91%2C90%2C107%2C52%2C109%2C39%2C108%2C30%2C93%2C26%2C167%2C170%2C139%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C101%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C103%2C102%2C104%2C97%2C10%2C20%2C3%2C38%2C74%2C19%2C85%2C56%2C83%2C33%2C73%2C0%2C94%2C32%2C82%2C87%2C47%2C46%2C86%2C37%2C5%2C89%2C81%2C44%2C35%2C84%2C2%2C36%2C63%2C42%2C105%2C45%2C79%2C68%2C111%2C60%2C59%2C31%2C98%2C58%2C55%2C49%2C78%2C72%2C24%2C112 HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/pusher/7.0.1/pusher.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=282429905966327&ev=PageView&dl=https%3A%2F%2Fbullockbuilders.com%2Fbullock-builders%23396c777d-6613-45bb-ace9-789a5a49aa9d&rl=https%3A%2F%2Fbullockbuilders.com%2F%3Fgad_source%3D5%26gclid%3DEAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE&if=false&ts=1728567855730&sw=1280&sh=1024&v=2.9.170&r=stable&ec=0&o=4126&fbp=fb.1.1728567855727.407407704672427350&cdl=API_unavailable&it=1728567851922&coo=false&exp=h2&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sw.js HTTP/1.1Host: bullockbuilders.comConnection: keep-aliveCache-Control: max-age=0Accept: /Service-Worker: scriptSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: serviceworkerReferer: https://bullockbuilders.com/bullock-buildersUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z; _ga=GA1.1.1132907150.1728567838; _ga_BF2FDR6KMM=GS1.1.1728567838.1.1.1728567851.0.0.0; cookie_warning_dismissed=true; cookie_terms_accepted=true; _fbp=fb.1.1728567855727.407407704672427350
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=282429905966327&ev=PageView&dl=https%3A%2F%2Fbullockbuilders.com%2Fbullock-builders%23396c777d-6613-45bb-ace9-789a5a49aa9d&rl=https%3A%2F%2Fbullockbuilders.com%2F%3Fgad_source%3D5%26gclid%3DEAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE&if=false&ts=1728567855730&sw=1280&sh=1024&v=2.9.170&r=stable&ec=0&o=4126&fbp=fb.1.1728567855727.407407704672427350&cdl=API_unavailable&it=1728567851922&coo=false&exp=h2&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /welcome-1 HTTP/1.1Host: bullockbuilders.comConnection: keep-alivePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/sw.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z; _ga=GA1.1.1132907150.1728567838; _ga_BF2FDR6KMM=GS1.1.1728567838.1.1.1728567851.0.0.0; cookie_warning_dismissed=true; cookie_terms_accepted=true; _fbp=fb.1.1728567855727.407407704672427350
Source: global traffic	HTTP traffic detected: GET /bullock-builders HTTP/1.1Host: bullockbuilders.comConnection: keep-alivePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/sw.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z; _ga=GA1.1.1132907150.1728567838; _ga_BF2FDR6KMM=GS1.1.1728567838.1.1.1728567851.0.0.0; cookie_warning_dismissed=true; cookie_terms_accepted=true; _fbp=fb.1.1728567855727.407407704672427350
Source: global traffic	HTTP traffic detected: GET /bullock-builders HTTP/1.1Host: bullockbuilders.comConnection: keep-alivePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://bullockbuilders.com/sw.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: dps_site_id=us-east-1; _tccl_visitor=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; _tccl_visit=4bd0cd22-d20b-4fc5-bf9e-ecc152eba821; commerce_cart_9b768d3e-32db-4613-aa51-84050b3bccd0_locale=%22en-US%22; _scc_session=pc=3&C_TOUCH=2024-10-10T13:44:03.943Z; _ga=GA1.1.1132907150.1728567838; _ga_BF2FDR6KMM=GS1.1.1728567838.1.1.1728567851.0.0.0; cookie_warning_dismissed=true; cookie_terms_accepted=true; _fbp=fb.1.1728567855727.407407704672427350
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bvIYRmogX.js HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.waterbarriers.us/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Source: global traffic	HTTP traffic detected: GET /bvIYRmogX.js HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Source: global traffic	HTTP traffic detected: GET /_fd HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Source: global traffic	HTTP traffic detected: GET /?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Source: global traffic	HTTP traffic detected: GET /?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Source: global traffic	HTTP traffic detected: GET /bNAskrfrI.js HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Referer: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Source: global traffic	HTTP traffic detected: GET /bNAskrfrI.js HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Source: global traffic	HTTP traffic detected: GET /_fd?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Source: global traffic	HTTP traffic detected: GET /_tr HTTP/1.1Host: www.waterbarriers.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ

Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: Math.round(q);u["gtm.videoElapsedTime"]=Math.round(f);u["gtm.videoPercent"]=r;u["gtm.videoVisible"]=t;return u},hk:function(){e=zb()},rd:function(){d()}}};var gc=ka(["data-gtm-yt-inspected-"]),SC=["www.youtube.com","www.youtube-nocookie.com"],TC,UC=!1; equals www.youtube.com (Youtube)
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={kh:e,ih:f,jh:g,Uh:k,Vh:m,Je:n,Eb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),v=t.length,u=0;u<v;u++){var w=t[u].getAttribute("src");if(cD(w,"iframe_api")\|\|cD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!UC&&aD(x[A],p.Je))return wc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_318.2.dr	String found in binary or memory: return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(a){var b=new URL(a);b=b.hostname.endsWith(".facebook.com")&&b.pathname=="/signals/iwl.js";if(!b)throw new Error("Disallowed script URL");return a}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_318.2.dr	String found in binary or memory: return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_318.2.dr	String found in binary or memory: return function(f,g,h,i){var j={exports:{}};j.exports;(function(){"use strict";var a={ENDPOINT:"https://www.facebook.com/tr/",INSTAGRAM_TRIGGER_ATTRIBUTION:"https://www.instagram.com/tr/",AEM_ENDPOINT:"https://www.facebook.com/.well-known/aggregated-event-measurement/",GPS_ENDPOINT:"https://www.facebook.com/privacy_sandbox/pixel/register/trigger/",TOPICS_API_ENDPOINT:"https://www.facebook.com/privacy_sandbox/topics/registration/"};j.exports=a})();return j.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: www.waterbarriers.us
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: syndicatedsearch.goog
Source: global traffic	DNS traffic detected: DNS query: afs.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: click-use1.bodis.com
Source: global traffic	DNS traffic detected: DNS query: www.bullockbuilders.com
Source: global traffic	DNS traffic detected: DNS query: bullockbuilders.com
Source: global traffic	DNS traffic detected: DNS query: img1.wsimg.com
Source: global traffic	DNS traffic detected: DNS query: api.ola.godaddy.com
Source: global traffic	DNS traffic detected: DNS query: isteam.wsimg.com
Source: global traffic	DNS traffic detected: DNS query: cdn.poynt.net
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: cdn.reamaze.com
Source: global traffic	DNS traffic detected: DNS query: cart-checkout.secureserver.net
Source: global traffic	DNS traffic detected: DNS query: contact.apps-api.instantpage.secureserver.net
Source: global traffic	DNS traffic detected: DNS query: d2r4erd6f6ydft.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: gopay-checkout-settings.secureserver.net
Source: global traffic	DNS traffic detected: DNS query: events.api.secureserver.net
Source: global traffic	DNS traffic detected: DNS query: csp.secureserver.net
Source: global traffic	DNS traffic detected: DNS query: 2c4dcd873ed64bcc9becbcdbdde777a4.apm.us-west-2.aws.found.io
Source: global traffic	DNS traffic detected: DNS query: _9243._https.2c4dcd873ed64bcc9becbcdbdde777a4.apm.us-west-2.aws.found.io
Source: global traffic	DNS traffic detected: DNS query: push.reamaze.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com

Source: unknown

HTTP traffic detected: POST /_tr?click=true&session=820bd704-8380-4578-8532-30a3694d4917&signature=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&nc=41800851728567821707 HTTP/1.1Host: click-use1.bodis.comConnection: keep-aliveContent-Length: 0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://syndicatedsearch.googSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundLink: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.43.0.js>; rel=preload; as=script; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossoriginCache-Control: max-age=30Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.comContent-Type: text/html;charset=utf-8Vary: Accept-EncodingServer: DPS/2.0.0+sha-227ca78X-Version: 227ca78X-SiteId: us-east-1Set-Cookie: dps_site_id=us-east-1; path=/; secureDate: Thu, 10 Oct 2024 13:43:51 GMTConnection: closeTransfer-Encoding: chunked

Source: chromecache_246.2.dr	String found in binary or memory: http://9b768d3e.32db.4613.aa51.84050b3bccd0.com
Source: chromecache_246.2.dr	String found in binary or memory: http://img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/IMG_20240621_104030.jpg
Source: chromecache_337.2.dr, chromecache_331.2.dr	String found in binary or memory: http://jedwatson.github.io/classnames
Source: chromecache_279.2.dr, chromecache_246.2.dr	String found in binary or memory: http://scripts.sil.org/OFL
Source: chromecache_278.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_189.2.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=AXRXrqkisPsaO8DXrtd0Hti4fil-8s72f
Source: chromecache_189.2.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=AXRXrqlPx9N1w3xW8oHa9gAD5duCerwNQ
Source: chromecache_189.2.dr	String found in binary or memory: https://adssettings.google.com/whythisad?source=afs_3p&reasons=AXRXrqn4mMtIROvNaxZWoy9UCwHRJpXSQ
Source: chromecache_319.2.dr, chromecache_382.2.dr	String found in binary or memory: https://api.ola.$
Source: chromecache_279.2.dr	String found in binary or memory: https://bullockbuilders.com/404
Source: chromecache_246.2.dr	String found in binary or memory: https://bullockbuilders.com/bullock-builders
Source: chromecache_319.2.dr, chromecache_382.2.dr	String found in binary or memory: https://cart-checkout.dev-secureserver.net
Source: chromecache_319.2.dr, chromecache_382.2.dr	String found in binary or memory: https://cart-checkout.secureserver.net
Source: chromecache_319.2.dr, chromecache_382.2.dr	String found in binary or memory: https://cart-checkout.test-secureserver.net
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_238.2.dr, chromecache_194.2.dr	String found in binary or memory: https://cdn.poynt.net/pb.js
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_359.2.dr, chromecache_318.2.dr	String found in binary or memory: https://connect.facebook.net/
Source: chromecache_279.2.dr, chromecache_246.2.dr	String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_359.2.dr, chromecache_318.2.dr	String found in binary or memory: https://connect.facebook.net/log/fbevents_telemetry/
Source: chromecache_238.2.dr, chromecache_194.2.dr	String found in binary or memory: https://contact.apps-api.instantpage.secureserver.net
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_228.2.dr, chromecache_376.2.dr	String found in binary or memory: https://github.com/lancedikson/bowser
Source: chromecache_222.2.dr	String found in binary or memory: https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff)
Source: chromecache_222.2.dr	String found in binary or memory: https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff2)
Source: chromecache_246.2.dr	String found in binary or memory: https://img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/IMG_20240621_104030.jpg
Source: chromecache_278.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_243.2.dr, chromecache_326.2.dr, chromecache_328.2.dr, chromecache_278.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	String found in binary or memory: https://partner.googleadservices.com/gampad/cookie.js
Source: chromecache_263.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_194.2.dr	String found in binary or memory: https://policies.google.com/privacy
Source: chromecache_194.2.dr	String found in binary or memory: https://policies.google.com/terms
Source: chromecache_372.2.dr, chromecache_298.2.dr	String found in binary or memory: https://pusher.com/
Source: chromecache_263.2.dr	String found in binary or memory: https://recaptcha.net
Source: chromecache_246.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_275.2.dr	String found in binary or memory: https://secure.gravatar.com/avatar/d0d1b0e49f988df885e346451be744d0?default=https%3A%2F%2Freamaze.co
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_263.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	String found in binary or memory: https://syndicatedsearch.goog
Source: chromecache_189.2.dr	String found in binary or memory: https://syndicatedsearch.goog/
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_189.2.dr	String found in binary or memory: https://www.bullockbuilders.com/
Source: chromecache_189.2.dr	String found in binary or memory: https://www.financeinfonow.com/search/search
Source: chromecache_279.2.dr, chromecache_246.2.dr	String found in binary or memory: https://www.fontsquirrel.com/license/league-spartan
Source: chromecache_278.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_189.2.dr	String found in binary or memory: https://www.google.com/images/afs/snowman.png
Source: chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_352.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js
Source: chromecache_300.2.dr, chromecache_356.2.dr, chromecache_191.2.dr, chromecache_263.2.dr, chromecache_186.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_189.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiw56ny-IOJAxXqWpEFHV8BIQEYABAAGgJscg
Source: chromecache_189.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiw56ny-IOJAxXqWpEFHV8BIQEYABABGgJscg
Source: chromecache_189.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiw56ny-IOJAxXqWpEFHV8BIQEYABACGgJscg
Source: chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_278.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_279.2.dr, chromecache_246.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-BF2FDR6KMM
Source: chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.
Source: chromecache_210.2.dr, chromecache_356.2.dr, chromecache_305.2.dr, chromecache_186.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__en.js
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_189.2.dr	String found in binary or memory: https://www.pwrhouseconstruction.com/
Source: chromecache_328.2.dr, chromecache_278.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443

Source: unknown	HTTPS traffic detected: 23.60.203.209:443 -> 192.168.2.9:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.60.203.209:443 -> 192.168.2.9:49728 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@19/335@92/35

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1928,i,7871448077309435032,15508831204917086615,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://www.waterbarriers.us"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1928,i,7871448077309435032,15508831204917086615,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label
https://stats.g.doubleclick.net/g/collect	0%	URL Reputation	safe
https://developers.google.com/recaptcha/docs/faq#localhost_support	0%	URL Reputation	safe
https://syndicatedsearch.goog	0%	URL Reputation	safe
https://support.google.com/recaptcha#6262736	0%	URL Reputation	safe
https://support.google.com/recaptcha/?hl=en#6223828	0%	URL Reputation	safe
https://policies.google.com/terms	0%	URL Reputation	safe
https://connect.facebook.net/en_US/fbevents.js	0%	URL Reputation	safe
https://support.google.com/recaptcha/#6175971	0%	URL Reputation	safe
https://syndicatedsearch.goog/afs/ads/i/iframe.html	0%	URL Reputation	safe
https://support.google.com/recaptcha	0%	URL Reputation	safe
https://schema.org	0%	URL Reputation	safe
https://cct.google/taggy/agent.js	0%	URL Reputation	safe
https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que	0%	URL Reputation	safe
https://connect.facebook.net/	0%	URL Reputation	safe
https://syndicatedsearch.goog/adsense/domains/caf.js?pac=0	0%	URL Reputation	safe
https://policies.google.com/privacy	0%	URL Reputation	safe
https://cloud.google.com/contact	0%	URL Reputation	safe
http://jedwatson.github.io/classnames	0%	URL Reputation	safe
https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.	0%	URL Reputation	safe
https://cloud.google.com/recaptcha-enterprise/billing-information	0%	URL Reputation	safe
https://recaptcha.net	0%	URL Reputation	safe
https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca	0%	URL Reputation	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
star-mini.c10r.facebook.com	157.240.253.35	true	false	unknown
syndicatedsearch.goog	142.250.184.206	true	false	unknown
proxy.k8s.pnc.phx.secureserver.net	45.40.130.49	true	false	unknown
bullockbuilders.com	76.223.105.230	true	false	unknown
d2r4erd6f6ydft.cloudfront.net	13.32.118.217	true	false	unknown
proxy-nlb-prod-us-west-2-v5-ac4e52c97755301b.elb.us-west-2.amazonaws.com	52.26.59.44	true	false	unknown
isteam.wsimg.com	18.185.147.191	true	false	unknown
d347164ulyc57y.cloudfront.net	18.245.86.16	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
k8s-wsb-gopayche-ebf8a59bed-2112792250.us-west-2.elb.amazonaws.com	34.223.247.11	true	false	unknown
proxy.k8s.pnc.iad.secureserver.net	198.71.248.123	true	false	unknown
bg.microsoft.map.fastly.net	199.232.210.172	true	false	unknown
scontent.xx.fbcdn.net	157.240.252.13	true	false	unknown
www.waterbarriers.us	199.59.243.227	true	false	unknown
cdnjs.cloudflare.com	104.17.24.14	true	false	unknown
k8s-wsb-gopaycar-3da687aa34-1957764904.us-west-2.elb.amazonaws.com	44.239.178.203	true	false	unknown
www.google.com	142.250.185.228	true	false	unknown
cdn.reamaze.com	104.22.9.8	true	false	unknown
googlehosted.l.googleusercontent.com	142.250.186.33	true	false	unknown
push.reamaze.com	104.22.9.8	true	false	unknown
click-use1.bodis.com	199.59.243.205	true	false	unknown
img1.wsimg.com	unknown	unknown	false	unknown
www.facebook.com	unknown	unknown	false	unknown
events.api.secureserver.net	unknown	unknown	false	unknown
afs.googleusercontent.com	unknown	unknown	false	unknown
2c4dcd873ed64bcc9becbcdbdde777a4.apm.us-west-2.aws.found.io	unknown	unknown	false	unknown
api.ola.godaddy.com	unknown	unknown	false	unknown
connect.facebook.net	unknown	unknown	false	unknown
_9243._https.2c4dcd873ed64bcc9becbcdbdde777a4.apm.us-west-2.aws.found.io	unknown	unknown	false	unknown
contact.apps-api.instantpage.secureserver.net	unknown	unknown	false	unknown
csp.secureserver.net	unknown	unknown	false	unknown
cdn.poynt.net	unknown	unknown	false	unknown
cart-checkout.secureserver.net	unknown	unknown	false	unknown
www.bullockbuilders.com	unknown	unknown	false	unknown
gopay-checkout-settings.secureserver.net	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
http://www.waterbarriers.us/_fd?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2	false		unknown
https://bullockbuilders.com/g/api/checkout/v2/cart?websiteId=9b768d3e-32db-4613-aa51-84050b3bccd0	false		unknown
https://cdn.reamaze.com/assets/reamaze-godaddy-loader.js	false		unknown
https://gopay-checkout-settings.secureserver.net/v1/settings/public/9b768d3e-32db-4613-aa51-84050b3bccd0	false		unknown
http://www.waterbarriers.us/_fd	false		unknown
https://syndicatedsearch.goog/afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=fs6kujsu28hl&aqid=AtoHZ7DeBeq1xdwP34KECQ&psid=3113057640&pbt=bs&adbx=381.5&adby=143&adbh=1468&adbw=500&adbah=506%2C481%2C481&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=24%7C0%7C1741%7C27%7C169&lle=0&ifv=1&hpt=1	false		unknown
https://connect.facebook.net/en_US/fbevents.js	false	URL Reputation: safe	unknown
https://www.google.com/images/afs/snowman.png	false		unknown
https://bullockbuilders.com/manifest.webmanifest	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/pages/_app-26072b358821acb0.js	false		unknown
https://bullockbuilders.com/welcome-1	false		unknown
https://syndicatedsearch.goog/afs/ads/i/iframe.html	false	URL Reputation: safe	unknown
https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c=%23ffffff	false		unknown
https://click-use1.bodis.com/_tr?click=true&session=820bd704-8380-4578-8532-30a3694d4917&signature=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&nc=41800851728567821707	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/c8b05f54-e0f91b073e7d8a8c.js	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/heHYbIJv63MAslxxKW159/_buildManifest.js	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/main-f7fb4d90a816b6ac.js	false		unknown
http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2	false		unknown
http://www.waterbarriers.us/	false		unknown
https://www.bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE	false		unknown
https://bullockbuilders.com/sw.js	false		unknown
https://push.reamaze.com/assets/reamaze-push.js	false		unknown
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=xds0rzGrktR88uEZ2JUvdgOY	false		unknown
https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b	false		unknown
https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d	false		unknown
https://syndicatedsearch.goog/afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=phsapx8n67p3&aqid=6tkHZ-_eMbG8juwP-rCzMA&psid=3113057640&pbt=bs&adbx=281.5&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=6%7C0%7C1050%7C1249%7C65&lle=0&ifv=1&hpt=0	false		unknown
https://cdn.reamaze.com/data/brands/9b768d3e-32db-4613-aa51-84050b3bccd0/ping	false		unknown
https://syndicatedsearch.goog/adsense/domains/caf.js?pac=0	false	URL Reputation: safe	unknown
https://www.google.com/js/bg/zEg4NaMiOUeKKZ2pqXY4HMvMf5VCq4avNU_6WgNs2Cw.js	false		unknown
https://cart-checkout.secureserver.net/dist/embed.js	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/webpack-4a2d2f460e7e1a00.js	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/358-f0bc955bf7e6d941.js	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/heHYbIJv63MAslxxKW159/_ssgManifest.js	false		unknown
https://connect.facebook.net/signals/config/282429905966327?v=2.9.170&r=stable&domain=bullockbuilders.com&hme=d82868061a8c707cd31395a3055e7449daa03bd520872727258c39e6af34523e&ex_m=70%2C120%2C106%2C110%2C61%2C4%2C99%2C69%2C16%2C96%2C88%2C51%2C54%2C171%2C174%2C186%2C182%2C183%2C185%2C29%2C100%2C53%2C77%2C184%2C166%2C169%2C179%2C180%2C187%2C130%2C41%2C34%2C142%2C15%2C50%2C193%2C192%2C132%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C92%2C17%2C14%2C95%2C91%2C90%2C107%2C52%2C109%2C39%2C108%2C30%2C93%2C26%2C167%2C170%2C139%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C101%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C103%2C102%2C104%2C97%2C10%2C20%2C3%2C38%2C74%2C19%2C85%2C56%2C83%2C33%2C73%2C0%2C94%2C32%2C82%2C87%2C47%2C46%2C86%2C37%2C5%2C89%2C81%2C44%2C35%2C84%2C2%2C36%2C63%2C42%2C105%2C45%2C79%2C68%2C111%2C60%2C59%2C31%2C98%2C58%2C55%2C49%2C78%2C72%2C24%2C112	false		unknown
https://bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/framework-07ba49083a3e026b.js	false		unknown
http://www.waterbarriers.us/bvIYRmogX.js	false		unknown
https://cdnjs.cloudflare.com/ajax/libs/pusher/7.0.1/pusher.min.js	false		unknown
https://syndicatedsearch.goog/afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=6y09cmasxazq&aqid=6tkHZ-_eMbG8juwP-rCzMA&psid=3113057640&pbt=bv&adbx=281.5&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=6%7C0%7C1050%7C1249%7C65&lle=0&ifv=1&hpt=0	false		unknown
https://cdn.reamaze.com/assets/reamaze.js	false		unknown
https://contact.apps-api.instantpage.secureserver.net/v3/recaptcha	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/pages/cart-d35bec9da452c38a.js	false		unknown
https://www.google.com/adsense/domains/caf.js?abp=1&bodis=true	false		unknown
https://d2r4erd6f6ydft.cloudfront.net/_next/static/chunks/9-f9d89c7cffe1ee17.js	false		unknown
https://cart-checkout.secureserver.net/api/websites/9b768d3e-32db-4613-aa51-84050b3bccd0/tax-settings	false		unknown
https://bullockbuilders.com/g/api/cart/cart?cartNotifyTimeout=5000&websiteId=9b768d3e-32db-4613-aa51-84050b3bccd0&env=production&cartUrl=https://bullockbuilders.com/g/api/cart&websiteUrl=https://bullockbuilders.com	false		unknown
https://bullockbuilders.com/bullock-builders	false		unknown
https://www.google.com/recaptcha/api.js?render=6LfjspgUAAAAABsbjG9id6qXQKZkqb6_Hpce6ui_	false		unknown
http://www.waterbarriers.us/bNAskrfrI.js	false		unknown
https://bullockbuilders.com/markup/ad	false		unknown
https://cdn.poynt.net/pb.js	false		unknown
https://syndicatedsearch.goog/afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=dtl54gln06hm&aqid=AtoHZ7DeBeq1xdwP34KECQ&psid=3113057640&pbt=bv&adbx=381.5&adby=143&adbh=1468&adbw=500&adbah=506%2C481%2C481&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=24%7C0%7C1741%7C27%7C169&lle=0&ifv=1&hpt=1	false		unknown
https://bullockbuilders.com/m/api/reamaze/v2/customers/auth?brand=9b768d3e-32db-4613-aa51-84050b3bccd0	false		unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://stats.g.doubleclick.net/g/collect	chromecache_328.2.dr, chromecache_278.2.dr	false	URL Reputation: safe	unknown
https://developers.google.com/recaptcha/docs/faq#localhost_support	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://syndicatedsearch.goog	chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	false	URL Reputation: safe	unknown
https://support.google.com/recaptcha#6262736	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://cart-checkout.dev-secureserver.net	chromecache_319.2.dr, chromecache_382.2.dr	false		unknown
https://support.google.com/recaptcha/?hl=en#6223828	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://adssettings.google.com/whythisad?source=afs_3p&reasons=AXRXrqlPx9N1w3xW8oHa9gAD5duCerwNQ	chromecache_189.2.dr	false		unknown
https://policies.google.com/terms	chromecache_194.2.dr	false	URL Reputation: safe	unknown
https://www.google.com	chromecache_278.2.dr	false		unknown
https://www.youtube.com/iframe_api	chromecache_328.2.dr, chromecache_278.2.dr	false		unknown
https://www.financeinfonow.com/search/search	chromecache_189.2.dr	false		unknown
https://support.google.com/recaptcha/#6175971	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://syndicatedsearch.goog/	chromecache_189.2.dr	false		unknown
https://www.fontsquirrel.com/license/league-spartan	chromecache_279.2.dr, chromecache_246.2.dr	false		unknown
https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff)	chromecache_222.2.dr	false		unknown
https://adssettings.google.com/whythisad?source=afs_3p&reasons=AXRXrqn4mMtIROvNaxZWoy9UCwHRJpXSQ	chromecache_189.2.dr	false		unknown
http://img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/IMG_20240621_104030.jpg	chromecache_246.2.dr	false		unknown
https://adssettings.google.com/whythisad?source=afs_3p&reasons=AXRXrqkisPsaO8DXrtd0Hti4fil-8s72f	chromecache_189.2.dr	false		unknown
https://cart-checkout.test-secureserver.net	chromecache_319.2.dr, chromecache_382.2.dr	false		unknown
https://support.google.com/recaptcha	chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5	chromecache_243.2.dr, chromecache_326.2.dr, chromecache_255.2.dr, chromecache_271.2.dr	false		unknown
https://contact.apps-api.instantpage.secureserver.net	chromecache_238.2.dr, chromecache_194.2.dr	false		unknown
https://schema.org	chromecache_246.2.dr	false	URL Reputation: safe	unknown
https://github.com/lancedikson/bowser	chromecache_228.2.dr, chromecache_376.2.dr	false		unknown
https://www.bullockbuilders.com/	chromecache_189.2.dr	false		unknown
https://cct.google/taggy/agent.js	chromecache_328.2.dr, chromecache_278.2.dr	false	URL Reputation: safe	unknown
https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://connect.facebook.net/	chromecache_359.2.dr, chromecache_318.2.dr	false	URL Reputation: safe	unknown
https://play.google.com/log?format=json&hasfast=true	chromecache_263.2.dr	false		unknown
https://pusher.com/	chromecache_372.2.dr, chromecache_298.2.dr	false		unknown
https://policies.google.com/privacy	chromecache_194.2.dr	false	URL Reputation: safe	unknown
https://www.pwrhouseconstruction.com/	chromecache_189.2.dr	false		unknown
https://bullockbuilders.com/404	chromecache_279.2.dr	false		unknown
https://img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/IMG_20240621_104030.jpg	chromecache_246.2.dr	false		unknown
http://9b768d3e.32db.4613.aa51.84050b3bccd0.com	chromecache_246.2.dr	false		unknown
https://cloud.google.com/contact	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://www.google.com/recaptcha/api.js	chromecache_352.2.dr, chromecache_297.2.dr	false		unknown
https://cart-checkout.secureserver.net	chromecache_319.2.dr, chromecache_382.2.dr	false		unknown
https://www.google.com/recaptcha/api2/	chromecache_300.2.dr, chromecache_356.2.dr, chromecache_191.2.dr, chromecache_263.2.dr, chromecache_186.2.dr	false		unknown
https://img1.wsimg.com/blobby/go/font/LeagueSpartan/LeagueSpartan.woff2)	chromecache_222.2.dr	false		unknown
http://jedwatson.github.io/classnames	chromecache_337.2.dr, chromecache_331.2.dr	false	URL Reputation: safe	unknown
https://www.gstatic.c..?/recaptcha/releases/xds0rzGrktR88uEZ2JUvdgOY/recaptcha__.	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://api.ola.$	chromecache_319.2.dr, chromecache_382.2.dr	false		unknown
https://cloud.google.com/recaptcha-enterprise/billing-information	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://recaptcha.net	chromecache_263.2.dr	false	URL Reputation: safe	unknown
https://secure.gravatar.com/avatar/d0d1b0e49f988df885e346451be744d0?default=https%3A%2F%2Freamaze.co	chromecache_275.2.dr	false		unknown
https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca	chromecache_300.2.dr, chromecache_191.2.dr, chromecache_263.2.dr	false	URL Reputation: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
34.223.247.11	k8s-wsb-gopayche-ebf8a59bed-2112792250.us-west-2.elb.amazonaws.com	United States	16509	AMAZON-02US	false
142.250.185.228	www.google.com	United States	15169	GOOGLEUS	false
216.58.212.142	unknown	United States	15169	GOOGLEUS	false
104.22.9.8	cdn.reamaze.com	United States	13335	CLOUDFLARENETUS	false
45.40.130.49	proxy.k8s.pnc.phx.secureserver.net	United States	26496	AS-26496-GO-DADDY-COM-LLCUS	false
13.32.118.183	unknown	United States	16509	AMAZON-02US	false
172.67.28.250	unknown	United States	13335	CLOUDFLARENETUS	false
157.240.252.13	scontent.xx.fbcdn.net	United States	32934	FACEBOOKUS	false
52.26.59.44	proxy-nlb-prod-us-west-2-v5-ac4e52c97755301b.elb.us-west-2.amazonaws.com	United States	16509	AMAZON-02US	false
142.250.186.33	googlehosted.l.googleusercontent.com	United States	15169	GOOGLEUS	false
18.185.147.191	isteam.wsimg.com	United States	16509	AMAZON-02US	false
199.59.243.227	www.waterbarriers.us	United States	395082	BODIS-NJUS	false
172.217.18.4	unknown	United States	15169	GOOGLEUS	false
142.250.185.238	unknown	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.196	unknown	United States	15169	GOOGLEUS	false
157.240.253.35	star-mini.c10r.facebook.com	United States	32934	FACEBOOKUS	false
18.245.86.16	d347164ulyc57y.cloudfront.net	United States	16509	AMAZON-02US	false
18.245.86.44	unknown	United States	16509	AMAZON-02US	false
76.223.105.230	bullockbuilders.com	United States	16509	AMAZON-02US	false
104.22.8.8	unknown	United States	13335	CLOUDFLARENETUS	false
54.214.211.165	unknown	United States	16509	AMAZON-02US	false
216.58.212.129	unknown	United States	15169	GOOGLEUS	false
198.71.248.123	proxy.k8s.pnc.iad.secureserver.net	United States	26496	AS-26496-GO-DADDY-COM-LLCUS	false
142.250.186.132	unknown	United States	15169	GOOGLEUS	false
142.250.184.206	syndicatedsearch.goog	United States	15169	GOOGLEUS	false
13.32.118.217	d2r4erd6f6ydft.cloudfront.net	United States	16509	AMAZON-02US	false
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
199.59.243.205	click-use1.bodis.com	United States	395082	BODIS-NJUS	false
142.250.185.132	unknown	United States	15169	GOOGLEUS	false
157.240.251.9	unknown	United States	32934	FACEBOOKUS	false
142.250.181.228	unknown	United States	15169	GOOGLEUS	false
44.239.178.203	k8s-wsb-gopaycar-3da687aa34-1957764904.us-west-2.elb.amazonaws.com	United States	16509	AMAZON-02US	false

