Sample details: c1ea2fcdab93656d1147649ef60e7408 --

Hashes
MD5: c1ea2fcdab93656d1147649ef