Private

IP
192.168.2.9
192.168.2.10

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1530839
Start date and time:	2024-10-10 15:41:59 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 45s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://www.waterbarriers.us
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	10
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean1.win@19/335@92/35
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 172.217.16.195, 64.233.184.84, 216.58.206.78, 34.104.35.123, 142.250.184.226, 52.149.20.212, 192.229.221.95, 199.232.210.172, 13.95.31.18, 20.3.187.198, 142.250.185.226, 142.250.186.98, 172.217.23.106, 216.58.212.163, 2.16.101.17, 2.17.22.131, 142.250.186.136, 216.58.206.46, 142.250.185.200, 142.250.185.74, 142.250.186.170, 142.250.186.106, 142.250.185.138, 142.250.184.202, 172.217.16.202, 142.250.186.42, 142.250.186.138, 216.58.206.42, 142.250.185.106, 172.217.16.138, 142.250.74.202, 172.217.18.10, 172.217.18.106, 216.58.206.74, 93.184.221.240, 142.250.186.99, 142.250.74.195, 23.213.161.223, 23.213.161.198, 104.102.33.222, 216.58.206.67, 142.250.186.131, 172.217.18.99
Excluded domains from analysis (whitelisted): e8843.dsca.akamaiedge.net, e40258.g.akamaiedge.net, www.googleadservices.com, slscr.update.microsoft.com, partner.googleadservices.com, clientservices.googleapis.com, wu.azureedge.net, clients2.google.com, ocsp.digicert.com, www.googletagmanager.com, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, update.googleapis.com, www.gstatic.com, global-wildcard.wsimg.com.sni-only.edgekey.net, wu-b-net.trafficmanager.net, csp.secureserver.net.edgekey.net, glb.sls.prod.dcat.dsp.trafficmanager.net, www.google-analytics.com, fonts.googleapis.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, ctldl.windowsupdate.com.delivery.microsoft.com, fonts.gstatic.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, wildcard-sni-only.api.secureserver.net.edgekey.net, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edged
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: http://www.waterbarriers.us

Input	Output
URL: http://www.waterbarriers.us/ Model: jbxai	{ "brands":[], "text":"WATERBARRIERS.US", "contains_trigger_text":false, "trigger_text":"", "prominent_button_name":"unknown", "text_input_field_labels":"unknown", "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "has_visible_qrcode":false}

URL: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg& Model: jbxai	{ "brands":["WATERBARRIERS.US"], "text":"WATERBARRIERS.US", "contains_trigger_text":false, "trigger_text":"", "prominent_button_name":"Visit Website", "text_input_field_labels":"unknown", "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "has_visible_qrcode":false}

URL: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d Model: jbxai	{ "brands":["Bullock Builders"], "text":"Contact us", "contains_trigger_text":false, "trigger_text":"", "prominent_button_name":"unknown", "text_input_field_labels":["Name", "Email*", "Phone", "Address (Street, City, Zip Code)"], "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "has_visible_qrcode":false}

URL: https://bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE Model: jbxai	{ "brands":["Bullock Builders"], "text":"Bullock Builders Roofing and Exteriors The PNW's best roofing, siding, decking and gutters in Seattle and the greater Puget Sound area are one click or call away. Call or text (206) 802-8110 We've got you covered.", "contains_trigger_text":false, "trigger_text":"", "prominent_button_name":"FREE QUOTE OR MORE INFO", "text_input_field_labels":"unknown", "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "has_visible_qrcode":false}

URL: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d Model: jbxai	{ "brands":["Bullock Builders"], "text":"Contact us", "contains_trigger_text":false, "trigger_text":"", "prominent_button_name":"unknown", "text_input_field_labels":["Name", "Email*", "Phone", "Address (Street, City, Zip Code)"], "pdf_icon_visible":false, "has_visible_captcha":false, "has_urgent_text":false, "has_visible_qrcode":false}

URL: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d Model: jbxai	{ "phishing_score":2, "brands":"Bullock Builders", "legit_domain":"bullockbuilders.com", "classification":"unknown", "reasons":["The brand 'Bullock Builders' is not widely recognized, making it difficult to classify as 'known' or 'wellknown'.", "The URL 'bullockbuilders.com' matches the brand name exactly, which is a positive indicator of legitimacy.", "There are no suspicious elements in the URL such as misspellings, extra characters, or unusual domain extensions.", "The presence of a single input field for 'Name' does not inherently suggest phishing."], "brand_matches":[true], "url_match":false, "brand_input":"Bullock Builders", "input_fields":"Name"}

URL: https://bullockbuilders.com/bullock-builders#396c777d-6613-45bb-ace9-789a5a49aa9d Model: jbxai	{ "phishing_score":2, "brands":"Bullock Builders", "legit_domain":"bullockbuilders.com", "classification":"unknown", "reasons":["The brand 'Bullock Builders' is not widely recognized, making it difficult to classify as 'known' or 'wellknown'.", "The URL 'bullockbuilders.com' matches the brand name 'Bullock Builders' exactly, which is a good indicator of legitimacy.", "There are no suspicious elements in the URL such as misspellings, extra characters, or unusual domain extensions.", "The presence of a single input field for 'Name' does not inherently suggest phishing activity."], "brand_matches":[true], "url_match":false, "brand_input":"Bullock Builders", "input_fields":"Name"}

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 10 12:43:03 2024, atime=Wed Sep 27 08:36:55 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2673
Entropy (8bit):	3.9772756272044423
Encrypted:	false
SSDEEP:	48:8LdiTgQHHeidAKZdA1P4ehwiZUklqehly+3:8Eci8O+y
MD5:	0D633264A9F6044251A64C2C1DB81D10
SHA1:	E5C0B2DEC122144CEA0CDC54555B3ECC9BE81826
SHA-256:	5541742BB429E1D1FFC15E8FD0D4CA39CEFEEFB89EF660E2D9287DD868AD2CEE
SHA-512:	284B5155D012D8B9259746E52D83CF928F1D71B094501ED2661834ADE52C75A2BD30DFC9BB5285329CEA1B9CDAC674F49CCBF79AB453E90F52CCE20A09B22CE3
Malicious:	false
Reputation:	low
Preview:	L..................F.@.. ...$+.,......5T......v'&... w......................1....P.O. .:i.....+00.../C:\.....................1.....EW.I..PROGRA~1..t......O.IJY]m....B...............J.....\...P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VJY]m....L.....................p+j.G.o.o.g.l.e.....T.1.....EW.F..Chrome..>......CW.VJY]m....M......................O..C.h.r.o.m.e.....`.1.....EW.F..APPLIC~1..H......CW.VJY]m.............................A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.L .CHROME~1.EXE..R......CW.VJYbm...........................).c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i....................C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Oct 10, 2024 15:43:02.273699045 CEST	53	63312	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:02.303507090 CEST	53	50038	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:03.277369976 CEST	53	57134	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:03.661756039 CEST	57326	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:03.663944960 CEST	57924	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:03.768536091 CEST	53	57924	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:03.788328886 CEST	53	57326	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:04.305002928 CEST	49378	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:04.305228949 CEST	53548	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:04.311928988 CEST	53	49378	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:04.312136889 CEST	53	53548	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:04.546292067 CEST	62011	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:04.546461105 CEST	58901	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:04.554744005 CEST	53	62011	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:04.617012978 CEST	53	58901	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:05.712522030 CEST	64365	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:05.712939978 CEST	55801	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:05.720602989 CEST	53	55801	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:05.721394062 CEST	53	64365	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:05.956183910 CEST	57744	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:05.956567049 CEST	64615	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:05.963788033 CEST	53	57744	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:05.964694977 CEST	53	64615	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:05.991075993 CEST	50594	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:05.991241932 CEST	63711	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:05.998040915 CEST	53	50594	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:05.998899937 CEST	53	63711	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:06.249701023 CEST	60189	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:06.249917984 CEST	49704	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:06.258090973 CEST	53	60189	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:06.258096933 CEST	53	49704	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:08.253870010 CEST	65309	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:08.254168034 CEST	59117	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:08.261631966 CEST	53	65309	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:08.262686014 CEST	53	59117	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:08.348526001 CEST	51935	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:08.349205971 CEST	63685	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:08.356368065 CEST	53	51935	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:08.357124090 CEST	53	63685	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:09.283433914 CEST	53823	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:09.283433914 CEST	54152	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:09.290875912 CEST	53	53823	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:09.291158915 CEST	53	54152	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:20.308617115 CEST	53	59766	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:30.959882975 CEST	62729	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:30.960668087 CEST	49770	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:30.966727018 CEST	53	62729	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:30.967314959 CEST	53	49770	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:39.761614084 CEST	53	61623	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:42.836188078 CEST	62935	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:42.836695910 CEST	56163	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:42.873671055 CEST	53	62935	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:42.884460926 CEST	53	56163	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:43.928384066 CEST	64023	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:43.928778887 CEST	53559	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:43.933654070 CEST	138	138	192.168.2.9	192.168.2.255
Oct 10, 2024 15:43:43.943430901 CEST	53	64023	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:43.965003014 CEST	53	53559	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:44.658461094 CEST	60553	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:44.659353018 CEST	54923	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:44.674768925 CEST	53	54923	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:44.692461014 CEST	53	60553	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:45.594036102 CEST	53672	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:45.594432116 CEST	51608	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:45.599312067 CEST	53	51497	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:45.620811939 CEST	61332	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:45.621114969 CEST	51216	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:45.622544050 CEST	65099	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:45.623228073 CEST	64201	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:45.630520105 CEST	53	51216	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:45.630635023 CEST	53	64201	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:45.631402969 CEST	53	61332	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:45.631989002 CEST	53	65099	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:49.371248960 CEST	55129	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:49.371659040 CEST	57511	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:50.038924932 CEST	53	54990	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:50.776702881 CEST	49717	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:50.776967049 CEST	51032	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:50.788757086 CEST	53	51032	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:50.789088011 CEST	53	49717	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:52.354420900 CEST	53	49394	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:52.445255041 CEST	53	61925	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:52.482068062 CEST	53	62797	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:52.785634995 CEST	52081	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:52.785855055 CEST	61366	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:52.797708035 CEST	53	61366	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:52.799412966 CEST	53	52081	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:53.323801994 CEST	61212	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:53.323801994 CEST	57739	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:53.331044912 CEST	53	61212	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:53.333132982 CEST	53	57739	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:55.697854042 CEST	64241	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:55.698028088 CEST	58865	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:55.705055952 CEST	53	58865	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:55.705089092 CEST	53	64241	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:57.799140930 CEST	55978	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:57.799360037 CEST	63894	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:43:57.807148933 CEST	53	55978	1.1.1.1	192.168.2.9
Oct 10, 2024 15:43:57.807158947 CEST	53	63894	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:00.850158930 CEST	52350	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:00.854151011 CEST	52683	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:00.872590065 CEST	53	52350	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:00.887523890 CEST	53	52683	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:00.905504942 CEST	62487	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:00.905958891 CEST	54781	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:00.913167000 CEST	53	62487	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:00.913642883 CEST	53	54781	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:01.800756931 CEST	53	54317	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:01.841269970 CEST	54724	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:01.841814995 CEST	56860	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:01.853212118 CEST	53	54724	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:01.853230000 CEST	53	56860	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:02.331732988 CEST	62244	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:02.332281113 CEST	63060	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:02.340775967 CEST	53	62244	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:02.364783049 CEST	53	63060	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:02.991035938 CEST	53	60806	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:04.937041998 CEST	54030	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:04.937272072 CEST	54532	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:04.941689968 CEST	63184	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:04.944520950 CEST	53894	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:04.949126005 CEST	53	54030	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:04.951607943 CEST	53	54532	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:04.960176945 CEST	53	53894	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:04.994573116 CEST	53	63184	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:06.197525024 CEST	65385	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:06.198167086 CEST	64396	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:06.205280066 CEST	53	64396	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:06.205709934 CEST	53	65385	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:06.207168102 CEST	63792	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:06.207437038 CEST	65282	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:06.217416048 CEST	53	65282	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:06.218863010 CEST	53	63792	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:06.640176058 CEST	50336	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:06.640176058 CEST	64524	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:06.657145023 CEST	53	64524	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:06.659691095 CEST	53	50336	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:08.637125969 CEST	55123	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.637897968 CEST	61582	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.655302048 CEST	53870	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.655302048 CEST	53310	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.655416012 CEST	53	55123	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:08.656991959 CEST	53	61582	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:08.906084061 CEST	59366	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.906172037 CEST	57570	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.948817968 CEST	61542	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.948818922 CEST	54537	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:08.955899954 CEST	53	54537	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:08.956378937 CEST	53	61542	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:09.655941963 CEST	55332	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:09.656127930 CEST	59176	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:09.674920082 CEST	53	59176	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:09.675205946 CEST	53	55332	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:09.745997906 CEST	50648	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:09.746445894 CEST	52270	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:09.781744003 CEST	53	50648	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:09.911034107 CEST	53	52270	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:09.981445074 CEST	62332	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:09.981695890 CEST	61233	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:12.169192076 CEST	50494	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:12.169363976 CEST	64590	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:12.197223902 CEST	53	50494	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:12.245223999 CEST	53	64590	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:16.363161087 CEST	54330	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:16.363538980 CEST	51768	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:16.370341063 CEST	53	54330	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:16.371263981 CEST	53	51768	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:16.796854019 CEST	58629	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:16.797291040 CEST	52153	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:16.803880930 CEST	53	58629	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:16.804755926 CEST	53	52153	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:16.868408918 CEST	63762	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:16.868640900 CEST	60304	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:16.875569105 CEST	53	60304	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:16.876416922 CEST	53	63762	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:17.013676882 CEST	59629	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:17.014091969 CEST	65209	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:17.021353960 CEST	53	65209	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:17.026215076 CEST	53	59629	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:17.653248072 CEST	55025	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:17.653882980 CEST	64196	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:17.661375046 CEST	53	55025	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:17.661555052 CEST	53	64196	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:17.791805983 CEST	59971	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:17.792048931 CEST	55302	53	192.168.2.9	1.1.1.1
Oct 10, 2024 15:44:17.798989058 CEST	53	59971	1.1.1.1	192.168.2.9
Oct 10, 2024 15:44:17.799184084 CEST	53	55302	1.1.1.1	192.168.2.9

Timestamp	Source IP	Dest IP	Checksum	Code	Type
Oct 10, 2024 15:43:04.617072105 CEST	192.168.2.9	1.1.1.1	c229	(Port unreachable)	Destination Unreachable
Oct 10, 2024 15:43:43.965070963 CEST	192.168.2.9	1.1.1.1	c244	(Port unreachable)	Destination Unreachable
Oct 10, 2024 15:44:00.887628078 CEST	192.168.2.9	1.1.1.1	c297	(Port unreachable)	Destination Unreachable
Oct 10, 2024 15:44:09.911103964 CEST	192.168.2.9	1.1.1.1	c232	(Port unreachable)	Destination Unreachable
Oct 10, 2024 15:44:12.245312929 CEST	192.168.2.9	1.1.1.1	c2e1	(Port unreachable)	Destination Unreachable

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:03.794045925 CEST	435	OUT	GET / HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Oct 10, 2024 15:43:04.277410984 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:04 GMT content-type: text/html; charset=utf-8 content-length: 1058 x-request-id: 820bd704-8380-4578-8532-30a3694d4917 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_oqieiQXbCBzVi1cfWXFxh8XERZL8i0elTvOHU02sJo8hKrqGgC08R6xTDZpHu+vgFREUZ/wAbJwLp1L/NM20Xw== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:04 GMT; path=/ Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 6f 71 69 65 69 51 58 62 43 42 7a 56 69 31 63 66 57 58 46 78 68 38 58 45 52 5a 4c 38 69 30 65 6c 54 76 4f 48 55 30 32 73 4a 6f 38 68 4b 72 71 47 67 43 30 38 52 36 78 54 44 5a 70 48 75 2b 76 67 46 52 45 55 5a 2f 77 41 62 4a 77 4c 70 31 4c 2f 4e 4d 32 30 58 77 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_oqieiQXbCBzVi1cfWXFxh8XERZL8i0elTvOHU02sJo8hKrqGgC08R6xTDZpHu+vgFREUZ/wAbJwLp1L/NM20Xw==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="pr
Oct 10, 2024 15:43:04.277435064 CEST	492	IN	Data Raw: 65 63 6f 6e 6e 65 63 74 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 Data Ascii: econnect" href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiODIwYmQ3MDQtODM4MC00NTc4LTg1MzItMzBhMzY5NGQ0OTE3IiwicGFnZV90aW1lIjoxNzI4NTY3Nzg0LCJwYWdlX3VybCI6I
Oct 10, 2024 15:43:04.331320047 CEST	386	OUT	GET /bvIYRmogX.js HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Oct 10, 2024 15:43:04.432593107 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:04 GMT content-type: application/javascript; charset=utf-8 content-length: 34193 x-request-id: 70e0ea01-0ff9-45b6-b29f-2500d51bd3f3 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:04 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}get isBlocked(){return this.
Oct 10, 2024 15:43:04.432621002 CEST	1236	IN	Data Raw: 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 42 4c 4f 43 4b 45 44 7d 67 65 74 20 69 73 41 6c 6c 6f 77 65 64 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 41 4c 4c 4f 57 45 44 7d 74 6f 43 6f Data Ascii: state===Blocking.BLOCKED}get isAllowed(){return this.state===Blocking.ALLOWED}toContext(){return{user_has_ad_blocker:null,is_ad_blocked:null}}}const OBFUSCATING_BASE_64_PREFIX="UxFdVMwNFNwN0wzODEybV",encode=e=>OBFUSCATING_BASE_64_PREFIX+btoa(u
Oct 10, 2024 15:43:04.432632923 CEST	1236	IN	Data Raw: 5f 46 41 49 4c 5f 41 44 53 3d 22 63 61 66 5f 61 64 6c 6f 61 64 66 61 69 6c 5f 61 64 73 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 47 42 3d 22 64 69 73 61 62 6c 65 64 5f 67 62 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 41 42 3d 22 64 69 73 61 62 6c 65 64 Data Ascii: _FAIL_ADS="caf_adloadfail_ads",e.DISABLED_GB="disabled_gb",e.DISABLED_AB="disabled_ab",e.DISABLED_DS="disabled_ds",e.AD_BLOCKED="ad_blocked",e.PREFERRED="preferred"}(ZeroClickReasons\|\|(ZeroClickReasons={}));const getZeroClick=e=>__awaiter(void
Oct 10, 2024 15:43:04.432645082 CEST	672	IN	Data Raw: 69 74 79 3a 20 30 3b 5c 6e 20 20 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 6e 3b 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 53 74 61 74 75 73 20 4d 65 73 73 61 67 65 73 20 2d 20 54 68 65 73 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 20 77 68 65 6e Data Ascii: ity: 0;\n visibility: hidden;\n}\n\n/* Status Messages - These are displayed when we are not rendering ad blocks or Related Search */\n\n#pk-status-message {\n height: 100vh;\n width: 100%;\n display: flex;\n flex-direction: column;\n al
Oct 10, 2024 15:43:04.432656050 CEST	1236	IN	Data Raw: 3a 20 72 65 6c 61 74 69 76 65 3b 5c 6e 20 20 7a 2d 69 6e 64 65 78 3a 20 31 3b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 30 33 32 34 33 38 20 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 74 6f 20 74 6f 70 2c 20 23 30 34 34 33 36 38 20 Data Ascii: : relative;\n z-index: 1;\n background: #032438 linear-gradient(to top, #044368 0%, #000 100%);\n box-shadow: 0 0 15px 0 #000;\n border-bottom: 3px solid #262626;\n}\n\n#sales-box.is-highlighted a {\n line-height: 1.3;\n display: inline-
Oct 10, 2024 15:43:04.432667017 CEST	1236	IN	Data Raw: 74 2d 73 69 7a 65 3a 20 32 65 6d 3b 5c 6e 20 20 66 6f 6e 74 2d 77 65 69 67 68 74 3a 20 62 6f 6c 64 3b 5c 6e 7d 5c 6e 5c 6e 2e 70 6b 2d 70 61 67 65 2d 72 65 61 64 79 20 7b 5c 6e 20 20 6f 70 61 63 69 74 79 3a 20 31 20 21 69 6d 70 6f 72 74 61 6e 74 Data Ascii: t-size: 2em;\n font-weight: bold;\n}\n\n.pk-page-ready {\n opacity: 1 !important;\n visibility: visible !important;\n}\n\n@media only screen and (max-width: 600px) {\n .hidden-xs {\n opacity: 0;\n visibility: hidden;\n }\n}\n\n/* An
Oct 10, 2024 15:43:04.432677031 CEST	1236	IN	Data Raw: 74 48 54 4d 4c 28 4d 45 53 53 41 47 45 5f 54 45 4d 50 4c 41 54 45 29 2c 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 29 7b 63 6f 6e 73 74 20 74 3d 74 68 69 73 2e 64 6f 6d 4e 6f 64 65 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 28 4d 45 53 53 41 47 45 5f 53 Data Ascii: tHTML(MESSAGE_TEMPLATE),this.domNode){const t=this.domNode.querySelector(MESSAGE_SELECTOR);t&&(t.innerHTML=e)}t&&this.injectMetaDescription(t)}salesBanner(e){if(!e)return;const{href:t,position:n,message:i,theme:s}=e,a=document.createElement("d
Oct 10, 2024 15:43:04.432687998 CEST	1236	IN	Data Raw: 6c 20 62 65 20 72 69 67 68 74 20 62 61 63 6b 2e 3c 2f 70 3e 5c 6e 20 20 20 20 22 29 7d 65 72 72 6f 72 50 61 72 6b 69 6e 67 53 65 72 76 69 63 65 73 44 69 73 61 62 6c 65 64 28 29 7b 74 68 69 73 2e 6d 65 73 73 61 67 65 28 22 5c 6e 20 20 20 20 20 20 Data Ascii: l be right back.</p>\n ")}errorParkingServicesDisabled(){this.message("\n <h1>An Error Occurred</h1>\n <p>Services for this domain name have been disabled.</p>\n ")}errorParkingNoSponsors(e){this.message(`\n <div class="pk
Oct 10, 2024 15:43:04.432703018 CEST	1236	IN	Data Raw: 29 2c 74 68 69 73 2e 73 61 6c 65 73 42 61 6e 6e 65 72 28 65 2e 73 61 6c 65 73 42 61 6e 6e 65 72 29 2c 74 68 69 73 2e 69 6e 6a 65 63 74 4a 53 28 65 2e 6a 61 76 61 73 63 72 69 70 74 29 2c 6e 75 6c 6c 3d 3d 3d 28 74 3d 65 2e 73 63 72 69 70 74 73 29 Data Ascii: ),this.salesBanner(e.salesBanner),this.injectJS(e.javascript),null===(t=e.scripts)\|\|void 0===t\|\|t.forEach((e=>{this.injectScript(e)}))}}const Render=new Renderer(APP_TARGET);var Type;!function(e){e[e.Failed=0]="Failed",e[e.Disabled=1]="Disable
Oct 10, 2024 15:43:04.433363914 CEST	1236	IN	Data Raw: 72 65 66 65 72 72 61 6c 22 3b 63 61 73 65 22 64 69 73 61 62 6c 65 64 5f 72 63 22 3a 72 65 74 75 72 6e 22 72 65 76 65 6e 75 65 5f 63 61 70 5f 72 65 61 63 68 65 64 22 3b 64 65 66 61 75 6c 74 3a 72 65 74 75 72 6e 22 6e 6f 5f 73 70 6f 6e 73 6f 72 73 Data Ascii: referral";case"disabled_rc":return"revenue_cap_reached";default:return"no_sponsors_message"}}toContext(){return{cannotPark:this.reason}}}class Failed extends State$2{constructor(){super(...arguments),this.type=Type.Failed}static cannotPark({ca
Oct 10, 2024 15:43:04.532344103 CEST	479	OUT	POST /_fd HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Content-Length: 0 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://www.waterbarriers.us Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Oct 10, 2024 15:43:04.645242929 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:04 GMT content-type: application/json; charset=utf-8 content-length: 5913 x-request-id: 47ae3fb4-abfe-4950-8207-18340ad7d82a set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:04 GMT Data Raw: 55 78 46 64 56 4d 77 4e 46 4e 77 4e 30 77 7a 4f 44 45 79 62 56 65 79 4a 69 62 47 39 6a 61 33 4d 69 4f 6c 74 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6e 4a 7a 49 69 77 69 62 6e 56 74 59 6d 56 79 49 6a 6f 7a 4c 43 4a 30 65 58 42 6c 49 6a 6f 69 63 6d 56 73 59 58 52 6c 5a 48 4e 6c 59 58 4a 6a 61 43 49 73 49 6e 56 70 54 33 42 30 61 57 31 70 65 6d 55 69 4f 6d 5a 68 62 48 4e 6c 66 53 78 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6d 46 6b 4c 54 45 69 4c 43 4a 75 64 57 31 69 5a 58 49 69 4f 6a 4d 73 49 6e 52 35 63 47 55 69 4f 69 4a 68 5a 48 4d 69 4c 43 4a 31 61 55 39 77 64 47 6c 74 61 58 70 6c 49 6a 70 6d 59 57 78 7a 5a 58 31 64 4c 43 4a 6a 59 57 35 75 62 33 52 51 59 58 4a 72 49 6a 6f 69 49 69 77 69 59 32 46 75 57 6d 56 79 62 30 4e 73 61 57 4e 72 49 6a 70 30 63 6e 56 6c 4c 43 4a 6b 62 32 31 68 61 57 35 4f 59 57 31 6c 49 6a 6f 69 64 32 46 30 5a 58 4a 69 59 58 4a 79 61 57 56 79 63 79 35 31 63 79 49 73 49 6d 5a 6b 58 33 4e 6c 63 6e 5a 6c 63 69 49 36 49 6d 6c 77 4c 54 45 77 4c 54 49 77 4d [TRUNCATED] Data Ascii: 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
Oct 10, 2024 15:43:08.329044104 CEST	574	OUT	POST /_tr HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Content-Length: 2161 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://www.waterbarriers.us Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:08.429697990 CEST	281	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:08 GMT content-type: application/json; charset=utf-8 content-length: 2 x-request-id: feb906cb-40a4-4c2c-9715-70be8167bbb7 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:08 GMT Data Raw: 6f 6b Data Ascii: ok

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:04.570358038 CEST	347	OUT	GET /bvIYRmogX.js HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Oct 10, 2024 15:43:05.032871008 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:04 GMT content-type: application/javascript; charset=utf-8 content-length: 34193 x-request-id: 52bfb922-f495-4a18-a034-362b05df402e set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:04 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}get isBlocked(){return this.
Oct 10, 2024 15:43:05.032886028 CEST	1236	IN	Data Raw: 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 42 4c 4f 43 4b 45 44 7d 67 65 74 20 69 73 41 6c 6c 6f 77 65 64 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 41 4c 4c 4f 57 45 44 7d 74 6f 43 6f Data Ascii: state===Blocking.BLOCKED}get isAllowed(){return this.state===Blocking.ALLOWED}toContext(){return{user_has_ad_blocker:null,is_ad_blocked:null}}}const OBFUSCATING_BASE_64_PREFIX="UxFdVMwNFNwN0wzODEybV",encode=e=>OBFUSCATING_BASE_64_PREFIX+btoa(u
Oct 10, 2024 15:43:05.032903910 CEST	1236	IN	Data Raw: 5f 46 41 49 4c 5f 41 44 53 3d 22 63 61 66 5f 61 64 6c 6f 61 64 66 61 69 6c 5f 61 64 73 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 47 42 3d 22 64 69 73 61 62 6c 65 64 5f 67 62 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 41 42 3d 22 64 69 73 61 62 6c 65 64 Data Ascii: _FAIL_ADS="caf_adloadfail_ads",e.DISABLED_GB="disabled_gb",e.DISABLED_AB="disabled_ab",e.DISABLED_DS="disabled_ds",e.AD_BLOCKED="ad_blocked",e.PREFERRED="preferred"}(ZeroClickReasons\|\|(ZeroClickReasons={}));const getZeroClick=e=>__awaiter(void
Oct 10, 2024 15:43:05.032915115 CEST	1236	IN	Data Raw: 69 74 79 3a 20 30 3b 5c 6e 20 20 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 6e 3b 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 53 74 61 74 75 73 20 4d 65 73 73 61 67 65 73 20 2d 20 54 68 65 73 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 20 77 68 65 6e Data Ascii: ity: 0;\n visibility: hidden;\n}\n\n/* Status Messages - These are displayed when we are not rendering ad blocks or Related Search */\n\n#pk-status-message {\n height: 100vh;\n width: 100%;\n display: flex;\n flex-direction: column;\n al
Oct 10, 2024 15:43:05.032933950 CEST	1236	IN	Data Raw: 3a 20 31 33 70 78 3b 5c 6e 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 30 25 3b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 63 63 63 3b 5c 6e 20 20 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 Data Ascii: : 13px;\n border-radius: 50%;\n background: #ccc;\n animation-timing-function: cubic-bezier(0, 1, 1, 0);\n}\n\n.pk-loader div:nth-child(1) {\n left: 8px;\n animation: pk-anim-1 0.6s infinite;\n}\n\n.pk-loader div:nth-child(2) {\n left: 8
Oct 10, 2024 15:43:05.032944918 CEST	1236	IN	Data Raw: 2c 50 41 47 45 5f 52 45 41 44 59 5f 43 4c 41 53 53 3d 22 70 6b 2d 70 61 67 65 2d 72 65 61 64 79 22 2c 4d 45 53 53 41 47 45 5f 54 45 4d 50 4c 41 54 45 3d 27 3c 64 69 76 20 69 64 3d 22 70 6b 2d 73 74 61 74 75 73 2d 6d 65 73 73 61 67 65 22 3e 3c 2f Data Ascii: ,PAGE_READY_CLASS="pk-page-ready",MESSAGE_TEMPLATE='<div id="pk-status-message"></div>';class Renderer{constructor(e){this._domIsReady=!1,this.revealPage=()=>{this.domNode&&this.domNode.classList.add(PAGE_READY_CLASS)},this.injectMetaDescripti
Oct 10, 2024 15:43:05.032958031 CEST	1236	IN	Data Raw: 3f 28 61 2e 73 74 79 6c 65 2e 6d 61 72 67 69 6e 54 6f 70 3d 22 33 30 70 78 22 2c 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 29 3a 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 2e 70 72 65 70 65 6e 64 28 61 29 7d Data Ascii: ?(a.style.marginTop="30px",document.body.appendChild(a)):document.body.prepend(a)}loading(e){let t="a few";e>0&&(t=`<span id="redirect">${e}</span>`),this.message(`\n <div class="pk-loader">\n <div></div>\n <div></div>\n
Oct 10, 2024 15:43:05.032968998 CEST	1156	IN	Data Raw: 3c 62 72 3e 22 29 29 7d 69 6e 6a 65 63 74 53 74 79 6c 65 73 28 65 29 7b 69 66 28 21 65 29 72 65 74 75 72 6e 3b 63 6f 6e 73 74 20 74 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 74 79 6c 65 22 29 3b 74 2e 69 6e 6e Data Ascii: <br>"))}injectStyles(e){if(!e)return;const t=document.createElement("style");t.innerHTML=e.toString(),document.head.appendChild(t)}injectScript(e){if(!e)return;const t=document.createElement("script");t.type="text/javascript",t.src=e,document.
Oct 10, 2024 15:43:05.032980919 CEST	1236	IN	Data Raw: 73 73 20 44 69 73 61 62 6c 65 64 20 65 78 74 65 6e 64 73 20 53 74 61 74 65 24 32 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 29 7b 73 75 70 65 72 28 2e 2e 2e 61 72 67 75 6d 65 6e 74 73 29 2c 74 68 69 73 2e 74 79 70 65 3d 54 79 70 65 2e 44 69 73 61 62 Data Ascii: ss Disabled extends State$2{constructor(){super(...arguments),this.type=Type.Disabled}static build(e,t){let n;switch(t===Blocking.BLOCKED&&(n="adblocker"),e.cannotPark){case"disabled_mr":case"disabled_rc":n=e.cannotPark}if(n){const t=new Disab
Oct 10, 2024 15:43:05.032994032 CEST	1236	IN	Data Raw: 61 6e 6e 6f 74 4c 6f 61 64 41 64 73 3a 65 7d 29 7b 69 66 28 65 29 7b 63 6f 6e 73 74 20 65 3d 6e 65 77 20 46 61 69 6c 65 64 3b 72 65 74 75 72 6e 20 65 2e 72 65 61 73 6f 6e 3d 22 6e 6f 5f 73 70 6f 6e 73 6f 72 73 22 2c 65 7d 7d 73 74 61 74 69 63 20 Data Ascii: annotLoadAds:e}){if(e){const e=new Failed;return e.reason="no_sponsors",e}}static fromError(e){const t=new Failed;return t.reason="js_error",t.error=e,t}get track(){return!!this.trackingType}get message(){switch(this.reason){case"disabled_fr":
Oct 10, 2024 15:43:05.037918091 CEST	1236	IN	Data Raw: 73 73 20 50 61 72 6b 69 6e 67 20 65 78 74 65 6e 64 73 20 53 74 61 74 65 24 32 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 29 7b 73 75 70 65 72 28 2e 2e 2e 61 72 67 75 6d 65 6e 74 73 29 2c 74 68 69 73 2e 74 79 70 65 3d 54 79 70 65 2e 50 61 72 6b 69 6e Data Ascii: ss Parking extends State$2{constructor(){super(...arguments),this.type=Type.Parking}static build(e,t){const n=new Parking;n.domain=e.domainName,n.html=e.template,n.scripts=e.scripts\|\|[],n.javascript=e.inlineJs,n.stylesheet=e.styles,n.imprint=e

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:04.673101902 CEST	338	OUT	GET /_fd HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917
Oct 10, 2024 15:43:05.128045082 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:04 GMT content-type: text/html; charset=utf-8 content-length: 1062 x-request-id: 16277327-3514-4143-bcde-b57d0567811f cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_ppj6oaGsmAjVodO2pBZKF/Hwd1Eam0LgRuPb4l3i4dnTYEdvVNurC3s6FePE7nQjeBo0xfPk1lXX4XSEbydPew== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:05 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 70 70 6a 36 6f 61 47 73 6d 41 6a 56 6f 64 4f 32 70 42 5a 4b 46 2f 48 77 64 31 45 61 6d 30 4c 67 52 75 50 62 34 6c 33 69 34 64 6e 54 59 45 64 76 56 4e 75 72 43 33 73 36 46 65 50 45 37 6e 51 6a 65 42 6f 30 78 66 50 6b 31 6c 58 58 34 58 53 45 62 79 64 50 65 77 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_ppj6oaGsmAjVodO2pBZKF/Hwd1Eam0LgRuPb4l3i4dnTYEdvVNurC3s6FePE7nQjeBo0xfPk1lXX4XSEbydPew==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Oct 10, 2024 15:43:05.128077030 CEST	488	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiODIwYmQ3MDQtODM4MC00NTc4LTg1MzItMzBhMzY5NGQ0OTE3IiwicGFnZV90aW1lIjoxNzI4NTY3Nzg1LCJwYWdlX3VybCI6Imh0dHA6L
Oct 10, 2024 15:43:08.434206009 CEST	430	OUT	GET /_tr HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:08.535851002 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:08 GMT content-type: text/html; charset=utf-8 content-length: 1062 x-request-id: ff2de80d-af00-435f-b9b3-9cfc563a4cbe cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_x/ApGWinxM0KFO7yIfHMTzCyaxwKIdzNaOq1sOx4mO+aiBs3xq6Iju0wvXIkMsCskd4nMV7zwliWLb+qwDJBCw== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:08 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 78 2f 41 70 47 57 69 6e 78 4d 30 4b 46 4f 37 79 49 66 48 4d 54 7a 43 79 61 78 77 4b 49 64 7a 4e 61 4f 71 31 73 4f 78 34 6d 4f 2b 61 69 42 73 33 78 71 36 49 6a 75 30 77 76 58 49 6b 4d 73 43 73 6b 64 34 6e 4d 56 37 7a 77 6c 69 57 4c 62 2b 71 77 44 4a 42 43 77 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_x/ApGWinxM0KFO7yIfHMTzCyaxwKIdzNaOq1sOx4mO+aiBs3xq6Iju0wvXIkMsCskd4nMV7zwliWLb+qwDJBCw==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Oct 10, 2024 15:43:08.536667109 CEST	488	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiODIwYmQ3MDQtODM4MC00NTc4LTg1MzItMzBhMzY5NGQ0OTE3IiwicGFnZV90aW1lIjoxNzI4NTY3Nzg4LCJwYWdlX3VybCI6Imh0dHA6L

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:14.156491995 CEST	233	IN	HTTP/1.1 408 Request Time-out Content-length: 110 Cache-Control: no-cache Connection: close Content-Type: text/html Data Raw: 3c 68 74 6d 6c 3e 3c 62 6f 64 79 3e 3c 68 31 3e 34 30 38 20 52 65 71 75 65 73 74 20 54 69 6d 65 2d 6f 75 74 3c 2f 68 31 3e 0a 59 6f 75 72 20 62 72 6f 77 73 65 72 20 64 69 64 6e 27 74 20 73 65 6e 64 20 61 20 63 6f 6d 70 6c 65 74 65 20 72 65 71 75 65 73 74 20 69 6e 20 74 69 6d 65 2e 0a 3c 2f 62 6f 64 79 3e 3c 2f 68 74 6d 6c 3e 0a Data Ascii: <html><body><h1>408 Request Time-out</h1>Your browser didn't send a complete request in time.</body></html>
Oct 10, 2024 15:43:28.086117983 CEST	909	OUT	GET /?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:28.086414099 CEST	909	OUT	GET /?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:28.571394920 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:28 GMT content-type: text/html; charset=utf-8 content-length: 1986 x-request-id: 11e6cc4a-d7f7-4804-a5f9-6c270700f147 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_cOVw6sYdROnSU0DCOC06oXhnDa7hqtUnfCGCieu6vhWlS5LNtBL+ViTf7/OQoLKNNgmeDQsMOAEz2hqvlCYzWA== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:28 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 63 4f 56 77 36 73 59 64 52 4f 6e 53 55 30 44 43 4f 43 30 36 6f 58 68 6e 44 61 37 68 71 74 55 6e 66 43 47 43 69 65 75 36 76 68 57 6c 53 35 4c 4e 74 42 4c 2b 56 69 54 66 37 2f 4f 51 6f 4c 4b 4e 4e 67 6d 65 44 51 73 4d 4f 41 45 7a 32 68 71 76 6c 43 59 7a 57 41 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_cOVw6sYdROnSU0DCOC06oXhnDa7hqtUnfCGCieu6vhWlS5LNtBL+ViTf7/OQoLKNNgmeDQsMOAEz2hqvlCYzWA==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Oct 10, 2024 15:43:28.571409941 CEST	224	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiODIwYmQ3MDQtODM4MC00NTc4LTg1MzItMzBhMzY5NGQ0OTE3IiwicGFnZV90aW1lIjoxNzI4NTY3ODA4LCJwYW
Oct 10, 2024 15:43:28.571420908 CEST	1188	IN	Data Raw: 64 6c 58 33 56 79 62 43 49 36 49 6d 68 30 64 48 41 36 4c 79 39 33 64 33 63 75 64 32 46 30 5a 58 4a 69 59 58 4a 79 61 57 56 79 63 79 35 31 63 79 38 2f 59 32 46 6d 50 54 46 63 64 54 41 77 4d 6a 5a 69 63 48 51 39 4d 7a 51 31 58 48 55 77 4d 44 49 32 Data Ascii: dlX3VybCI6Imh0dHA6Ly93d3cud2F0ZXJiYXJyaWVycy51cy8/Y2FmPTFcdTAwMjZicHQ9MzQ1XHUwMDI2cXVlcnk9Um9vZitSZXBhaXJzXHUwMDI2YWZkVG9rZW49Q2hNSXJ0dVk1X2lEaVFNVnVKMzlCeDFsMURBVUVuSUJsTHFwajVQYWVkVFJGLXloX2tnNzNDQkFGWEc3cldmSkdIX0o3anluSmpYaFM1cVlURUZIelVaS
Oct 10, 2024 15:43:28.600073099 CEST	757	OUT	GET /bNAskrfrI.js HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Referer: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:28.705564022 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:27 GMT content-type: application/javascript; charset=utf-8 content-length: 34193 x-request-id: 96a1d540-24f8-4b89-b388-0e559ea28090 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:28 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}get isBlocked(){return this.
Oct 10, 2024 15:43:28.705596924 CEST	1236	IN	Data Raw: 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 42 4c 4f 43 4b 45 44 7d 67 65 74 20 69 73 41 6c 6c 6f 77 65 64 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 41 4c 4c 4f 57 45 44 7d 74 6f 43 6f Data Ascii: state===Blocking.BLOCKED}get isAllowed(){return this.state===Blocking.ALLOWED}toContext(){return{user_has_ad_blocker:null,is_ad_blocked:null}}}const OBFUSCATING_BASE_64_PREFIX="UxFdVMwNFNwN0wzODEybV",encode=e=>OBFUSCATING_BASE_64_PREFIX+btoa(u
Oct 10, 2024 15:43:28.705609083 CEST	1236	IN	Data Raw: 5f 46 41 49 4c 5f 41 44 53 3d 22 63 61 66 5f 61 64 6c 6f 61 64 66 61 69 6c 5f 61 64 73 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 47 42 3d 22 64 69 73 61 62 6c 65 64 5f 67 62 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 41 42 3d 22 64 69 73 61 62 6c 65 64 Data Ascii: _FAIL_ADS="caf_adloadfail_ads",e.DISABLED_GB="disabled_gb",e.DISABLED_AB="disabled_ab",e.DISABLED_DS="disabled_ds",e.AD_BLOCKED="ad_blocked",e.PREFERRED="preferred"}(ZeroClickReasons\|\|(ZeroClickReasons={}));const getZeroClick=e=>__awaiter(void
Oct 10, 2024 15:43:28.705620050 CEST	1236	IN	Data Raw: 69 74 79 3a 20 30 3b 5c 6e 20 20 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 6e 3b 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 53 74 61 74 75 73 20 4d 65 73 73 61 67 65 73 20 2d 20 54 68 65 73 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 20 77 68 65 6e Data Ascii: ity: 0;\n visibility: hidden;\n}\n\n/* Status Messages - These are displayed when we are not rendering ad blocks or Related Search */\n\n#pk-status-message {\n height: 100vh;\n width: 100%;\n display: flex;\n flex-direction: column;\n al
Oct 10, 2024 15:43:28.705631971 CEST	1236	IN	Data Raw: 3a 20 31 33 70 78 3b 5c 6e 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 30 25 3b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 63 63 63 3b 5c 6e 20 20 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 Data Ascii: : 13px;\n border-radius: 50%;\n background: #ccc;\n animation-timing-function: cubic-bezier(0, 1, 1, 0);\n}\n\n.pk-loader div:nth-child(1) {\n left: 8px;\n animation: pk-anim-1 0.6s infinite;\n}\n\n.pk-loader div:nth-child(2) {\n left: 8
Oct 10, 2024 15:43:28.705643892 CEST	1236	IN	Data Raw: 2c 50 41 47 45 5f 52 45 41 44 59 5f 43 4c 41 53 53 3d 22 70 6b 2d 70 61 67 65 2d 72 65 61 64 79 22 2c 4d 45 53 53 41 47 45 5f 54 45 4d 50 4c 41 54 45 3d 27 3c 64 69 76 20 69 64 3d 22 70 6b 2d 73 74 61 74 75 73 2d 6d 65 73 73 61 67 65 22 3e 3c 2f Data Ascii: ,PAGE_READY_CLASS="pk-page-ready",MESSAGE_TEMPLATE='<div id="pk-status-message"></div>';class Renderer{constructor(e){this._domIsReady=!1,this.revealPage=()=>{this.domNode&&this.domNode.classList.add(PAGE_READY_CLASS)},this.injectMetaDescripti
Oct 10, 2024 15:43:28.705657005 CEST	1236	IN	Data Raw: 3f 28 61 2e 73 74 79 6c 65 2e 6d 61 72 67 69 6e 54 6f 70 3d 22 33 30 70 78 22 2c 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 29 3a 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 2e 70 72 65 70 65 6e 64 28 61 29 7d Data Ascii: ?(a.style.marginTop="30px",document.body.appendChild(a)):document.body.prepend(a)}loading(e){let t="a few";e>0&&(t=`<span id="redirect">${e}</span>`),this.message(`\n <div class="pk-loader">\n <div></div>\n <div></div>\n
Oct 10, 2024 15:43:28.705668926 CEST	1236	IN	Data Raw: 3c 62 72 3e 22 29 29 7d 69 6e 6a 65 63 74 53 74 79 6c 65 73 28 65 29 7b 69 66 28 21 65 29 72 65 74 75 72 6e 3b 63 6f 6e 73 74 20 74 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 74 79 6c 65 22 29 3b 74 2e 69 6e 6e Data Ascii: <br>"))}injectStyles(e){if(!e)return;const t=document.createElement("style");t.innerHTML=e.toString(),document.head.appendChild(t)}injectScript(e){if(!e)return;const t=document.createElement("script");t.type="text/javascript",t.src=e,document.
Oct 10, 2024 15:43:28.705684900 CEST	1236	IN	Data Raw: 61 62 6c 65 64 7d 73 74 61 74 69 63 20 62 75 69 6c 64 28 65 2c 74 29 7b 6c 65 74 20 6e 3b 73 77 69 74 63 68 28 74 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 42 4c 4f 43 4b 45 44 26 26 28 6e 3d 22 61 64 62 6c 6f 63 6b 65 72 22 29 2c 65 2e 63 61 6e 6e 6f Data Ascii: abled}static build(e,t){let n;switch(t===Blocking.BLOCKED&&(n="adblocker"),e.cannotPark){case"disabled_mr":case"disabled_rc":n=e.cannotPark}if(n){const t=new Disabled;return t.reason=n,t.domain=e.domainName,t}}get message(){switch(this.reason)
Oct 10, 2024 15:43:28.805597067 CEST	1129	OUT	POST /_fd?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Content-Length: 0 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://www.waterbarriers.us Referer: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:28.916749001 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:28 GMT content-type: application/json; charset=utf-8 content-length: 5913 x-request-id: cea86447-9c47-4b3c-816e-0fa92dd4b4c6 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:28 GMT Data Raw: 55 78 46 64 56 4d 77 4e 46 4e 77 4e 30 77 7a 4f 44 45 79 62 56 65 79 4a 69 62 47 39 6a 61 33 4d 69 4f 6c 74 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6e 4a 7a 49 69 77 69 62 6e 56 74 59 6d 56 79 49 6a 6f 7a 4c 43 4a 30 65 58 42 6c 49 6a 6f 69 63 6d 56 73 59 58 52 6c 5a 48 4e 6c 59 58 4a 6a 61 43 49 73 49 6e 56 70 54 33 42 30 61 57 31 70 65 6d 55 69 4f 6d 5a 68 62 48 4e 6c 66 53 78 37 49 6d 4e 76 62 6e 52 68 61 57 35 6c 63 69 49 36 49 6d 46 6b 4c 54 45 69 4c 43 4a 75 64 57 31 69 5a 58 49 69 4f 6a 4d 73 49 6e 52 35 63 47 55 69 4f 69 4a 68 5a 48 4d 69 4c 43 4a 31 61 55 39 77 64 47 6c 74 61 58 70 6c 49 6a 70 6d 59 57 78 7a 5a 58 31 64 4c 43 4a 6a 59 57 35 75 62 33 52 51 59 58 4a 72 49 6a 6f 69 49 69 77 69 59 32 46 75 57 6d 56 79 62 30 4e 73 61 57 4e 72 49 6a 70 30 63 6e 56 6c 4c 43 4a 6b 62 32 31 68 61 57 35 4f 59 57 31 6c 49 6a 6f 69 64 32 46 30 5a 58 4a 69 59 58 4a 79 61 57 56 79 63 79 35 31 63 79 49 73 49 6d 5a 6b 58 33 4e 6c 63 6e 5a 6c 63 69 49 36 49 6d 6c 77 4c 54 45 77 4c 54 49 77 4d [TRUNCATED] Data Ascii: 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
Oct 10, 2024 15:43:30.902129889 CEST	853	OUT	POST /_tr HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive Content-Length: 2969 Accept: application/json User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: application/json Origin: http://www.waterbarriers.us Referer: http://www.waterbarriers.us/?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:31.012372971 CEST	281	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:30 GMT content-type: application/json; charset=utf-8 content-length: 2 x-request-id: d8e6c97a-752d-4f47-883f-4a098f9adcc5 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:30 GMT Data Raw: 6f 6b Data Ascii: ok

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:28.820250034 CEST	439	OUT	GET /bNAskrfrI.js HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:29.442660093 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:28 GMT content-type: application/javascript; charset=utf-8 content-length: 34193 x-request-id: 9d52187a-0fff-468e-a06e-298b495eae94 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:29 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}get isBlocked(){return this.
Oct 10, 2024 15:43:29.442675114 CEST	1236	IN	Data Raw: 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 42 4c 4f 43 4b 45 44 7d 67 65 74 20 69 73 41 6c 6c 6f 77 65 64 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 74 61 74 65 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 41 4c 4c 4f 57 45 44 7d 74 6f 43 6f Data Ascii: state===Blocking.BLOCKED}get isAllowed(){return this.state===Blocking.ALLOWED}toContext(){return{user_has_ad_blocker:null,is_ad_blocked:null}}}const OBFUSCATING_BASE_64_PREFIX="UxFdVMwNFNwN0wzODEybV",encode=e=>OBFUSCATING_BASE_64_PREFIX+btoa(u
Oct 10, 2024 15:43:29.442692995 CEST	1236	IN	Data Raw: 5f 46 41 49 4c 5f 41 44 53 3d 22 63 61 66 5f 61 64 6c 6f 61 64 66 61 69 6c 5f 61 64 73 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 47 42 3d 22 64 69 73 61 62 6c 65 64 5f 67 62 22 2c 65 2e 44 49 53 41 42 4c 45 44 5f 41 42 3d 22 64 69 73 61 62 6c 65 64 Data Ascii: _FAIL_ADS="caf_adloadfail_ads",e.DISABLED_GB="disabled_gb",e.DISABLED_AB="disabled_ab",e.DISABLED_DS="disabled_ds",e.AD_BLOCKED="ad_blocked",e.PREFERRED="preferred"}(ZeroClickReasons\|\|(ZeroClickReasons={}));const getZeroClick=e=>__awaiter(void
Oct 10, 2024 15:43:29.442704916 CEST	1236	IN	Data Raw: 69 74 79 3a 20 30 3b 5c 6e 20 20 76 69 73 69 62 69 6c 69 74 79 3a 20 68 69 64 64 65 6e 3b 5c 6e 7d 5c 6e 5c 6e 2f 2a 20 53 74 61 74 75 73 20 4d 65 73 73 61 67 65 73 20 2d 20 54 68 65 73 65 20 61 72 65 20 64 69 73 70 6c 61 79 65 64 20 77 68 65 6e Data Ascii: ity: 0;\n visibility: hidden;\n}\n\n/* Status Messages - These are displayed when we are not rendering ad blocks or Related Search */\n\n#pk-status-message {\n height: 100vh;\n width: 100%;\n display: flex;\n flex-direction: column;\n al
Oct 10, 2024 15:43:29.442718029 CEST	1236	IN	Data Raw: 3a 20 31 33 70 78 3b 5c 6e 20 20 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 20 35 30 25 3b 5c 6e 20 20 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 63 63 63 3b 5c 6e 20 20 61 6e 69 6d 61 74 69 6f 6e 2d 74 69 6d 69 6e 67 2d 66 75 6e 63 74 69 6f 6e 3a 20 Data Ascii: : 13px;\n border-radius: 50%;\n background: #ccc;\n animation-timing-function: cubic-bezier(0, 1, 1, 0);\n}\n\n.pk-loader div:nth-child(1) {\n left: 8px;\n animation: pk-anim-1 0.6s infinite;\n}\n\n.pk-loader div:nth-child(2) {\n left: 8
Oct 10, 2024 15:43:29.442747116 CEST	1236	IN	Data Raw: 2c 50 41 47 45 5f 52 45 41 44 59 5f 43 4c 41 53 53 3d 22 70 6b 2d 70 61 67 65 2d 72 65 61 64 79 22 2c 4d 45 53 53 41 47 45 5f 54 45 4d 50 4c 41 54 45 3d 27 3c 64 69 76 20 69 64 3d 22 70 6b 2d 73 74 61 74 75 73 2d 6d 65 73 73 61 67 65 22 3e 3c 2f Data Ascii: ,PAGE_READY_CLASS="pk-page-ready",MESSAGE_TEMPLATE='<div id="pk-status-message"></div>';class Renderer{constructor(e){this._domIsReady=!1,this.revealPage=()=>{this.domNode&&this.domNode.classList.add(PAGE_READY_CLASS)},this.injectMetaDescripti
Oct 10, 2024 15:43:29.442759037 CEST	1236	IN	Data Raw: 3f 28 61 2e 73 74 79 6c 65 2e 6d 61 72 67 69 6e 54 6f 70 3d 22 33 30 70 78 22 2c 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 29 3a 64 6f 63 75 6d 65 6e 74 2e 62 6f 64 79 2e 70 72 65 70 65 6e 64 28 61 29 7d Data Ascii: ?(a.style.marginTop="30px",document.body.appendChild(a)):document.body.prepend(a)}loading(e){let t="a few";e>0&&(t=`<span id="redirect">${e}</span>`),this.message(`\n <div class="pk-loader">\n <div></div>\n <div></div>\n
Oct 10, 2024 15:43:29.442770004 CEST	1236	IN	Data Raw: 3c 62 72 3e 22 29 29 7d 69 6e 6a 65 63 74 53 74 79 6c 65 73 28 65 29 7b 69 66 28 21 65 29 72 65 74 75 72 6e 3b 63 6f 6e 73 74 20 74 3d 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 73 74 79 6c 65 22 29 3b 74 2e 69 6e 6e Data Ascii: <br>"))}injectStyles(e){if(!e)return;const t=document.createElement("style");t.innerHTML=e.toString(),document.head.appendChild(t)}injectScript(e){if(!e)return;const t=document.createElement("script");t.type="text/javascript",t.src=e,document.
Oct 10, 2024 15:43:29.442787886 CEST	1236	IN	Data Raw: 61 62 6c 65 64 7d 73 74 61 74 69 63 20 62 75 69 6c 64 28 65 2c 74 29 7b 6c 65 74 20 6e 3b 73 77 69 74 63 68 28 74 3d 3d 3d 42 6c 6f 63 6b 69 6e 67 2e 42 4c 4f 43 4b 45 44 26 26 28 6e 3d 22 61 64 62 6c 6f 63 6b 65 72 22 29 2c 65 2e 63 61 6e 6e 6f Data Ascii: abled}static build(e,t){let n;switch(t===Blocking.BLOCKED&&(n="adblocker"),e.cannotPark){case"disabled_mr":case"disabled_rc":n=e.cannotPark}if(n){const t=new Disabled;return t.reason=n,t.domain=e.domainName,t}}get message(){switch(this.reason)
Oct 10, 2024 15:43:29.442797899 CEST	1236	IN	Data Raw: 63 20 66 72 6f 6d 45 72 72 6f 72 28 65 29 7b 63 6f 6e 73 74 20 74 3d 6e 65 77 20 46 61 69 6c 65 64 3b 72 65 74 75 72 6e 20 74 2e 72 65 61 73 6f 6e 3d 22 6a 73 5f 65 72 72 6f 72 22 2c 74 2e 65 72 72 6f 72 3d 65 2c 74 7d 67 65 74 20 74 72 61 63 6b Data Ascii: c fromError(e){const t=new Failed;return t.reason="js_error",t.error=e,t}get track(){return!!this.trackingType}get message(){switch(this.reason){case"disabled_fr":case"disabled_rc":case"no_sponsors":return`\n <h1 data-nosnippet>No Spo
Oct 10, 2024 15:43:29.442816019 CEST	1236	IN	Data Raw: 69 6e 67 7d 73 74 61 74 69 63 20 62 75 69 6c 64 28 65 2c 74 29 7b 63 6f 6e 73 74 20 6e 3d 6e 65 77 20 50 61 72 6b 69 6e 67 3b 6e 2e 64 6f 6d 61 69 6e 3d 65 2e 64 6f 6d 61 69 6e 4e 61 6d 65 2c 6e 2e 68 74 6d 6c 3d 65 2e 74 65 6d 70 6c 61 74 65 2c Data Ascii: ing}static build(e,t){const n=new Parking;n.domain=e.domainName,n.html=e.template,n.scripts=e.scripts\|\|[],n.javascript=e.inlineJs,n.stylesheet=e.styles,n.imprint=e.imprintText;const i=unpackPHPArrayObject(e,"salesSettings"),s=(null==i?void 0:i
Oct 10, 2024 15:43:29.796999931 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:28 GMT content-type: application/javascript; charset=utf-8 content-length: 34193 x-request-id: 9d52187a-0fff-468e-a06e-298b495eae94 set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:29 GMT Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 3f 74 28 65 78 70 6f 72 74 73 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 22 65 78 70 6f 72 74 73 22 5d 2c 74 29 3a 74 28 28 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 65 7c 7c 73 65 6c 66 29 2e 76 65 72 73 69 6f 6e 3d 7b 7d 29 7d 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 65 78 70 6f 72 74 73 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 5f 5f 61 77 61 69 74 65 72 28 65 2c 74 2c 6e 2c 69 29 7b 72 65 74 75 72 6e 20 6e 65 77 28 6e 7c 7c 28 6e 3d 50 72 6f 6d 69 73 65 29 29 28 28 66 75 6e 63 74 69 6f 6e 28 73 2c 61 29 7b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 74 72 79 7b 64 28 69 2e 6e [TRUNCATED] Data Ascii: !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports):"function"==typeof define&&define.amd?define(["exports"],t):t((e="undefined"!=typeof globalThis?globalThis:e\|\|self).version={})}(this,(function(exports){"use strict";function __awaiter(e,t,n,i){return new(n\|\|(n=Promise))((function(s,a){function o(e){try{d(i.next(e))}catch(e){a(e)}}function r(e){try{d(i.throw(e))}catch(e){a(e)}}function d(e){var t;e.done?s(e.value):(t=e.value,t instanceof n?t:new n((function(e){e(t)}))).then(o,r)}d((i=i.apply(e,t\|\|[])).next())}))}var Blocking;"function"==typeof SuppressedError&&SuppressedError,function(e){e.PENDING="pending",e.NONE="none",e.BLOCKED="blocked",e.ALLOWED="allowed"}(Blocking\|\|(Blocking={}));class Adblock{constructor(e){this.state=Blocking.PENDING,this._mocked=!1,e?(this.state=e,this._mocked=!0):this.state=Blocking.ALLOWED}inject(){return __awaiter(this,void 0,void 0,(function*(){}))}get isBlocked(){return this.
Oct 10, 2024 15:43:31.238357067 CEST	430	OUT	GET /_tr HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:31.340198040 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:31 GMT content-type: text/html; charset=utf-8 content-length: 1062 x-request-id: 9afa2e6b-0f98-4296-8a1d-f744c22dda22 cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_x/ApGWinxM0KFO7yIfHMTzCyaxwKIdzNaOq1sOx4mO+aiBs3xq6Iju0wvXIkMsCskd4nMV7zwliWLb+qwDJBCw== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:31 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 78 2f 41 70 47 57 69 6e 78 4d 30 4b 46 4f 37 79 49 66 48 4d 54 7a 43 79 61 78 77 4b 49 64 7a 4e 61 4f 71 31 73 4f 78 34 6d 4f 2b 61 69 42 73 33 78 71 36 49 6a 75 30 77 76 58 49 6b 4d 73 43 73 6b 64 34 6e 4d 56 37 7a 77 6c 69 57 4c 62 2b 71 77 44 4a 42 43 77 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_x/ApGWinxM0KFO7yIfHMTzCyaxwKIdzNaOq1sOx4mO+aiBs3xq6Iju0wvXIkMsCskd4nMV7zwliWLb+qwDJBCw==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect

Timestamp	Bytes transferred	Direction	Data
Oct 10, 2024 15:43:28.927829981 CEST	709	OUT	GET /_fd?caf=1&bpt=345&query=Roof+Repairs&afdToken=ChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg&pcsa=false&nb=0&nm=13&nx=354&ny=61&is=700x480&clkt=2 HTTP/1.1 Host: www.waterbarriers.us Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9 Cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; __gsas=ID=75e03cd36f6eea1c:T=1728567786:RT=1728567786:S=ALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ
Oct 10, 2024 15:43:29.442878962 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:29 GMT content-type: text/html; charset=utf-8 content-length: 1930 x-request-id: 15cc3e38-c22c-4c91-94be-e63c15dc0aae cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_o4cnp0YT+7QgIuXXLfPFvRNvsQC6oO7xNw+83H8hny8nK+o2yVq6Xygck9v942Jj69xohDsCqNNrT2PO/ZP2BQ== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:29 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 6f 34 63 6e 70 30 59 54 2b 37 51 67 49 75 58 58 4c 66 50 46 76 52 4e 76 73 51 43 36 6f 4f 37 78 4e 77 2b 38 33 48 38 68 6e 79 38 6e 4b 2b 6f 32 79 56 71 36 58 79 67 63 6b 39 76 39 34 32 4a 6a 36 39 78 6f 68 44 73 43 71 4e 4e 72 54 32 50 4f 2f 5a 50 32 42 51 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_o4cnp0YT+7QgIuXXLfPFvRNvsQC6oO7xNw+83H8hny8nK+o2yVq6Xygck9v942Jj69xohDsCqNNrT2PO/ZP2BQ==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect
Oct 10, 2024 15:43:29.442909002 CEST	1236	IN	Data Raw: 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 20 63 72 6f 73 73 6f 72 69 67 69 6e 3e 0a 3c 2f 68 65 61 64 3e 0a 3c 62 6f 64 79 3e 0a 3c 64 69 76 20 69 64 3d 22 74 61 72 67 65 74 22 20 73 74 79 6c 65 Data Ascii: " href="https://www.google.com" crossorigin></head><body><div id="target" style="opacity: 0"></div><script>window.park = "eyJ1dWlkIjoiODIwYmQ3MDQtODM4MC00NTc4LTg1MzItMzBhMzY5NGQ0OTE3IiwicGFnZV90aW1lIjoxNzI4NTY3ODA5LCJwYWdlX3VybCI6Imh0dHA6L
Oct 10, 2024 15:43:29.442918062 CEST	120	IN	Data Raw: 63 75 64 32 46 30 5a 58 4a 69 59 58 4a 79 61 57 56 79 63 79 35 31 63 79 49 73 49 6d 6c 77 49 6a 6f 69 4f 43 34 30 4e 69 34 78 4d 6a 4d 75 4d 7a 4d 69 66 51 6f 3d 22 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 62 4d Data Ascii: cud2F0ZXJiYXJyaWVycy51cyIsImlwIjoiOC40Ni4xMjMuMzMifQo=";</script><script src="/bMUzNJFoS.js"></script></body></html>
Oct 10, 2024 15:43:29.442986012 CEST	120	IN	Data Raw: 63 75 64 32 46 30 5a 58 4a 69 59 58 4a 79 61 57 56 79 63 79 35 31 63 79 49 73 49 6d 6c 77 49 6a 6f 69 4f 43 34 30 4e 69 34 78 4d 6a 4d 75 4d 7a 4d 69 66 51 6f 3d 22 3b 3c 2f 73 63 72 69 70 74 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 62 4d Data Ascii: cud2F0ZXJiYXJyaWVycy51cyIsImlwIjoiOC40Ni4xMjMuMzMifQo=";</script><script src="/bMUzNJFoS.js"></script></body></html>
Oct 10, 2024 15:43:29.797394991 CEST	1236	IN	HTTP/1.1 200 OK date: Thu, 10 Oct 2024 13:43:29 GMT content-type: text/html; charset=utf-8 content-length: 1930 x-request-id: 15cc3e38-c22c-4c91-94be-e63c15dc0aae cache-control: no-store, max-age=0 accept-ch: sec-ch-prefers-color-scheme critical-ch: sec-ch-prefers-color-scheme vary: sec-ch-prefers-color-scheme x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_o4cnp0YT+7QgIuXXLfPFvRNvsQC6oO7xNw+83H8hny8nK+o2yVq6Xygck9v942Jj69xohDsCqNNrT2PO/ZP2BQ== set-cookie: parking_session=820bd704-8380-4578-8532-30a3694d4917; expires=Thu, 10 Oct 2024 13:58:29 GMT Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 64 61 74 61 2d 61 64 62 6c 6f 63 6b 6b 65 79 3d 22 4d 46 77 77 44 51 59 4a 4b 6f 5a 49 68 76 63 4e 41 51 45 42 42 51 41 44 53 77 41 77 53 41 4a 42 41 4e 44 72 70 32 6c 7a 37 41 4f 6d 41 44 61 4e 38 74 41 35 30 4c 73 57 63 6a 4c 46 79 51 46 63 62 2f 50 32 54 78 63 35 38 6f 59 4f 65 49 4c 62 33 76 42 77 37 4a 36 66 34 70 61 6d 6b 41 51 56 53 51 75 71 59 73 4b 78 33 59 7a 64 55 48 43 76 62 56 5a 76 46 55 73 43 41 77 45 41 41 51 3d 3d 5f 6f 34 63 6e 70 30 59 54 2b 37 51 67 49 75 58 58 4c 66 50 46 76 52 4e 76 73 51 43 36 6f 4f 37 78 4e 77 2b 38 33 48 38 68 6e 79 38 6e 4b 2b 6f 32 79 56 71 36 58 79 67 63 6b 39 76 39 34 32 4a 6a 36 39 78 6f 68 44 73 43 71 4e 4e 72 54 32 50 4f 2f 5a 50 32 42 51 3d 3d 22 20 6c 61 6e 67 3d 22 65 6e 22 20 73 74 79 6c 65 3d 22 62 61 63 6b 67 72 6f 75 6e 64 3a 20 23 32 42 32 42 32 42 3b 22 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d [TRUNCATED] Data Ascii: <!doctype html><html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_o4cnp0YT+7QgIuXXLfPFvRNvsQC6oO7xNw+83H8hny8nK+o2yVq6Xygck9v942Jj69xohDsCqNNrT2PO/ZP2BQ==" lang="en" style="background: #2B2B2B;"><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <link rel="icon" href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAIAAACQd1PeAAAADElEQVQI12P4//8/AAX+Av7czFnnAAAAAElFTkSuQmCC"> <link rel="preconnect

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:05 UTC	649	OUT	GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw== Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:05 UTC	845	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 153120 Date: Thu, 10 Oct 2024 13:43:05 GMT Expires: Thu, 10 Oct 2024 13:43:05 GMT Cache-Control: private, max-age=3600 ETag: "10782104542642864982" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-10 13:43:05 UTC	545	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 77 77 77 2e 67 6f 6f 67 6c 65 2e 63 6f 6d 22 2c 68 61 73 68 3a 22 31 34 36 35 30 35 35 37 35 37 31 34 36 35 32 30 33 39 34 39 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 31 34 33 37 2c 31 37 33 30 31 34 33 39 2c 31 37 33 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"www.google.com",hash:"14650557571465203949",packages:"domains",module:"ads",version:"1",m:{cei:"17301437,17301439,173
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 75 65 2c 22 5f 77 61 69 74 4f 6e 43 6f 6e 73 65 6e 74 46 6f 72 46 69 72 73 74 50 61 72 74 79 43 6f 6f 6b 69 65 22 3a 74 72 75 65 2c 22 65 6e 61 62 6c 65 45 6e 68 61 6e 63 65 64 54 61 72 67 65 74 69 6e 67 52 73 6f 6e 63 22 3a 74 72 75 65 2c 22 65 6e 61 62 6c 65 4e 6f 6e 62 6c 6f 63 6b 69 6e 67 53 61 73 43 6f 6f 6b 69 65 22 3a 74 72 75 65 7d 2c 6d 64 70 3a 31 38 30 30 30 30 30 2c 73 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 4c 6d 39 79 5a 79 78 70 62 69 35 75 5a 58 51 73 64 48 4a 68 62 6e 4e 73 59 58 52 6c 4c 6d 64 76 62 32 Data Ascii: ue,"_waitOnConsentForFirstPartyCookie":true,"enableEnhancedTargetingRsonc":true,"enableNonblockingSasCookie":true},mdp:1800000,ssdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRvLm9yZyxpbi5uZXQsdHJhbnNsYXRlLmdvb2
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 29 7d 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 6e 65 7d 3b 76 61 72 20 64 3d 22 6a 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 43 6c 61 6d 70 65 64 Data Ascii: )}if(a)return a;c.prototype.toString=function(){return this.ne};var d="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array Uint8Clamped
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 72 72 6f 72 28 61 2b 22 20 69 73 20 6e 6f 74 20 65 78 74 65 6e 73 69 62 6c 65 22 29 3b 72 65 74 75 72 6e 20 61 7d 3a 6e 75 6c 6c 7d 76 61 72 20 70 61 3d 6c 61 3b 0a 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 70 72 6f 74 6f 74 79 70 65 3d 6b 61 28 62 2e 70 72 6f 74 6f 74 79 70 65 29 3b 61 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 61 3b 69 66 28 70 61 29 70 61 28 61 2c 62 29 3b 65 6c 73 65 20 66 6f 72 28 76 61 72 20 63 20 69 6e 20 62 29 69 66 28 63 21 3d 22 70 72 6f 74 6f 74 79 70 65 22 29 69 66 28 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 69 65 73 29 7b 76 61 72 20 64 3d 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f 72 28 62 2c 63 29 3b 64 26 26 4f 62 6a Data Ascii: rror(a+" is not extensible");return a}:null}var pa=la;function qa(a,b){a.prototype=ka(b.prototype);a.prototype.constructor=a;if(pa)pa(a,b);else for(var c in b)if(c!="prototype")if(Object.defineProperties){var d=Object.getOwnPropertyDescriptor(b,c);d&&Obj
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 20 61 3b 63 61 73 65 20 22 66 75 6e 63 74 69 6f 6e 22 3a 68 3d 21 30 3b 62 72 65 61 6b 20 61 3b 0a 64 65 66 61 75 6c 74 3a 68 3d 21 31 7d 68 3f 74 68 69 73 2e 55 66 28 67 29 3a 74 68 69 73 2e 4d 64 28 67 29 7d 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 55 66 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 76 61 72 20 68 3d 76 6f 69 64 20 30 3b 74 72 79 7b 68 3d 67 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 62 64 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 68 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 67 67 28 68 2c 67 29 3a 74 68 69 73 2e 4d 64 28 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 62 64 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 74 68 69 73 2e 64 65 28 32 2c 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 4d 64 3d 66 Data Ascii: a;case "function":h=!0;break a;default:h=!1}h?this.Uf(g):this.Md(g)}};b.prototype.Uf=function(g){var h=void 0;try{h=g.then}catch(k){this.bd(k);return}typeof h=="function"?this.gg(h,g):this.Md(g)};b.prototype.bd=function(g){this.de(2,g)};b.prototype.Md=f
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 7d 3a 74 7d 76 61 72 20 6c 2c 6d 2c 70 3d 6e 65 77 20 62 28 66 75 6e 63 74 69 6f 6e 28 72 2c 74 29 7b 6c 3d 72 3b 6d 3d 74 7d 29 3b 74 68 69 73 2e 69 62 28 6b 28 67 2c 6c 29 2c 6b 28 68 2c 6d 29 29 3b 72 65 74 75 72 6e 20 70 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 69 62 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 0a 68 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 42 29 7b 63 61 73 65 20 31 3a 67 28 6c 2e 57 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 68 28 6c 2e 57 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 6f 72 28 22 55 6e Data Ascii: }:t}var l,m,p=new b(function(r,t){l=r;m=t});this.ib(k(g,l),k(h,m));return p};b.prototype.catch=function(g){return this.then(void 0,g)};b.prototype.ib=function(g,h){function k(){switch(l.B){case 1:g(l.Wa);break;case 2:h(l.Wa);break;default:throw Error("Un
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 7d 66 75 6e 63 74 69 6f 6e 20 65 28 6b 29 7b 69 66 28 21 73 61 28 6b 2c 67 29 29 7b 76 61 72 20 6c 3d 6e 65 77 20 63 3b 63 61 28 6b 2c 67 2c 7b 76 61 6c 75 65 3a 6c 7d 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b 3d 4f 62 6a 65 63 Data Ascii: =="function"}function e(k){if(!sa(k,g)){var l=new c;ca(k,g,{value:l})}}function f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k=Objec
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 6c 2c 6c 69 73 74 3a 6d 2c 69 6e 64 65 78 3a 68 2c 49 3a 70 7d 7d 72 65 74 75 72 6e 7b 69 64 3a 6c 2c 0a 6c 69 73 74 3a 6d 2c 69 6e 64 65 78 3a 2d 31 2c 49 3a 76 6f 69 64 20 30 7d 7d 66 75 6e 63 74 69 6f 6e 20 65 28 68 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 68 29 7b 68 3d 75 28 68 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 68 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 7c 7c 74 79 70 65 6f 66 Data Ascii: l,list:m,index:h,I:p}}return{id:l,list:m,index:-1,I:void 0}}function e(h){this[0]={};this[1]=b();this.size=0;if(h){h=u(h);for(var k;!(k=h.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.entries\|\|typeof
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 68 29 7b 72 65 74 75 72 6e 20 68 2e 6b 65 79 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 75 65 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 63 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 68 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 68 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 Data Ascii: h){return h.key})};e.prototype.values=function(){return c(this,function(h){return h.value})};e.prototype.forEach=function(h,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,h.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.prototype.ent
2024-10-10 13:43:05 UTC	1390	IN	Data Raw: 26 63 3e 30 3b 29 69 66 28 64 5b 2d 2d 63 5d 21 3d 62 5b 2d 2d 65 5d 29 72 65 74 75 72 6e 21 31 3b 72 65 74 75 72 6e 20 65 3c 3d 30 7d 7d 29 3b 0a 71 28 22 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 69 6e 64 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 67 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 67 2c 66 2c 64 29 29 7b 62 3d 67 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 20 30 7d 72 65 74 75 72 6e 20 62 7d 7d Data Ascii: &c>0;)if(d[--c]!=b[--e])return!1;return e<=0}});q("Array.prototype.find",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var g=d[f];if(b.call(c,g,f,d)){b=g;break a}}b=void 0}return b}}

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:06 UTC	1650	OUT	GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol113%2Cpid-bodis-gcontrol454%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol164&client=dp-bodis01_js&r=m&hl=en&ivt=1&rpbu=http%3A%2F%2Fwww.waterbarriers.us%2F%3Fcaf%3D1%26bpt%3D345&terms=Roof%20Repairs%2CRoofing%20Contractors%2CBuilding%20Contractors%2CResidential%20Roofing%20Repair%20Contractors%2CRoof%20Replacement%20Services%2CResidential%20Roofing%20Companies%2CRain%20Gutters%2CRoof%20Contractors&kw=Roof%20Repairs&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2148305361097618&oe=UTF-8&ie=UTF-8&fexp=21404%2C17301437%2C17301439%2C17301442%2C17301542%2C17301266%2C72717107&format=r3&nocache=6981728567784827&num=0&output=afd_ads&domain_name=www.waterbarriers.us&v=3&bsl=8&pac=0&u_his=1&u_tz=-240&dt=1728567784828&u_w=1280&u_h=1024&biw=1280&bih=907&psw=1280&psh=816&frm=0&uio=-&cont=rs&drt=0&jsid=caf&nfp=1&jsv=681010707&rurl=http%3A%2F%2Fwww.waterbarriers.us%2F HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:06 UTC	807	IN	HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Content-Disposition: inline Date: Thu, 10 Oct 2024 13:43:06 GMT Expires: Thu, 10 Oct 2024 13:43:06 GMT Cache-Control: private, max-age=3600 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-AAUHrHCDxVKNP6AOqeizlw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Server: gws X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-10 13:43:06 UTC	583	IN	Data Raw: 33 35 62 63 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 20 3c 68 65 61 64 3e 20 3c 73 74 79 6c 65 20 69 64 3d 22 73 73 72 2d 62 6f 69 6c 65 72 70 6c 61 74 65 22 3e 62 6f 64 79 7b 2d 77 65 62 6b 69 74 2d 74 65 78 74 2d 73 69 7a 65 2d 61 64 6a 75 73 74 3a 31 30 30 25 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 72 67 69 6e 3a 30 3b 7d 2e 64 69 76 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 30 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 25 3b 7d 2e 73 70 61 6e 3a 6c 61 73 74 2d 63 68 69 6c 64 2c 20 2e 64 69 76 3a 6c 61 73 Data Ascii: 35bc<!doctype html><html lang="en"> <head> <style id="ssr-boilerplate">body{-webkit-text-size-adjust:100%; font-family:arial,sans-serif; margin:0;}.div{-webkit-box-flex:0 0; -webkit-flex-shrink:0; flex-shrink:0;max-width:100%;}.span:last-child, .div:las
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 69 5f 7b 64 69 73 70 6c 61 79 3a 2d 6d 73 2d 66 6c 65 78 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 66 6c 65 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 20 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 2e 76 5f 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 Data Ascii: i_{display:-ms-flexbox; display:-webkit-box; display:-webkit-flex; display:flex;-ms-flex-align:start; -webkit-box-align:start; -webkit-align-items:flex-start; align-items:flex-start;box-sizing:border-box; overflow:hidden;}.v_{-webkit-box-flex:1 0; -webkit
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 5f 7b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 2e 6f 5f 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 7d 2e 78 5f 7b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 7d 2e 79 5f 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 7a 2d 69 6e 64 65 78 3a 31 3b 7d 2e 6b 5f 3e 64 69 76 3a 6e 6f 74 28 2e 79 5f 29 20 7b 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 69 6e 6c 69 6e 65 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 6d 6f 7a 2d 69 6e 6c 69 6e 65 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 6d 73 2d 69 6e 6c 69 6e 65 2d 66 6c 65 78 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 69 6e 6c 69 6e 65 2d 66 6c 65 78 3b 20 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 66 Data Ascii: _{overflow:hidden;}.o_{white-space:nowrap;}.x_{cursor:pointer;}.y_{display:none; position:absolute; z-index:1;}.k_>div:not(.y_) {display:-webkit-inline-box; display:-moz-inline-box; display:-ms-inline-flexbox; display:-webkit-inline-flex; display:inline-f
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 73 74 61 72 74 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 7d 2e 66 6c 65 78 41 6c 69 67 6e 42 6f 74 74 6f 6d 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 3b 7d 2e 66 6c 65 78 41 6c 69 67 6e 43 65 6e 74 65 72 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 Data Ascii: start; align-items:flex-start;}.flexAlignBottom{-ms-flex-align:end; -webkit-box-align:end; -webkit-align-items:flex-end; align-items:flex-end;}.flexAlignCenter{-ms-flex-align:center; -webkit-box-align:center; -webkit-align-items:center; align-items:center
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 7d 2e 73 69 31 30 32 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 31 36 70 78 3b 68 65 69 67 68 74 3a 30 70 78 3b 77 69 64 74 68 3a 30 70 78 3b 7d 2e 73 69 31 33 33 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 32 62 32 62 32 62 3b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 32 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 34 70 78 3b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 35 70 78 3b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 31 30 70 78 3b 63 6f 6c 6f 72 3a 23 39 32 39 31 39 32 3b 7d 2e 73 69 31 33 35 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 32 62 32 62 32 62 3b 68 65 Data Ascii: ebkit-box-flex:1 0; -webkit-flex-shrink:1; flex-shrink:1;}.si102{border-radius:16px;height:0px;width:0px;}.si133{background-color:#2b2b2b;border-radius:2px;font-size:14px;margin-bottom:5px;margin-left:10px;color:#929192;}.si135{background-color:#2b2b2b;he
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 70 5f 20 73 69 31 33 33 20 73 70 61 6e 22 3e 52 65 6c 61 74 65 64 20 73 65 61 72 63 68 65 73 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 69 64 3d 22 65 31 22 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 20 63 6c 69 63 6b 74 72 61 63 6b 65 64 41 64 5f 6a 73 20 73 69 31 30 31 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 Data Ascii: le="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;"><span class="p_ si133 span">Related searches</span></div><div id="e1" class="i_ div clicktrackedAd_js si101" style="-ms-flex-direction:row; -webkit
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 22 3e 3c 64 69 76 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 20 74 61 62 69 6e 64 65 78 3d 22 2d 31 22 20 63 6c 61 73 73 3d 22 64 69 76 20 71 5f 20 73 69 31 30 32 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 61 66 73 2e 67 6f 6f 67 6c 65 75 73 65 72 63 6f 6e 74 65 6e 74 2e 63 6f 6d 2f 61 64 5f 69 63 6f 6e 73 2f 73 74 61 6e 64 61 72 64 2f 70 75 62 6c 69 73 68 65 72 5f 69 63 6f 6e 5f 69 6d 61 67 65 2f 63 68 65 76 72 6f 6e 2e 73 76 67 3f 63 3d 25 32 33 30 32 31 39 38 62 22 20 61 6c 74 3d 22 22 20 6c 6f 61 64 69 6e 67 3d 22 6c 61 7a 79 22 20 63 6c 61 73 73 3d 22 69 6d 67 22 Data Ascii: ntal; -webkit-flex-direction:row; flex-direction:row;"><div aria-hidden="true" tabindex="-1" class="div q_ si102"><img src="https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b" alt="" loading="lazy" class="img"
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 20 64 61 74 61 2d 6e 62 3d 22 30 22 20 74 61 72 67 65 74 3d 22 5f 74 6f 70 22 20 63 6c 61 73 73 3d 22 69 5f 20 61 20 73 69 31 34 34 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 66 6c 65 78 2d 73 74 61 72 74 3b 20 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 66 6c 65 Data Ascii: data-nb="0" target="_top" class="i_ a si144" style="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;-ms-flex-pack:start; -webkit-box-pack:start; -webkit-justify-content:flex-start; justify-content:fle
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 6c 69 6e 65 73 3d 22 31 22 20 64 61 74 61 2d 74 72 75 6e 63 61 74 65 3d 22 30 22 20 63 6c 61 73 73 3d 22 6d 5f 20 6e 5f 20 73 69 33 34 20 73 70 61 6e 22 3e 52 6f 6f 66 69 6e 67 20 43 6f 6e 74 72 61 63 74 6f 72 73 3c 2f 73 70 61 6e 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 20 74 61 62 69 6e 64 65 78 3d 22 2d 31 22 20 63 6c 61 73 73 3d 22 64 69 76 20 71 5f 20 73 69 31 34 33 20 77 5f 22 3e 3c 69 6d 67 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 61 66 73 2e 67 6f 6f 67 6c 65 75 73 65 72 63 6f 6e 74 65 6e 74 2e 63 6f 6d 2f 61 64 5f 69 63 6f 6e 73 2f 73 74 61 6e 64 61 72 64 2f 70 75 62 6c 69 73 68 65 72 5f 69 63 6f 6e 5f 69 6d 61 67 65 2f 63 61 6c 6c 5f 74 6f 5f 61 63 74 69 6f 6e 5f 61 72 72 6f 77 2e 73 76 67 3f 63 Data Ascii: lines="1" data-truncate="0" class="m_ n_ si34 span">Roofing Contractors</span></div><div aria-hidden="true" tabindex="-1" class="div q_ si143 w_"><img src="https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/call_to_action_arrow.svg?c
2024-10-10 13:43:06 UTC	1390	IN	Data Raw: 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 22 3e 3c 64 69 76 20 61 72 69 61 2d 68 69 64 64 65 6e 3d 22 74 72 75 65 22 20 74 61 62 69 6e 64 65 78 3d 22 2d 31 22 20 63 Data Ascii: n:center; -webkit-box-align:center; -webkit-align-items:center; align-items:center;"><div class="i_ div" style="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;"><div aria-hidden="true" tabindex="-1" c

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:07 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-10 13:43:07 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF67) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=183781 Date: Thu, 10 Oct 2024 13:43:07 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:07 UTC	555	OUT	GET /adsense/domains/caf.js?pac=0 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:07 UTC	844	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 153127 Date: Thu, 10 Oct 2024 13:43:07 GMT Expires: Thu, 10 Oct 2024 13:43:07 GMT Cache-Control: private, max-age=3600 ETag: "1626681011590140021" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-10 13:43:07 UTC	546	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 68 61 73 68 3a 22 31 34 36 35 30 35 35 37 35 37 31 34 36 35 32 30 33 39 34 39 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 31 34 33 37 2c 31 37 33 30 31 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"syndicatedsearch.goog",hash:"14650557571465203949",packages:"domains",module:"ads",version:"1",m:{cei:"17301437,17301
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 69 6e 22 3a 74 72 75 65 2c 22 5f 77 61 69 74 4f 6e 43 6f 6e 73 65 6e 74 46 6f 72 46 69 72 73 74 50 61 72 74 79 43 6f 6f 6b 69 65 22 3a 74 72 75 65 2c 22 65 6e 61 62 6c 65 45 6e 68 61 6e 63 65 64 54 61 72 67 65 74 69 6e 67 52 73 6f 6e 63 22 3a 74 72 75 65 2c 22 65 6e 61 62 6c 65 4e 6f 6e 62 6c 6f 63 6b 69 6e 67 53 61 73 43 6f 6f 6b 69 65 22 3a 74 72 75 65 7d 2c 6d 64 70 3a 31 38 30 30 30 30 30 2c 73 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 4c 6d 39 79 5a 79 78 70 62 69 35 75 5a 58 51 73 64 48 4a 68 62 6e 4e 73 59 58 52 6c Data Ascii: in":true,"_waitOnConsentForFirstPartyCookie":true,"enableEnhancedTargetingRsonc":true,"enableNonblockingSasCookie":true},mdp:1800000,ssdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRvLm9yZyxpbi5uZXQsdHJhbnNsYXRl
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 6c 75 65 3a 67 7d 29 7d 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 6e 65 7d 3b 76 61 72 20 64 3d 22 6a 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 43 Data Ascii: lue:g})}if(a)return a;c.prototype.toString=function(){return this.ne};var d="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array Uint8C
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 20 54 79 70 65 45 72 72 6f 72 28 61 2b 22 20 69 73 20 6e 6f 74 20 65 78 74 65 6e 73 69 62 6c 65 22 29 3b 72 65 74 75 72 6e 20 61 7d 3a 6e 75 6c 6c 7d 76 61 72 20 70 61 3d 6c 61 3b 0a 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 70 72 6f 74 6f 74 79 70 65 3d 6b 61 28 62 2e 70 72 6f 74 6f 74 79 70 65 29 3b 61 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 61 3b 69 66 28 70 61 29 70 61 28 61 2c 62 29 3b 65 6c 73 65 20 66 6f 72 28 76 61 72 20 63 20 69 6e 20 62 29 69 66 28 63 21 3d 22 70 72 6f 74 6f 74 79 70 65 22 29 69 66 28 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 69 65 73 29 7b 76 61 72 20 64 3d 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f 72 28 62 2c 63 29 3b Data Ascii: TypeError(a+" is not extensible");return a}:null}var pa=la;function qa(a,b){a.prototype=ka(b.prototype);a.prototype.constructor=a;if(pa)pa(a,b);else for(var c in b)if(c!="prototype")if(Object.defineProperties){var d=Object.getOwnPropertyDescriptor(b,c);
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 3b 62 72 65 61 6b 20 61 3b 63 61 73 65 20 22 66 75 6e 63 74 69 6f 6e 22 3a 68 3d 21 30 3b 62 72 65 61 6b 20 61 3b 0a 64 65 66 61 75 6c 74 3a 68 3d 21 31 7d 68 3f 74 68 69 73 2e 55 66 28 67 29 3a 74 68 69 73 2e 4d 64 28 67 29 7d 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 55 66 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 76 61 72 20 68 3d 76 6f 69 64 20 30 3b 74 72 79 7b 68 3d 67 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 62 64 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 68 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 67 67 28 68 2c 67 29 3a 74 68 69 73 2e 4d 64 28 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 62 64 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 74 68 69 73 2e 64 65 28 32 2c 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 Data Ascii: ;break a;case "function":h=!0;break a;default:h=!1}h?this.Uf(g):this.Md(g)}};b.prototype.Uf=function(g){var h=void 0;try{h=g.then}catch(k){this.bd(k);return}typeof h=="function"?this.gg(h,g):this.Md(g)};b.prototype.bd=function(g){this.de(2,g)};b.prototyp
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 7b 6d 28 77 29 7d 7d 3a 74 7d 76 61 72 20 6c 2c 6d 2c 70 3d 6e 65 77 20 62 28 66 75 6e 63 74 69 6f 6e 28 72 2c 74 29 7b 6c 3d 72 3b 6d 3d 74 7d 29 3b 74 68 69 73 2e 69 62 28 6b 28 67 2c 6c 29 2c 6b 28 68 2c 6d 29 29 3b 72 65 74 75 72 6e 20 70 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 69 62 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 0a 68 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 42 29 7b 63 61 73 65 20 31 3a 67 28 6c 2e 57 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 68 28 6c 2e 57 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 72 6f 77 20 45 72 72 Data Ascii: {m(w)}}:t}var l,m,p=new b(function(r,t){l=r;m=t});this.ib(k(g,l),k(h,m));return p};b.prototype.catch=function(g){return this.then(void 0,g)};b.prototype.ib=function(g,h){function k(){switch(l.B){case 1:g(l.Wa);break;case 2:h(l.Wa);break;default:throw Err
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 6c 6c 7c 7c 6c 3d 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 7d 66 75 6e 63 74 69 6f 6e 20 65 28 6b 29 7b 69 66 28 21 73 61 28 6b 2c 67 29 29 7b 76 61 72 20 6c 3d 6e 65 77 20 63 3b 63 61 28 6b 2c 67 2c 7b 76 61 6c 75 65 3a 6c 7d 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 79 7b 76 61 72 20 6b Data Ascii: ll\|\|l==="function"}function e(k){if(!sa(k,g)){var l=new c;ca(k,g,{value:l})}}function f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;try{var k
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 72 6e 7b 69 64 3a 6c 2c 6c 69 73 74 3a 6d 2c 69 6e 64 65 78 3a 68 2c 49 3a 70 7d 7d 72 65 74 75 72 6e 7b 69 64 3a 6c 2c 0a 6c 69 73 74 3a 6d 2c 69 6e 64 65 78 3a 2d 31 2c 49 3a 76 6f 69 64 20 30 7d 7d 66 75 6e 63 74 69 6f 6e 20 65 28 68 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 68 29 7b 68 3d 75 28 68 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 68 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e 74 72 69 65 73 7c 7c Data Ascii: rn{id:l,list:m,index:h,I:p}}return{id:l,list:m,index:-1,I:void 0}}function e(h){this[0]={};this[1]=b();this.size=0;if(h){h=u(h);for(var k;!(k=h.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.entries\|\|
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 68 2e 6b 65 79 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 75 65 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 63 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 68 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 68 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e 70 72 6f 74 6f 74 79 Data Ascii: ction(h){return h.key})};e.prototype.values=function(){return c(this,function(h){return h.value})};e.prototype.forEach=function(h,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,h.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.prototy
2024-10-10 13:43:07 UTC	1390	IN	Data Raw: 68 3b 65 3e 30 26 26 63 3e 30 3b 29 69 66 28 64 5b 2d 2d 63 5d 21 3d 62 5b 2d 2d 65 5d 29 72 65 74 75 72 6e 21 31 3b 72 65 74 75 72 6e 20 65 3c 3d 30 7d 7d 29 3b 0a 71 28 22 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 69 6e 64 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 67 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 67 2c 66 2c 64 29 29 7b 62 3d 67 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 20 30 7d 72 65 74 75 Data Ascii: h;e>0&&c>0;)if(d[--c]!=b[--e])return!1;return e<=0}});q("Array.prototype.find",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var g=d[f];if(b.call(c,g,f,d)){b=g;break a}}b=void 0}retu

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:08 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-10-10 13:43:08 UTC	535	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Last-Modified: Tue, 16 May 2017 22:58:00 GMT ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-Azure-Ref: 0WwMRYwAAAABe7whxSEuqSJRuLqzPsqCaTE9OMjFFREdFMTcxNQBjZWZjMjU4My1hOWIyLTQ0YTctOTc1NS1iNzZkMTdlMDVmN2Y= Cache-Control: public, max-age=183755 Date: Thu, 10 Oct 2024 13:43:08 GMT Content-Length: 55 Connection: close X-CID: 2
2024-10-10 13:43:08 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:08 UTC	373	OUT	GET /adsense/domains/caf.js?pac=0 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:09 UTC	845	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/javascript; charset=UTF-8 Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 153133 Date: Thu, 10 Oct 2024 13:43:09 GMT Expires: Thu, 10 Oct 2024 13:43:09 GMT Cache-Control: private, max-age=3600 ETag: "16100146731235323157" X-Content-Type-Options: nosniff Link: <https://syndicatedsearch.goog>; rel="preconnect" Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-10 13:43:09 UTC	545	IN	Data Raw: 69 66 28 21 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 29 7b 77 69 6e 64 6f 77 5b 27 67 6f 6f 67 6c 65 4e 44 54 5f 27 5d 3d 28 6e 65 77 20 44 61 74 65 28 29 29 2e 67 65 74 54 69 6d 65 28 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 29 20 7b 77 69 6e 64 6f 77 2e 67 6f 6f 67 6c 65 41 6c 74 4c 6f 61 64 65 72 3d 33 3b 76 61 72 20 73 66 66 65 44 61 74 61 5f 3d 7b 73 65 72 76 69 63 65 5f 68 6f 73 74 3a 22 73 79 6e 64 69 63 61 74 65 64 73 65 61 72 63 68 2e 67 6f 6f 67 22 2c 68 61 73 68 3a 22 31 34 36 35 30 35 35 37 35 37 31 34 36 35 32 30 33 39 34 39 22 2c 70 61 63 6b 61 67 65 73 3a 22 64 6f 6d 61 69 6e 73 22 2c 6d 6f 64 75 6c 65 3a 22 61 64 73 22 2c 76 65 72 73 69 6f 6e 3a 22 31 22 2c 6d 3a 7b 63 65 69 3a 22 31 37 33 30 31 34 33 37 2c 31 37 33 30 31 Data Ascii: if(!window['googleNDT_']){window['googleNDT_']=(new Date()).getTime();}(function() {window.googleAltLoader=3;var sffeData_={service_host:"syndicatedsearch.goog",hash:"14650557571465203949",packages:"domains",module:"ads",version:"1",m:{cei:"17301437,17301
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 74 72 75 65 2c 22 5f 75 73 65 53 65 72 76 65 72 50 72 6f 76 69 64 65 64 44 6f 6d 61 69 6e 22 3a 74 72 75 65 2c 22 5f 77 61 69 74 4f 6e 43 6f 6e 73 65 6e 74 46 6f 72 46 69 72 73 74 50 61 72 74 79 43 6f 6f 6b 69 65 22 3a 74 72 75 65 2c 22 65 6e 61 62 6c 65 45 6e 68 61 6e 63 65 64 54 61 72 67 65 74 69 6e 67 52 73 6f 6e 63 22 3a 74 72 75 65 2c 22 65 6e 61 62 6c 65 4e 6f 6e 62 6c 6f 63 6b 69 6e 67 53 61 73 43 6f 6f 6b 69 65 22 3a 74 72 75 65 7d 2c 6d 64 70 3a 31 38 30 30 30 30 30 2c 73 73 64 6c 3a 22 59 58 42 77 63 33 42 76 64 43 35 6a 62 32 30 73 59 6d 78 76 5a 33 4e 77 62 33 51 75 59 32 39 74 4c 47 4a 79 4c 6d 4e 76 62 53 78 6a 62 79 35 6a 62 32 30 73 59 32 78 76 64 57 52 6d 63 6d 39 75 64 43 35 75 5a 58 51 73 5a 58 55 75 59 32 39 74 4c 47 68 76 63 48 52 76 Data Ascii: true,"_useServerProvidedDomain":true,"_waitOnConsentForFirstPartyCookie":true,"enableEnhancedTargetingRsonc":true,"enableNonblockingSasCookie":true},mdp:1800000,ssdl:"YXBwc3BvdC5jb20sYmxvZ3Nwb3QuY29tLGJyLmNvbSxjby5jb20sY2xvdWRmcm9udC5uZXQsZXUuY29tLGhvcHRv
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 65 3a 21 30 2c 76 61 6c 75 65 3a 67 7d 29 7d 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 63 2e 70 72 6f 74 6f 74 79 70 65 2e 74 6f 53 74 72 69 6e 67 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 6e 65 7d 3b 76 61 72 20 64 3d 22 6a 73 63 6f 6d 70 5f 73 79 6d 62 6f 6c 5f 22 2b 28 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 2a 31 45 39 3e 3e 3e 30 29 2b 22 5f 22 2c 65 3d 30 3b 72 65 74 75 72 6e 20 62 7d 29 3b 0a 71 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 61 29 72 65 74 75 72 6e 20 61 3b 61 3d 53 79 6d 62 6f 6c 28 22 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 22 29 3b 66 6f 72 28 76 61 72 20 62 3d 22 41 72 72 61 79 20 49 6e 74 38 41 72 72 61 79 20 55 69 6e 74 38 41 72 72 61 79 Data Ascii: e:!0,value:g})}if(a)return a;c.prototype.toString=function(){return this.ne};var d="jscomp_symbol_"+(Math.random()*1E9>>>0)+"_",e=0;return b});q("Symbol.iterator",function(a){if(a)return a;a=Symbol("Symbol.iterator");for(var b="Array Int8Array Uint8Array
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 72 6f 77 20 6e 65 77 20 54 79 70 65 45 72 72 6f 72 28 61 2b 22 20 69 73 20 6e 6f 74 20 65 78 74 65 6e 73 69 62 6c 65 22 29 3b 72 65 74 75 72 6e 20 61 7d 3a 6e 75 6c 6c 7d 76 61 72 20 70 61 3d 6c 61 3b 0a 66 75 6e 63 74 69 6f 6e 20 71 61 28 61 2c 62 29 7b 61 2e 70 72 6f 74 6f 74 79 70 65 3d 6b 61 28 62 2e 70 72 6f 74 6f 74 79 70 65 29 3b 61 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 61 3b 69 66 28 70 61 29 70 61 28 61 2c 62 29 3b 65 6c 73 65 20 66 6f 72 28 76 61 72 20 63 20 69 6e 20 62 29 69 66 28 63 21 3d 22 70 72 6f 74 6f 74 79 70 65 22 29 69 66 28 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 69 65 73 29 7b 76 61 72 20 64 3d 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f Data Ascii: row new TypeError(a+" is not extensible");return a}:null}var pa=la;function qa(a,b){a.prototype=ka(b.prototype);a.prototype.constructor=a;if(pa)pa(a,b);else for(var c in b)if(c!="prototype")if(Object.defineProperties){var d=Object.getOwnPropertyDescripto
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 67 21 3d 6e 75 6c 6c 3b 62 72 65 61 6b 20 61 3b 63 61 73 65 20 22 66 75 6e 63 74 69 6f 6e 22 3a 68 3d 21 30 3b 62 72 65 61 6b 20 61 3b 0a 64 65 66 61 75 6c 74 3a 68 3d 21 31 7d 68 3f 74 68 69 73 2e 55 66 28 67 29 3a 74 68 69 73 2e 4d 64 28 67 29 7d 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 55 66 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 76 61 72 20 68 3d 76 6f 69 64 20 30 3b 74 72 79 7b 68 3d 67 2e 74 68 65 6e 7d 63 61 74 63 68 28 6b 29 7b 74 68 69 73 2e 62 64 28 6b 29 3b 72 65 74 75 72 6e 7d 74 79 70 65 6f 66 20 68 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 3f 74 68 69 73 2e 67 67 28 68 2c 67 29 3a 74 68 69 73 2e 4d 64 28 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 62 64 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 74 68 69 73 2e 64 65 28 32 2c 67 29 7d 3b 62 2e 70 Data Ascii: g!=null;break a;case "function":h=!0;break a;default:h=!1}h?this.Uf(g):this.Md(g)}};b.prototype.Uf=function(g){var h=void 0;try{h=g.then}catch(k){this.bd(k);return}typeof h=="function"?this.gg(h,g):this.Md(g)};b.prototype.bd=function(g){this.de(2,g)};b.p
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 61 74 63 68 28 77 29 7b 6d 28 77 29 7d 7d 3a 74 7d 76 61 72 20 6c 2c 6d 2c 70 3d 6e 65 77 20 62 28 66 75 6e 63 74 69 6f 6e 28 72 2c 74 29 7b 6c 3d 72 3b 6d 3d 74 7d 29 3b 74 68 69 73 2e 69 62 28 6b 28 67 2c 6c 29 2c 6b 28 68 2c 6d 29 29 3b 72 65 74 75 72 6e 20 70 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 63 61 74 63 68 3d 66 75 6e 63 74 69 6f 6e 28 67 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 74 68 65 6e 28 76 6f 69 64 20 30 2c 67 29 7d 3b 62 2e 70 72 6f 74 6f 74 79 70 65 2e 69 62 3d 66 75 6e 63 74 69 6f 6e 28 67 2c 0a 68 29 7b 66 75 6e 63 74 69 6f 6e 20 6b 28 29 7b 73 77 69 74 63 68 28 6c 2e 42 29 7b 63 61 73 65 20 31 3a 67 28 6c 2e 57 61 29 3b 62 72 65 61 6b 3b 63 61 73 65 20 32 3a 68 28 6c 2e 57 61 29 3b 62 72 65 61 6b 3b 64 65 66 61 75 6c 74 3a 74 68 Data Ascii: atch(w){m(w)}}:t}var l,m,p=new b(function(r,t){l=r;m=t});this.ib(k(g,l),k(h,m));return p};b.prototype.catch=function(g){return this.then(void 0,g)};b.prototype.ib=function(g,h){function k(){switch(l.B){case 1:g(l.Wa);break;case 2:h(l.Wa);break;default:th
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 26 6b 21 3d 3d 6e 75 6c 6c 7c 7c 6c 3d 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 7d 66 75 6e 63 74 69 6f 6e 20 65 28 6b 29 7b 69 66 28 21 73 61 28 6b 2c 67 29 29 7b 76 61 72 20 6c 3d 6e 65 77 20 63 3b 63 61 28 6b 2c 67 2c 7b 76 61 6c 75 65 3a 6c 7d 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 66 28 6b 29 7b 76 61 72 20 6c 3d 4f 62 6a 65 63 74 5b 6b 5d 3b 6c 26 26 28 4f 62 6a 65 63 74 5b 6b 5d 3d 66 75 6e 63 74 69 6f 6e 28 6d 29 7b 69 66 28 6d 20 69 6e 73 74 61 6e 63 65 6f 66 20 63 29 72 65 74 75 72 6e 20 6d 3b 4f 62 6a 65 63 74 2e 69 73 45 78 74 65 6e 73 69 62 6c 65 28 6d 29 26 26 65 28 6d 29 3b 72 65 74 75 72 6e 20 6c 28 6d 29 7d 29 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 21 4f 62 6a 65 63 74 2e 73 65 61 6c 29 72 65 74 75 72 6e 21 31 3b 74 72 Data Ascii: &k!==null\|\|l==="function"}function e(k){if(!sa(k,g)){var l=new c;ca(k,g,{value:l})}}function f(k){var l=Object[k];l&&(Object[k]=function(m){if(m instanceof c)return m;Object.isExtensible(m)&&e(m);return l(m)})}if(function(){if(!a\|\|!Object.seal)return!1;tr
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 65 79 29 72 65 74 75 72 6e 7b 69 64 3a 6c 2c 6c 69 73 74 3a 6d 2c 69 6e 64 65 78 3a 68 2c 49 3a 70 7d 7d 72 65 74 75 72 6e 7b 69 64 3a 6c 2c 0a 6c 69 73 74 3a 6d 2c 69 6e 64 65 78 3a 2d 31 2c 49 3a 76 6f 69 64 20 30 7d 7d 66 75 6e 63 74 69 6f 6e 20 65 28 68 29 7b 74 68 69 73 5b 30 5d 3d 7b 7d 3b 74 68 69 73 5b 31 5d 3d 62 28 29 3b 74 68 69 73 2e 73 69 7a 65 3d 30 3b 69 66 28 68 29 7b 68 3d 75 28 68 29 3b 66 6f 72 28 76 61 72 20 6b 3b 21 28 6b 3d 68 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6b 3d 6b 2e 76 61 6c 75 65 2c 74 68 69 73 2e 73 65 74 28 6b 5b 30 5d 2c 6b 5b 31 5d 29 7d 7d 69 66 28 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 21 61 7c 7c 74 79 70 65 6f 66 20 61 21 3d 22 66 75 6e 63 74 69 6f 6e 22 7c 7c 21 61 2e 70 72 6f 74 6f 74 79 70 65 2e 65 6e Data Ascii: ey)return{id:l,list:m,index:h,I:p}}return{id:l,list:m,index:-1,I:void 0}}function e(h){this[0]={};this[1]=b();this.size=0;if(h){h=u(h);for(var k;!(k=h.next()).done;)k=k.value,this.set(k[0],k[1])}}if(function(){if(!a\|\|typeof a!="function"\|\|!a.prototype.en
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 68 2e 6b 65 79 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 75 65 73 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 63 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 68 29 7b 72 65 74 75 72 6e 20 68 2e 76 61 6c 75 65 7d 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 68 2c 6b 29 7b 66 6f 72 28 76 61 72 20 6c 3d 74 68 69 73 2e 65 6e 74 72 69 65 73 28 29 2c 6d 3b 21 28 6d 3d 6c 2e 6e 65 78 74 28 29 29 2e 64 6f 6e 65 3b 29 6d 3d 0a 6d 2e 76 61 6c 75 65 2c 68 2e 63 61 6c 6c 28 6b 2c 6d 5b 31 5d 2c 6d 5b 30 5d 2c 74 68 69 73 29 7d 3b 65 2e 70 72 6f 74 6f 74 79 70 65 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 65 2e Data Ascii: his,function(h){return h.key})};e.prototype.values=function(){return c(this,function(h){return h.value})};e.prototype.forEach=function(h,k){for(var l=this.entries(),m;!(m=l.next()).done;)m=m.value,h.call(k,m[1],m[0],this)};e.prototype[Symbol.iterator]=e.
2024-10-10 13:43:09 UTC	1390	IN	Data Raw: 62 2e 6c 65 6e 67 74 68 3b 65 3e 30 26 26 63 3e 30 3b 29 69 66 28 64 5b 2d 2d 63 5d 21 3d 62 5b 2d 2d 65 5d 29 72 65 74 75 72 6e 21 31 3b 72 65 74 75 72 6e 20 65 3c 3d 30 7d 7d 29 3b 0a 71 28 22 41 72 72 61 79 2e 70 72 6f 74 6f 74 79 70 65 2e 66 69 6e 64 22 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 3f 61 3a 66 75 6e 63 74 69 6f 6e 28 62 2c 63 29 7b 61 3a 7b 76 61 72 20 64 3d 74 68 69 73 3b 64 20 69 6e 73 74 61 6e 63 65 6f 66 20 53 74 72 69 6e 67 26 26 28 64 3d 53 74 72 69 6e 67 28 64 29 29 3b 66 6f 72 28 76 61 72 20 65 3d 64 2e 6c 65 6e 67 74 68 2c 66 3d 30 3b 66 3c 65 3b 66 2b 2b 29 7b 76 61 72 20 67 3d 64 5b 66 5d 3b 69 66 28 62 2e 63 61 6c 6c 28 63 2c 67 2c 66 2c 64 29 29 7b 62 3d 67 3b 62 72 65 61 6b 20 61 7d 7d 62 3d 76 6f 69 64 Data Ascii: b.length;e>0&&c>0;)if(d[--c]!=b[--e])return!1;return e<=0}});q("Array.prototype.find",function(a){return a?a:function(b,c){a:{var d=this;d instanceof String&&(d=String(d));for(var e=d.length,f=0;f<e;f++){var g=d[f];if(b.call(c,g,f,d)){b=g;break a}}b=void

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:09 UTC	745	OUT	GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%2302198b HTTP/1.1 Host: afs.googleusercontent.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw== Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:09 UTC	796	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers Cross-Origin-Opener-Policy: same-origin; report-to="afs-native-asset-managers" Report-To: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} Content-Length: 200 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 10 Oct 2024 13:43:09 GMT Expires: Fri, 11 Oct 2024 12:43:09 GMT Cache-Control: public, max-age=82800 Last-Modified: Thu, 02 Nov 2023 22:48:00 GMT Content-Type: image/svg+xml Vary: Accept-Encoding Age: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-10 13:43:09 UTC	200	IN	Data Raw: 3c 73 76 67 20 66 69 6c 6c 3d 27 23 30 32 31 39 38 62 27 20 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 34 20 32 34 22 20 77 69 64 74 68 3d 22 32 34 22 3e 3c 70 61 74 68 20 64 3d 22 4d 30 20 30 68 32 34 76 32 34 48 30 7a 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 2f 3e 3c 70 61 74 68 20 64 3d 22 4d 35 2e 38 38 20 34 2e 31 32 4c 31 33 2e 37 36 20 31 32 6c 2d 37 2e 38 38 20 37 2e 38 38 4c 38 20 32 32 6c 31 30 2d 31 30 4c 38 20 32 7a 22 2f 3e 3c 2f 73 76 67 3e Data Ascii: <svg fill='#02198b' xmlns="http://www.w3.org/2000/svg" height="24" viewBox="0 0 24 24" width="24"><path d="M0 0h24v24H0z" fill="none"/><path d="M5.88 4.12L13.76 12l-7.88 7.88L8 22l10-10L8 2z"/></svg>

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:09 UTC	868	OUT	GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=phsapx8n67p3&aqid=6tkHZ-_eMbG8juwP-rCzMA&psid=3113057640&pbt=bs&adbx=281.5&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=6%7C0%7C1050%7C1249%7C65&lle=0&ifv=1&hpt=0 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:10 UTC	715	IN	HTTP/1.1 204 No Content Content-Type: text/html; charset=UTF-8 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-ilBHjlGO6s3yqdGvYVTmgg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Permissions-Policy: unload=() Date: Thu, 10 Oct 2024 13:43:09 GMT Server: gws Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:11 UTC	868	OUT	GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=6y09cmasxazq&aqid=6tkHZ-_eMbG8juwP-rCzMA&psid=3113057640&pbt=bv&adbx=281.5&adby=143&adbh=480&adbw=700&adbah=153%2C153%2C153&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=6%7C0%7C1050%7C1249%7C65&lle=0&ifv=1&hpt=0 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:11 UTC	715	IN	HTTP/1.1 204 No Content Content-Type: text/html; charset=UTF-8 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-KyOyRCb5ANJxAdSGPCrPCA' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Permissions-Policy: unload=() Date: Thu, 10 Oct 2024 13:43:11 GMT Server: gws Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:29 UTC	708	OUT	GET /afs/ads/i/iframe.html HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:30 UTC	1037	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Vary: Accept-Encoding Content-Type: text/html Content-Security-Policy: script-src 'nonce-nwl_anSIbR_Yg56qAlQEUw' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui; base-uri 'none' Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Content-Length: 1560 Date: Thu, 10 Oct 2024 13:43:30 GMT Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Cache-Control: no-cache, must-revalidate Last-Modified: Tue, 17 Sep 2024 06:00:00 GMT X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-10 13:43:30 UTC	353	IN	Data Raw: 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 52 4f 42 4f 54 53 22 20 63 6f 6e 74 65 6e 74 3d 22 4e 4f 49 4e 44 45 58 2c 20 4e 4f 46 4f 4c 4c 4f 57 22 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 66 6f 72 6d 61 74 2d 64 65 74 65 63 74 69 6f 6e 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 6c 65 70 68 6f 6e 65 3d 6e 6f 22 3e 3c 6d 65 74 61 20 63 6f 6e 74 65 6e 74 3d 22 6f 72 69 67 69 6e 22 20 6e 61 6d 65 3d 22 72 65 66 65 72 72 65 72 22 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 3c 64 69 76 20 69 64 3d 22 61 64 42 6c 6f 63 6b 22 3e 3c 2f 64 69 76 3e 3c 73 63 72 69 70 74 20 6e 6f 6e 63 65 3d 22 6e 77 6c 5f 61 6e 53 49 62 52 5f 59 67 35 36 71 41 6c 51 45 55 77 22 3e 69 66 20 28 77 69 6e 64 6f 77 2e 6e Data Ascii: <!doctype html><html><head><meta name="ROBOTS" content="NOINDEX, NOFOLLOW"><meta name="format-detection" content="telephone=no"><meta content="origin" name="referrer"></head><body><div id="adBlock"></div><script nonce="nwl_anSIbR_Yg56qAlQEUw">if (window.n
2024-10-10 13:43:30 UTC	1207	IN	Data Raw: 61 64 73 65 6e 73 65 2f 73 65 61 72 63 68 2f 61 64 73 2e 6a 73 22 3b 76 61 72 20 68 72 65 66 20 3d 20 77 69 6e 64 6f 77 2e 6c 6f 63 61 74 69 6f 6e 2e 68 72 65 66 3b 69 66 20 28 21 21 68 72 65 66 20 26 26 20 28 68 72 65 66 2e 69 6e 64 65 78 4f 66 28 27 3f 70 61 63 3d 27 29 20 3e 20 30 20 7c 7c 20 68 72 65 66 2e 69 6e 64 65 78 4f 66 28 27 26 70 61 63 3d 27 29 20 3e 20 30 29 29 20 7b 69 66 20 28 68 72 65 66 2e 69 6e 64 65 78 4f 66 28 27 3f 70 61 63 3d 31 27 29 20 3e 20 30 20 7c 7c 20 68 72 65 66 2e 69 6e 64 65 78 4f 66 28 27 26 70 61 63 3d 31 27 29 20 3e 20 30 29 20 7b 73 63 72 69 70 74 2e 73 72 63 20 2b 3d 20 27 3f 70 61 63 3d 31 27 3b 7d 20 65 6c 73 65 20 69 66 20 28 68 72 65 66 2e 69 6e 64 65 78 4f 66 28 27 3f 70 61 63 3d 32 27 29 20 3e 20 30 20 7c 7c 20 Data Ascii: adsense/search/ads.js";var href = window.location.href;if (!!href && (href.indexOf('?pac=') > 0 \|\| href.indexOf('&pac=') > 0)) {if (href.indexOf('?pac=1') > 0 \|\| href.indexOf('&pac=1') > 0) {script.src += '?pac=1';} else if (href.indexOf('?pac=2') > 0 \|\|

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:29 UTC	2653	OUT	GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol113%2Cpid-bodis-gcontrol454%2Cpid-bodis-gcontrol152%2Cpid-bodis-gcontrol164&client=dp-bodis01_js&r=m&sct=ID%3D75e03cd36f6eea1c%3AT%3D1728567786%3ART%3D1728567786%3AS%3DALNI_MZvZlM7ne59U7g6Q4faJGARKRZNWQ&sc_status=6&hl=en&ivt=1&rpbu=http%3A%2F%2Fwww.waterbarriers.us%2F%3Fcaf%3D1%26bpt%3D345%26query%3DRoof%2BRepairs%26afdToken%3DChMIrtuY5_iDiQMVuJ39Bx1l1DAUEnIBlLqpj5PaedTRF-yh_kg73CBAFXG7rWfJGH_J7jynJjXhS5qYTEFHzUZIaL2lV7ueJQual0F-9tlsg_IHpmOAVPZWcPMOHyGnJG5pa3tCnZfdibj55NladYasBeZEejq4SZyYwpR_kmzPU1iL4sZRHIg%26pcsa%3Dfalse%26nb%3D0%26nm%3D13%26nx%3D354%26ny%3D61%26is%3D700x480%26clkt%3D2&terms=Roof%20Repairs%2CRoofing%20Contractors%2CBuilding%20Contractors%2CResidential%20Roofing%20Repair%20Contractors%2CRoof%20Replacement%20Services%2CResidential%20Roofing%20Companies%2CRain%20Gutters%2CRoof%20Contractors&kw=Roof%20Repairs&max_radlink_len=50&type=0&uiopt=false&swp=as-drid-2148305361097618&q=Roof%20Repairs&afdt= [TRUNCATED] Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:30 UTC	807	IN	HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Content-Disposition: inline Date: Thu, 10 Oct 2024 13:43:30 GMT Expires: Thu, 10 Oct 2024 13:43:30 GMT Cache-Control: private, max-age=3600 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-Ozi8kQVCzmb_tvM4_DylZQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Server: gws X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Accept-Ranges: none Vary: Accept-Encoding Connection: close Transfer-Encoding: chunked
2024-10-10 13:43:30 UTC	583	IN	Data Raw: 37 65 63 63 0d 0a 3c 21 64 6f 63 74 79 70 65 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 20 3c 68 65 61 64 3e 20 3c 73 74 79 6c 65 20 69 64 3d 22 73 73 72 2d 62 6f 69 6c 65 72 70 6c 61 74 65 22 3e 62 6f 64 79 7b 2d 77 65 62 6b 69 74 2d 74 65 78 74 2d 73 69 7a 65 2d 61 64 6a 75 73 74 3a 31 30 30 25 3b 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 61 72 69 61 6c 2c 73 61 6e 73 2d 73 65 72 69 66 3b 20 6d 61 72 67 69 6e 3a 30 3b 7d 2e 64 69 76 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 30 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 30 3b 6d 61 78 2d 77 69 64 74 68 3a 31 30 30 25 3b 7d 2e 73 70 61 6e 3a 6c 61 73 74 2d 63 68 69 6c 64 2c 20 2e 64 69 76 3a 6c 61 73 Data Ascii: 7ecc<!doctype html><html lang="en"> <head> <style id="ssr-boilerplate">body{-webkit-text-size-adjust:100%; font-family:arial,sans-serif; margin:0;}.div{-webkit-box-flex:0 0; -webkit-flex-shrink:0; flex-shrink:0;max-width:100%;}.span:last-child, .div:las
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 69 5f 7b 64 69 73 70 6c 61 79 3a 2d 6d 73 2d 66 6c 65 78 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 66 6c 65 78 3b 20 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 20 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 2e 76 5f 7b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 Data Ascii: i_{display:-ms-flexbox; display:-webkit-box; display:-webkit-flex; display:flex;-ms-flex-align:start; -webkit-box-align:start; -webkit-align-items:flex-start; align-items:flex-start;box-sizing:border-box; overflow:hidden;}.v_{-webkit-box-flex:1 0; -webkit
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 5f 7b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 7d 2e 6f 5f 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 7d 2e 78 5f 7b 63 75 72 73 6f 72 3a 70 6f 69 6e 74 65 72 3b 7d 2e 79 5f 7b 64 69 73 70 6c 61 79 3a 6e 6f 6e 65 3b 20 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 20 7a 2d 69 6e 64 65 78 3a 31 3b 7d 2e 6b 5f 3e 64 69 76 3a 6e 6f 74 28 2e 79 5f 29 20 7b 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 69 6e 6c 69 6e 65 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 6d 6f 7a 2d 69 6e 6c 69 6e 65 2d 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 6d 73 2d 69 6e 6c 69 6e 65 2d 66 6c 65 78 62 6f 78 3b 20 64 69 73 70 6c 61 79 3a 2d 77 65 62 6b 69 74 2d 69 6e 6c 69 6e 65 2d 66 6c 65 78 3b 20 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 66 Data Ascii: _{overflow:hidden;}.o_{white-space:nowrap;}.x_{cursor:pointer;}.y_{display:none; position:absolute; z-index:1;}.k_>div:not(.y_) {display:-webkit-inline-box; display:-moz-inline-box; display:-ms-inline-flexbox; display:-webkit-inline-flex; display:inline-f
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 73 74 61 72 74 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 3b 7d 2e 66 6c 65 78 41 6c 69 67 6e 42 6f 74 74 6f 6d 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 65 6e 64 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 3b 7d 2e 66 6c 65 78 41 6c 69 67 6e 43 65 6e 74 65 72 7b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 Data Ascii: start; align-items:flex-start;}.flexAlignBottom{-ms-flex-align:end; -webkit-box-align:end; -webkit-align-items:flex-end; align-items:flex-end;}.flexAlignCenter{-ms-flex-align:center; -webkit-box-align:center; -webkit-align-items:center; align-items:center
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 3a 30 70 78 3b 7d 2e 73 69 34 32 7b 77 69 64 74 68 3a 31 30 30 25 3b 20 2d 6d 73 2d 66 6c 65 78 2d 6e 65 67 61 74 69 76 65 3a 31 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 7d 2e 73 69 39 33 7b 77 69 64 74 68 3a 31 30 30 25 3b 20 2d 6d 73 2d 66 6c 65 78 2d 6e 65 67 61 74 69 76 65 3a 31 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 7d 2e 73 69 32 38 7b 66 6f 6e 74 2d 73 69 7a 65 3a 31 32 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 31 33 70 78 3b 7d 2e 73 69 39 32 7b 70 61 64 64 69 6e 67 2d Data Ascii: :0px;}.si42{width:100%; -ms-flex-negative:1;-webkit-box-flex:1 0; -webkit-flex-shrink:1; flex-shrink:1;}.si93{width:100%; -ms-flex-negative:1;-webkit-box-flex:1 0; -webkit-flex-shrink:1; flex-shrink:1;}.si28{font-size:12px;line-height:13px;}.si92{padding-
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 7d 2e 73 69 37 31 7b 66 6f 6e 74 2d 73 69 7a 65 3a 32 30 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 32 36 70 78 3b 63 6f 6c 6f 72 3a 23 30 30 30 30 63 63 3b 7d 2e 73 69 37 31 3a 68 6f 76 65 72 7b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 75 6e 64 65 72 6c 69 6e 65 3b 7d 2e 73 69 31 30 32 7b 62 6f 72 64 65 72 2d 72 61 64 69 75 73 3a 38 70 78 3b 7d 2e 73 69 31 32 38 7b 68 65 69 67 68 74 3a 31 70 78 3b 77 69 64 74 68 3a 31 30 30 25 3b 20 2d 6d 73 2d 66 6c 65 78 2d 6e 65 67 61 74 69 76 65 3a 31 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 66 6c 65 78 3a 31 20 30 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 20 66 6c 65 78 2d 73 68 72 69 6e 6b 3a 31 3b 7d 64 69 76 3e 64 69 76 2e 73 69 31 32 38 3a 6c 61 73 74 2d 63 68 69 6c 64 7b 64 Data Ascii: }.si71{font-size:20px;line-height:26px;color:#0000cc;}.si71:hover{text-decoration:underline;}.si102{border-radius:8px;}.si128{height:1px;width:100%; -ms-flex-negative:1;-webkit-box-flex:1 0; -webkit-flex-shrink:1; flex-shrink:1;}div>div.si128:last-child{d
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 67 68 74 43 6f 6c 75 6d 6e 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 32 30 70 78 3b 7d 2e 65 78 70 2d 73 69 74 65 6c 69 6e 6b 73 2d 63 6f 6e 74 61 69 6e 65 72 7b 70 61 64 64 69 6e 67 2d 74 6f 70 3a 34 70 78 3b 7d 2e 70 64 63 64 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 34 70 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 34 70 78 3b 7d 2e 70 72 69 63 65 45 78 74 65 6e 73 69 6f 6e 43 68 69 70 73 45 78 70 61 6e 64 6f 50 72 69 63 65 48 79 70 68 65 6e 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 35 70 78 3b 7d 2e 70 72 69 63 65 45 78 74 65 6e 73 69 6f 6e 43 68 69 70 73 50 72 69 63 65 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 35 70 78 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 35 70 78 3b 7d 2e 70 72 6f 6d 6f 74 69 6f 6e 45 78 74 65 6e 73 69 6f 6e 4f 63 63 61 73 69 6f Data Ascii: ghtColumn{padding-left:20px;}.exp-sitelinks-container{padding-top:4px;}.pdcd{padding-left:4px;padding-right:4px;}.priceExtensionChipsExpandoPriceHyphen{margin-left:5px;}.priceExtensionChipsPrice{margin-left:5px;margin-right:5px;}.promotionExtensionOccasio
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 6e 74 3a 66 6c 65 78 2d 73 74 61 72 74 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 73 74 72 65 74 63 68 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 61 6c 69 67 6e 3a 73 74 72 65 74 63 68 3b 20 2d 77 65 62 6b 69 74 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 73 74 72 65 74 63 68 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 73 74 72 65 74 63 68 3b 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 20 73 69 33 33 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 76 65 72 74 69 63 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d Data Ascii: nt:flex-start;-ms-flex-align:stretch; -webkit-box-align:stretch; -webkit-align-items:stretch; align-items:stretch;"><div class="i_ div si33" style="-ms-flex-direction:column; -webkit-box-orient:vertical; -webkit-flex-direction:column; flex-direction:colum
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 69 6e 65 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 69 6e 68 65 72 69 74 3b 27 20 63 6c 61 73 73 3d 22 73 69 31 33 30 20 73 70 61 6e 22 3e 52 6f 6f 66 69 6e 67 3c 2f 73 70 61 6e 3e 20 61 6e 64 20 45 78 74 65 72 69 6f 72 20 45 78 70 65 72 74 73 20 2d 20 3c 73 70 61 6e 20 73 74 79 6c 65 3d 27 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 3b 74 65 78 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 69 6e 68 65 72 69 74 3b 27 20 63 6c 61 73 73 3d 22 73 69 31 33 30 20 73 70 61 6e 22 3e 52 6f 6f 66 69 6e 67 3c 2f 73 70 61 6e 3e 20 61 6e 64 20 45 78 74 65 72 69 6f 72 73 3c 2f 73 70 61 6e 3e 3c 2f 61 3e 3c 2f 64 69 76 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 20 73 69 34 31 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 Data Ascii: ine;text-transform:inherit;' class="si130 span">Roofing</span> and Exterior Experts - <span style='display:inline;text-transform:inherit;' class="si130 span">Roofing</span> and Exteriors</span></a></div><div class="i_ div si41" style="-ms-flex-direction:r
2024-10-10 13:43:30 UTC	1390	IN	Data Raw: 2d 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 20 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 69 5f 20 64 69 76 20 73 69 39 33 20 76 5f 22 20 73 74 79 6c 65 3d 22 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 6f 72 69 65 6e 74 3a 68 6f 72 69 7a 6f 6e 74 61 6c 3b 20 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 20 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 72 6f 77 3b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 73 74 61 72 74 3b 20 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 66 6c 65 78 2d 73 74 Data Ascii: -align-items:center; align-items:center;"><div class="i_ div si93 v_" style="-ms-flex-direction:row; -webkit-box-orient:horizontal; -webkit-flex-direction:row; flex-direction:row;-ms-flex-pack:start; -webkit-box-pack:start; -webkit-justify-content:flex-st

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://www.waterbarriers.us

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 171

Chrome Cache Entry: 172

Chrome Cache Entry: 173

Chrome Cache Entry: 174

Chrome Cache Entry: 175

Chrome Cache Entry: 176

Chrome Cache Entry: 177

Chrome Cache Entry: 178

Chrome Cache Entry: 179

Chrome Cache Entry: 180

Chrome Cache Entry: 181

Chrome Cache Entry: 182

Chrome Cache Entry: 183

Chrome Cache Entry: 184

Chrome Cache Entry: 185

Chrome Cache Entry: 186

Chrome Cache Entry: 187

Chrome Cache Entry: 188

Chrome Cache Entry: 189

Chrome Cache Entry: 190

Chrome Cache Entry: 191

Windows Analysis Report
http://www.waterbarriers.us

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:31 UTC	758	OUT	GET /afs/ads/i/iframe.html HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-Dest: iframe Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 If-Modified-Since: Tue, 17 Sep 2024 06:00:00 GMT
2024-10-10 13:43:31 UTC	378	IN	HTTP/1.1 304 Not Modified Cross-Origin-Resource-Policy: cross-origin Date: Thu, 10 Oct 2024 13:43:31 GMT Expires: Thu, 10 Oct 2024 13:43:31 GMT Cache-Control: private, max-age=3600 Last-Modified: Tue, 17 Sep 2024 06:00:00 GMT X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:31 UTC	694	OUT	GET /images/afs/snowman.png HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CIu2yQEIo7bJAQipncoBCNT9ygEIkqHLAQiFoM0BCLnKzQEIidPNAQip1c0BGOmYzQEY642lFw== Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:31 UTC	670	IN	HTTP/1.1 200 OK Accept-Ranges: bytes Content-Type: image/png Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable" Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} Content-Length: 166 Date: Thu, 10 Oct 2024 13:43:31 GMT Expires: Thu, 10 Oct 2024 13:43:31 GMT Cache-Control: private, max-age=31536000 Last-Modified: Wed, 15 Nov 2023 17:00:00 GMT X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-10-10 13:43:31 UTC	166	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 30 00 00 00 30 04 03 00 00 00 a5 2c e4 b4 00 00 00 12 50 4c 54 45 00 00 00 97 9f 9f 9a a0 a5 9a a0 a6 9a a0 a6 97 9f a7 fa 03 72 95 00 00 00 06 74 52 4e 53 00 20 bf ef ff 20 e0 82 3c 7e 00 00 00 3d 49 44 41 54 78 01 63 18 7e 80 51 d9 49 00 ab 84 b0 8b 8b 21 56 09 15 17 17 27 ac 12 2e 2e 2e ce 58 25 4c 80 32 a4 19 15 ec e2 62 8a 55 82 55 c5 28 80 26 e1 30 1a 56 a3 61 35 ec 00 00 2d a2 14 b9 af 08 13 f6 00 00 00 00 49 45 4e 44 ae 42 60 82 Data Ascii: PNGIHDR00,PLTErtRNS <~=IDATxc~QI!V'...X%L2bUU(&0Va5-IENDB`

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:32 UTC	869	OUT	GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=fs6kujsu28hl&aqid=AtoHZ7DeBeq1xdwP34KECQ&psid=3113057640&pbt=bs&adbx=381.5&adby=143&adbh=1468&adbw=500&adbah=506%2C481%2C481&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=24%7C0%7C1741%7C27%7C169&lle=0&ifv=1&hpt=1 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:32 UTC	715	IN	HTTP/1.1 204 No Content Content-Type: text/html; charset=UTF-8 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-ElPQTVlHwvGB7vH0agTN-w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Permissions-Policy: unload=() Date: Thu, 10 Oct 2024 13:43:32 GMT Server: gws Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:34 UTC	869	OUT	GET /afs/gen_204?client=dp-bodis01_js&output=uds_ads_only&zx=dtl54gln06hm&aqid=AtoHZ7DeBeq1xdwP34KECQ&psid=3113057640&pbt=bv&adbx=381.5&adby=143&adbh=1468&adbw=500&adbah=506%2C481%2C481&adbn=master-1&eawp=partner-dp-bodis01_js&errv=681010707&csala=24%7C0%7C1741%7C27%7C169&lle=0&ifv=1&hpt=1 HTTP/1.1 Host: syndicatedsearch.goog Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: http://www.waterbarriers.us/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:34 UTC	715	IN	HTTP/1.1 204 No Content Content-Type: text/html; charset=UTF-8 Content-Security-Policy: object-src 'none';base-uri 'self';script-src 'nonce-EwswDiUWsUveJAkKYuk38Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="gws" Report-To: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} Permissions-Policy: unload=() Date: Thu, 10 Oct 2024 13:43:34 GMT Server: gws Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:43 UTC	2058	OUT	POST /_tr?click=true&session=820bd704-8380-4578-8532-30a3694d4917&signature=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 [TRUNCATED] Host: click-use1.bodis.com Connection: keep-alive Content-Length: 0 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Origin: https://syndicatedsearch.goog Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:43 UTC	306	IN	HTTP/1.1 200 OK Date: Thu, 10 Oct 2024 13:43:43 GMT Content-Type: application/json; charset=utf-8 Content-Length: 2 Connection: close X-Request-Id: 6a8a3695-5cc8-4daf-a269-063182d30d73 Set-Cookie: parking_session=6a8a3695-5cc8-4daf-a269-063182d30d73; expires=Thu, 10 Oct 2024 13:58:43 GMT; path=/
2024-10-10 13:43:43 UTC	2	IN	Data Raw: 6f 6b Data Ascii: ok

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:44 UTC	788	OUT	GET /?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE HTTP/1.1 Host: www.bullockbuilders.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:44 UTC	419	IN	HTTP/1.1 301 Moved Permanently location: https://bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE Vary: Accept-Encoding Server: DPS/2.0.0+sha-227ca78 X-Version: 227ca78 X-SiteId: us-east-1 Set-Cookie: dps_site_id=us-east-1; path=/; secure ETag: a8fea37de49529659ca300826d3f6631 Date: Thu, 10 Oct 2024 13:43:44 GMT Connection: close Transfer-Encoding: chunked
2024-10-10 13:43:44 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:45 UTC	784	OUT	GET /?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE HTTP/1.1 Host: bullockbuilders.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Referer: https://syndicatedsearch.goog/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:45 UTC	844	IN	HTTP/1.1 200 OK Link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.43.0.js>; rel=preload; as=script; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin,<https://api.ola.godaddy.com>; rel=preconnect; crossorigin Cache-Control: max-age=30 Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.com Content-Type: text/html;charset=utf-8 Vary: Accept-Encoding Server: DPS/2.0.0+sha-227ca78 X-Version: 227ca78 X-SiteId: us-east-1 Set-Cookie: dps_site_id=us-east-1; path=/; secure ETag: a8fea37de49529659ca300826d3f6631 Date: Thu, 10 Oct 2024 13:43:45 GMT Connection: close Transfer-Encoding: chunked
2024-10-10 13:43:45 UTC	15540	IN	Data Raw: 32 64 63 34 66 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 69 70 2f 39 62 37 36 38 64 33 65 2d 33 32 64 62 2d 34 36 31 33 2d 61 61 35 31 2d 38 34 30 35 30 62 33 62 63 63 64 30 2f 66 61 76 69 63 6f 6e 2f 36 63 33 61 33 36 66 39 2d 64 36 31 64 2d 34 31 33 39 2d 38 32 37 39 2d 33 31 34 64 35 34 34 62 34 64 36 61 2e 70 6e 67 2f 3a 2f 72 73 3d 77 3a 31 36 2c 68 3a 31 36 2c 6d 22 20 73 69 7a 65 73 3d 22 31 36 78 31 36 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d Data Ascii: 2dc4f<!DOCTYPE html><html lang="en-US"><head><link rel="icon" href="//img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/favicon/6c3a36f9-d61d-4139-8279-314d544b4d6a.png/:/rs=w:16,h:16,m" sizes="16x16"/><link rel="icon" href="//img1.wsimg.com
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 7d 2e 78 20 2e 63 31 2d 39 71 7b 66 6c 65 78 2d 62 61 73 69 73 3a 31 30 30 25 7d 2e 78 20 2e 63 31 2d 39 72 7b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 31 32 70 78 7d 2e 78 20 2e 63 31 2d 39 73 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 34 38 70 78 7d 2e 78 20 2e 63 31 2d 39 74 7b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 31 32 70 78 7d 2e 78 20 2e 63 31 2d 39 7a 7b 61 6c 69 67 6e 2d 73 65 6c 66 3a 66 6c 65 78 2d 73 74 61 72 74 7d 2e 78 20 2e 63 31 2d 61 33 7b 62 6f 72 64 65 72 2d 77 69 64 74 68 3a 30 20 21 69 6d 70 6f 72 74 61 6e 74 7d 2e 78 20 2e 63 31 2d 61 34 7b 61 73 70 65 63 74 2d 72 61 74 69 6f 3a 32 20 2f 20 31 7d 2e 78 20 2e 63 31 2d 61 35 7b 6f 72 64 65 72 3a 2d 31 7d 2e 78 20 2e 63 31 2d 61 37 20 3e 20 2a 7b 6d 61 78 2d 77 69 64 74 68 3a 31 Data Ascii: }.x .c1-9q{flex-basis:100%}.x .c1-9r{padding-right:12px}.x .c1-9s{padding-bottom:48px}.x .c1-9t{padding-left:12px}.x .c1-9z{align-self:flex-start}.x .c1-a3{border-width:0 !important}.x .c1-a4{aspect-ratio:2 / 1}.x .c1-a5{order:-1}.x .c1-a7 > *{max-width:1
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 6d 61 67 65 3a 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 74 6f 20 62 6f 74 74 6f 6d 2c 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 30 29 20 30 25 2c 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 30 29 20 31 30 30 25 29 2c 20 75 72 6c 28 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 73 74 6f 63 6b 2f 30 33 51 6b 79 4b 56 2f 3a 2f 63 72 3d 74 3a 30 25 32 35 2c 6c 3a 30 25 32 35 2c 77 3a 31 30 30 25 32 35 2c 68 3a 31 30 30 25 32 35 2f 72 73 3d 77 3a 32 30 34 36 2c 6d 22 29 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 37 36 38 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 30 32 33 70 78 29 20 61 6e 64 20 28 2d 77 65 62 6b 69 74 2d 6d 69 6e 2d 64 65 76 69 63 65 2d 70 69 78 65 6c 2d 72 61 74 Data Ascii: mage:linear-gradient(to bottom, rgba(0, 0, 0, 0) 0%, rgba(0, 0, 0, 0) 100%), url("//img1.wsimg.com/isteam/stock/03QkyKV/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:2046,m")}}@media (min-width: 768px) and (max-width: 1023px) and (-webkit-min-device-pixel-rat
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 63 63 64 30 2f 49 4d 47 5f 32 30 32 34 30 36 32 31 5f 31 30 34 30 33 30 25 32 30 28 33 29 2e 6a 70 67 2f 3a 2f 63 72 3d 74 3a 30 25 32 35 2c 6c 3a 30 25 32 35 2c 77 3a 31 30 30 25 32 35 2c 68 3a 31 30 30 25 32 35 2f 72 73 3d 77 3a 31 35 33 35 2c 6d 22 29 7d 7d 40 6d 65 64 69 61 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 32 38 30 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 35 33 35 70 78 29 20 61 6e 64 20 28 2d 77 65 62 6b 69 74 2d 6d 69 6e 2d 64 65 76 69 63 65 2d 70 69 78 65 6c 2d 72 61 74 69 6f 3a 20 32 29 2c 20 28 6d 69 6e 2d 77 69 64 74 68 3a 20 31 32 38 30 70 78 29 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 31 35 33 35 70 78 29 20 61 6e 64 20 28 6d 69 6e 2d 72 65 73 6f 6c 75 74 69 6f 6e 3a 20 31 39 32 64 70 69 29 7b 2e 78 20 Data Ascii: ccd0/IMG_20240621_104030%20(3).jpg/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1535,m")}}@media (min-width: 1280px) and (max-width: 1535px) and (-webkit-min-device-pixel-ratio: 2), (min-width: 1280px) and (max-width: 1535px) and (min-resolution: 192dpi){.x
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 2d 69 39 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 69 6d 61 67 65 3a 6c 69 6e 65 61 72 2d 67 72 61 64 69 65 6e 74 28 74 6f 20 62 6f 74 74 6f 6d 2c 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 30 2e 32 34 29 20 30 25 2c 20 72 67 62 61 28 30 2c 20 30 2c 20 30 2c 20 30 2e 32 34 29 20 31 30 30 25 29 2c 20 75 72 6c 28 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 69 70 2f 39 62 37 36 38 64 33 65 2d 33 32 64 62 2d 34 36 31 33 2d 61 61 35 31 2d 38 34 30 35 30 62 33 62 63 63 64 30 2f 49 4d 47 5f 32 30 32 34 30 36 32 31 5f 31 30 34 30 33 30 25 32 30 28 35 29 2e 6a 70 67 2f 3a 2f 63 72 3d 74 3a 32 31 2e 34 34 25 32 35 2c 6c 3a 30 25 32 35 2c 77 3a 35 38 2e 31 34 25 32 35 2c 68 3a 35 38 2e 31 34 25 32 35 2f 72 73 3d 77 3a 35 37 36 30 2c 6d 22 Data Ascii: -i9{background-image:linear-gradient(to bottom, rgba(0, 0, 0, 0.24) 0%, rgba(0, 0, 0, 0.24) 100%), url("//img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/IMG_20240621_104030%20(5).jpg/:/cr=t:21.44%25,l:0%25,w:58.14%25,h:58.14%25/rs=w:5760,m"
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 31 2d 31 73 20 63 31 2d 31 74 20 63 31 2d 31 75 20 63 31 2d 31 76 20 63 31 2d 31 77 20 63 31 2d 31 78 20 63 31 2d 31 79 20 63 31 2d 31 7a 20 63 31 2d 32 30 20 63 31 2d 32 31 20 63 31 2d 32 32 20 63 31 2d 32 33 20 63 31 2d 32 34 20 63 31 2d 32 35 20 63 31 2d 32 36 20 63 31 2d 32 37 20 63 31 2d 32 38 20 63 31 2d 32 39 20 63 31 2d 64 20 63 31 2d 32 61 20 63 31 2d 65 20 63 31 2d 66 20 63 31 2d 67 22 3e 3c 64 69 76 20 64 61 74 61 2d 75 78 3d 22 42 6c 6f 63 6b 22 20 63 6c 61 73 73 3d 22 78 2d 65 6c 20 78 2d 65 6c 2d 64 69 76 20 63 31 2d 31 20 63 31 2d 32 20 63 31 2d 32 62 20 63 31 2d 34 20 63 31 2d 62 20 63 31 2d 63 20 63 31 2d 64 20 63 31 2d 32 63 20 63 31 2d 65 20 63 31 2d 66 20 63 31 2d 67 22 3e 3c 64 69 76 20 64 61 74 61 2d 75 78 3d 22 42 6c 6f 63 6b 22 20 Data Ascii: 1-1s c1-1t c1-1u c1-1v c1-1w c1-1x c1-1y c1-1z c1-20 c1-21 c1-22 c1-23 c1-24 c1-25 c1-26 c1-27 c1-28 c1-29 c1-d c1-2a c1-e c1-f c1-g"><div data-ux="Block" class="x-el x-el-div c1-1 c1-2 c1-2b c1-4 c1-b c1-c c1-d c1-2c c1-e c1-f c1-g"><div data-ux="Block"
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 68 79 3d 22 4e 61 76 42 65 74 61 22 20 63 6c 61 73 73 3d 22 78 2d 65 6c 20 78 2d 65 6c 2d 61 20 63 31 2d 31 20 63 31 2d 32 20 63 31 2d 33 35 20 63 31 2d 31 38 20 63 31 2d 31 39 20 63 31 2d 31 31 20 63 31 2d 33 37 20 63 31 2d 35 76 20 63 31 2d 35 77 20 63 31 2d 79 20 63 31 2d 7a 20 63 31 2d 31 32 20 63 31 2d 37 31 20 63 31 2d 37 32 20 63 31 2d 62 20 63 31 2d 34 68 20 63 31 2d 37 33 20 63 31 2d 31 66 20 63 31 2d 33 66 20 63 31 2d 37 34 20 63 31 2d 37 35 20 63 31 2d 37 36 20 63 31 2d 37 37 20 63 31 2d 37 38 20 63 31 2d 37 39 22 20 64 61 74 61 2d 74 63 63 6c 3d 22 75 78 32 2e 48 45 41 44 45 52 2e 68 65 61 64 65 72 39 2e 4e 61 76 69 67 61 74 69 6f 6e 44 72 61 77 65 72 2e 44 65 66 61 75 6c 74 2e 4c 69 6e 6b 2e 44 65 66 61 75 6c 74 2e 35 32 33 35 37 2e 63 6c 69 Data Ascii: hy="NavBeta" class="x-el x-el-a c1-1 c1-2 c1-35 c1-18 c1-19 c1-11 c1-37 c1-5v c1-5w c1-y c1-z c1-12 c1-71 c1-72 c1-b c1-4h c1-73 c1-1f c1-3f c1-74 c1-75 c1-76 c1-77 c1-78 c1-79" data-tccl="ux2.HEADER.header9.NavigationDrawer.Default.Link.Default.52357.cli
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 3d 77 3a 38 30 36 2c 68 3a 34 30 33 2c 63 67 3a 74 72 75 65 20 32 78 2c 20 68 74 74 70 73 3a 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 73 74 6f 63 6b 2f 79 52 72 6e 32 59 7a 2f 3a 2f 63 72 3d 74 3a 31 32 2e 35 25 32 35 2c 6c 3a 30 25 32 35 2c 77 3a 31 30 30 25 32 35 2c 68 3a 37 35 25 32 35 2f 72 73 3d 77 3a 31 32 30 39 2c 68 3a 36 30 35 2c 63 67 3a 74 72 75 65 20 33 78 22 2f 3e 3c 73 6f 75 72 63 65 20 6d 65 64 69 61 3d 22 28 6d 69 6e 2d 77 69 64 74 68 3a 20 34 35 31 70 78 29 22 20 73 72 63 53 65 74 3d 22 68 74 74 70 73 3a 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 73 74 6f 63 6b 2f 79 52 72 6e 32 59 7a 2f 3a 2f 63 72 3d 74 3a 31 32 2e 35 25 32 35 2c 6c 3a 30 25 32 35 2c 77 3a 31 30 30 25 32 35 2c Data Ascii: =w:806,h:403,cg:true 2x, https://img1.wsimg.com/isteam/stock/yRrn2Yz/:/cr=t:12.5%25,l:0%25,w:100%25,h:75%25/rs=w:1209,h:605,cg:true 3x"/><source media="(min-width: 451px)" srcSet="https://img1.wsimg.com/isteam/stock/yRrn2Yz/:/cr=t:12.5%25,l:0%25,w:100%25,
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 69 64 74 68 3a 31 30 30 25 3b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 35 36 2e 32 35 25 3b 6f 70 61 63 69 74 79 3a 31 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 22 20 64 61 74 61 2d 69 6e 64 65 78 3d 22 30 22 20 63 6c 61 73 73 3d 22 63 61 72 6f 75 73 65 6c 2d 73 6c 69 64 65 20 63 61 72 6f 75 73 65 6c 2d 73 6c 69 64 65 2d 73 65 6c 65 63 74 65 64 22 3e 3c 64 69 76 20 72 6f 6c 65 3d 22 69 6d 67 22 20 64 61 74 61 2d 61 69 64 3d 22 47 41 4c 4c 45 52 59 5f 49 4d 41 47 45 30 5f 52 45 4e 44 45 52 45 44 22 20 64 61 74 61 2d 75 78 3d 22 42 61 63 6b 67 72 6f 75 6e 64 22 20 61 6c 74 3d 22 7b 26 71 75 6f 74 3b 62 6c 6f 63 6b 73 26 71 75 6f 74 3b 3a 5b 7b 26 71 75 6f 74 3b 6b 65 79 26 71 75 6f 74 3b 3a 26 71 75 6f 74 3b 36 61 71 6a 6d 26 71 75 6f 74 3b Data Ascii: idth:100%;padding-bottom:56.25%;opacity:1;position:relative" data-index="0" class="carousel-slide carousel-slide-selected"><div role="img" data-aid="GALLERY_IMAGE0_RENDERED" data-ux="Background" alt="{"blocks":[{"key":"6aqjm"
2024-10-10 13:43:45 UTC	16384	IN	Data Raw: 3d 22 78 2d 65 6c 20 78 2d 65 6c 2d 69 6e 70 75 74 20 63 31 2d 31 20 63 31 2d 32 20 63 31 2d 33 20 63 31 2d 62 39 20 63 31 2d 34 20 63 31 2d 66 67 20 63 31 2d 66 68 20 63 31 2d 66 63 20 63 31 2d 66 69 20 63 31 2d 35 74 20 63 31 2d 39 65 20 63 31 2d 66 6a 20 63 31 2d 66 6b 20 63 31 2d 35 78 20 63 31 2d 35 79 20 63 31 2d 62 20 63 31 2d 66 6c 20 63 31 2d 63 20 63 31 2d 31 66 20 63 31 2d 66 6d 20 63 31 2d 66 6e 20 63 31 2d 66 6f 20 63 31 2d 66 70 20 63 31 2d 66 71 20 63 31 2d 66 72 20 63 31 2d 66 73 20 63 31 2d 66 74 20 63 31 2d 66 75 20 63 31 2d 66 76 20 63 31 2d 66 77 20 63 31 2d 64 20 63 31 2d 65 20 63 31 2d 66 20 63 31 2d 67 22 2f 3e 3c 6c 61 62 65 6c 20 64 61 74 61 2d 75 78 3d 22 49 6e 70 75 74 46 6c 6f 61 74 4c 61 62 65 6c 4c 61 62 65 6c 22 20 66 6f 72 Data Ascii: ="x-el x-el-input c1-1 c1-2 c1-3 c1-b9 c1-4 c1-fg c1-fh c1-fc c1-fi c1-5t c1-9e c1-fj c1-fk c1-5x c1-5y c1-b c1-fl c1-c c1-1f c1-fm c1-fn c1-fo c1-fp c1-fq c1-fr c1-fs c1-ft c1-fu c1-fv c1-fw c1-d c1-e c1-f c1-g"/><label data-ux="InputFloatLabelLabel" for

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:51 UTC	634	OUT	GET /markup/ad HTTP/1.1 Host: bullockbuilders.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-origin Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://bullockbuilders.com/?gad_source=5&gclid=EAIaIQobChMIsOep8viDiQMV6lqRBR1fASEBEAAYASAAEgKHwvD_BwE Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: dps_site_id=us-east-1
2024-10-10 13:43:51 UTC	752	IN	HTTP/1.1 404 Not Found Link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.43.0.js>; rel=preload; as=script; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin Cache-Control: max-age=30 Content-Security-Policy: frame-ancestors 'self' godaddy.com *.godaddy.com Content-Type: text/html;charset=utf-8 Vary: Accept-Encoding Server: DPS/2.0.0+sha-227ca78 X-Version: 227ca78 X-SiteId: us-east-1 Set-Cookie: dps_site_id=us-east-1; path=/; secure Date: Thu, 10 Oct 2024 13:43:51 GMT Connection: close Transfer-Encoding: chunked
2024-10-10 13:43:51 UTC	15632	IN	Data Raw: 63 63 61 34 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 2d 55 53 22 3e 3c 68 65 61 64 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f 69 73 74 65 61 6d 2f 69 70 2f 39 62 37 36 38 64 33 65 2d 33 32 64 62 2d 34 36 31 33 2d 61 61 35 31 2d 38 34 30 35 30 62 33 62 63 63 64 30 2f 66 61 76 69 63 6f 6e 2f 36 63 33 61 33 36 66 39 2d 64 36 31 64 2d 34 31 33 39 2d 38 32 37 39 2d 33 31 34 64 35 34 34 62 34 64 36 61 2e 70 6e 67 2f 3a 2f 72 73 3d 77 3a 31 36 2c 68 3a 31 36 2c 6d 22 20 73 69 7a 65 73 3d 22 31 36 78 31 36 22 2f 3e 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 2f 2f 69 6d 67 31 2e 77 73 69 6d 67 2e 63 6f 6d 2f Data Ascii: cca4<!DOCTYPE html><html lang="en-US"><head><link rel="icon" href="//img1.wsimg.com/isteam/ip/9b768d3e-32db-4613-aa51-84050b3bccd0/favicon/6c3a36f9-d61d-4139-8279-314d544b4d6a.png/:/rs=w:16,h:16,m" sizes="16x16"/><link rel="icon" href="//img1.wsimg.com/
2024-10-10 13:43:51 UTC	16384	IN	Data Raw: 2e 78 20 2e 63 31 2d 32 78 7b 68 65 69 67 68 74 3a 31 30 34 70 78 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 37 36 37 70 78 29 7b 2e 78 20 2e 63 31 2d 32 79 7b 6d 61 78 2d 77 69 64 74 68 3a 32 32 34 70 78 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 37 36 37 70 78 29 7b 2e 78 20 2e 63 31 2d 32 7a 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 37 36 37 70 78 29 7b 2e 78 20 2e 63 31 2d 33 30 7b 6d 61 78 2d 68 65 69 67 68 74 3a 38 30 70 78 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 37 36 37 70 78 29 7b 2e 78 20 2e 63 31 2d 33 31 7b 6d 61 72 67 69 6e 2d 74 6f 70 3a 30 7d 7d 40 6d 65 64 69 61 20 28 6d 61 78 2d 77 69 64 74 68 3a 20 37 36 37 70 78 Data Ascii: .x .c1-2x{height:104px}}@media (max-width: 767px){.x .c1-2y{max-width:224px}}@media (max-width: 767px){.x .c1-2z{display:block}}@media (max-width: 767px){.x .c1-30{max-height:80px}}@media (max-width: 767px){.x .c1-31{margin-top:0}}@media (max-width: 767px
2024-10-10 13:43:51 UTC	16384	IN	Data Raw: 6f 67 72 61 70 68 79 3d 22 4e 61 76 41 6c 70 68 61 22 20 63 6c 61 73 73 3d 22 78 2d 65 6c 20 78 2d 65 6c 2d 61 20 63 31 2d 34 65 20 63 31 2d 34 66 20 63 31 2d 32 39 20 63 31 2d 31 38 20 63 31 2d 31 39 20 63 31 2d 31 31 20 63 31 2d 32 62 20 63 31 2d 31 32 20 63 31 2d 62 20 63 31 2d 33 6a 20 63 31 2d 34 6c 20 63 31 2d 31 66 20 63 31 2d 34 6d 20 63 31 2d 34 6e 20 63 31 2d 34 6f 20 63 31 2d 34 70 20 63 31 2d 34 71 20 63 31 2d 34 72 22 20 64 61 74 61 2d 74 63 63 6c 3d 22 75 78 32 2e 48 45 41 44 45 52 2e 68 65 61 64 65 72 39 2e 4e 61 76 2e 44 65 66 61 75 6c 74 2e 4c 69 6e 6b 2e 44 72 6f 70 64 6f 77 6e 2e 38 36 38 37 33 2e 63 6c 69 63 6b 2c 63 6c 69 63 6b 22 3e 3c 64 69 76 20 73 74 79 6c 65 3d 22 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 3a 6e 6f 6e 65 3b 64 69 Data Ascii: ography="NavAlpha" class="x-el x-el-a c1-4e c1-4f c1-29 c1-18 c1-19 c1-11 c1-2b c1-12 c1-b c1-3j c1-4l c1-1f c1-4m c1-4n c1-4o c1-4p c1-4q c1-4r" data-tccl="ux2.HEADER.header9.Nav.Default.Link.Dropdown.86873.click,click"><div style="pointer-events:none;di
2024-10-10 13:43:51 UTC	4001	IN	Data Raw: 65 6c 20 78 2d 65 6c 2d 64 69 76 20 63 31 2d 31 20 63 31 2d 32 20 63 31 2d 62 20 63 31 2d 63 20 63 31 2d 64 20 63 31 2d 65 20 63 31 2d 66 20 63 31 2d 67 22 3e 3c 64 69 76 20 64 61 74 61 2d 75 78 3d 22 42 6c 6f 63 6b 22 20 63 6c 61 73 73 3d 22 78 2d 65 6c 20 78 2d 65 6c 2d 64 69 76 20 63 31 2d 31 20 63 31 2d 32 20 63 31 2d 35 66 20 63 31 2d 38 79 20 63 31 2d 38 7a 20 63 31 2d 39 30 20 63 31 2d 39 31 20 63 31 2d 39 32 20 63 31 2d 62 20 63 31 2d 63 20 63 31 2d 64 20 63 31 2d 39 33 20 63 31 2d 65 20 63 31 2d 66 20 63 31 2d 67 22 3e 3c 64 69 76 3e 3c 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 3c 2f 64 69 76 3e 0a 3c 73 63 72 69 70 74 20 73 72 63 3d 22 2f 2f 69 6d 67 Data Ascii: el x-el-div c1-1 c1-2 c1-b c1-c c1-d c1-e c1-f c1-g"><div data-ux="Block" class="x-el x-el-div c1-1 c1-2 c1-5f c1-8y c1-8z c1-90 c1-91 c1-92 c1-b c1-c c1-d c1-93 c1-e c1-f c1-g"><div><div></div></div></div></div></div></div></div></div><script src="//img

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:51 UTC	521	OUT	GET /pb.js HTTP/1.1 Host: cdn.poynt.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://bullockbuilders.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:52 UTC	735	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 7099 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Thu, 01 Jun 2023 14:14:09 GMT x-amz-server-side-encryption: AES256 x-amz-meta-version-id: 2E3LhpCz2WB9A6_..xrBThFs.aR.LqWm x-amz-meta-mtime: 1662655258217 x-amz-version-id: QztF1yNUXTfqQF2nDx15kgCVkg6sVwsP Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 10 Oct 2024 13:43:53 GMT Cache-Control: max-age=1800 ETag: "0b124241b6fbdccc5df50908ae2bc656" Vary: Accept-Encoding X-Cache: RefreshHit from cloudfront Via: 1.1 56a77d6c9e6b49fa4179a99507a9582e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA60-P6 X-Amz-Cf-Id: 4Tw5o_mYGd1fLrSr57hGT71KsVGXVN1qQ9UGZnbM4U47ifQWVumIBw==
2024-10-10 13:43:52 UTC	7099	IN	Data Raw: 76 61 72 20 50 61 79 42 75 74 74 6f 6e 73 4a 53 3b 28 28 29 3d 3e 7b 76 61 72 20 74 3d 7b 38 34 38 3a 28 74 2c 65 2c 6e 29 3d 3e 7b 76 61 72 20 6f 3d 7b 22 2e 2f 65 6e 2e 6a 73 6f 6e 22 3a 37 34 38 2c 22 2e 2f 66 72 2d 43 41 2e 6a 73 6f 6e 22 3a 35 36 36 2c 22 2e 2f 66 72 2d 46 52 2e 6a 73 6f 6e 22 3a 37 36 38 2c 22 2e 2f 71 61 2d 50 53 2e 6a 73 6f 6e 22 3a 35 37 37 7d 3b 66 75 6e 63 74 69 6f 6e 20 69 28 74 29 7b 76 61 72 20 65 3d 73 28 74 29 3b 72 65 74 75 72 6e 20 6e 28 65 29 7d 66 75 6e 63 74 69 6f 6e 20 73 28 74 29 7b 69 66 28 21 6e 2e 6f 28 6f 2c 74 29 29 7b 76 61 72 20 65 3d 6e 65 77 20 45 72 72 6f 72 28 22 43 61 6e 6e 6f 74 20 66 69 6e 64 20 6d 6f 64 75 6c 65 20 27 22 2b 74 2b 22 27 22 29 3b 74 68 72 6f 77 20 65 2e 63 6f 64 65 3d 22 4d 4f 44 55 4c Data Ascii: var PayButtonsJS;(()=>{var t={848:(t,e,n)=>{var o={"./en.json":748,"./fr-CA.json":566,"./fr-FR.json":768,"./qa-PS.json":577};function i(t){var e=s(t);return n(e)}function s(t){if(!n.o(o,t)){var e=new Error("Cannot find module '"+t+"'");throw e.code="MODUL

Timestamp	Bytes transferred	Direction	Data
2024-10-10 13:43:53 UTC	342	OUT	GET /pb.js HTTP/1.1 Host: cdn.poynt.net Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-10-10 13:43:53 UTC	736	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 7099 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Thu, 01 Jun 2023 14:14:09 GMT x-amz-server-side-encryption: AES256 x-amz-meta-version-id: 2E3LhpCz2WB9A6_..xrBThFs.aR.LqWm x-amz-meta-mtime: 1662655258217 x-amz-version-id: QztF1yNUXTfqQF2nDx15kgCVkg6sVwsP Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 10 Oct 2024 13:43:53 GMT Cache-Control: max-age=1800 ETag: "0b124241b6fbdccc5df50908ae2bc656" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6d96f6742a3e24fad8577272b38c550a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA60-P6 X-Amz-Cf-Id: uK2SHCuvFBXTDR2-Zf90-O4gwA7xOg7Rm4nATsjvUb5pTPCdsrtNPA== Age: 1
2024-10-10 13:43:53 UTC	7099	IN	Data Raw: 76 61 72 20 50 61 79 42 75 74 74 6f 6e 73 4a 53 3b 28 28 29 3d 3e 7b 76 61 72 20 74 3d 7b 38 34 38 3a 28 74 2c 65 2c 6e 29 3d 3e 7b 76 61 72 20 6f 3d 7b 22 2e 2f 65 6e 2e 6a 73 6f 6e 22 3a 37 34 38 2c 22 2e 2f 66 72 2d 43 41 2e 6a 73 6f 6e 22 3a 35 36 36 2c 22 2e 2f 66 72 2d 46 52 2e 6a 73 6f 6e 22 3a 37 36 38 2c 22 2e 2f 71 61 2d 50 53 2e 6a 73 6f 6e 22 3a 35 37 37 7d 3b 66 75 6e 63 74 69 6f 6e 20 69 28 74 29 7b 76 61 72 20 65 3d 73 28 74 29 3b 72 65 74 75 72 6e 20 6e 28 65 29 7d 66 75 6e 63 74 69 6f 6e 20 73 28 74 29 7b 69 66 28 21 6e 2e 6f 28 6f 2c 74 29 29 7b 76 61 72 20 65 3d 6e 65 77 20 45 72 72 6f 72 28 22 43 61 6e 6e 6f 74 20 66 69 6e 64 20 6d 6f 64 75 6c 65 20 27 22 2b 74 2b 22 27 22 29 3b 74 68 72 6f 77 20 65 2e 63 6f 64 65 3d 22 4d 4f 44 55 4c Data Ascii: var PayButtonsJS;(()=>{var t={848:(t,e,n)=>{var o={"./en.json":748,"./fr-CA.json":566,"./fr-FR.json":768,"./qa-PS.json":577};function i(t){var e=s(t);return n(e)}function s(t){if(!n.o(o,t)){var e=new Error("Cannot find module '"+t+"'");throw e.code="MODUL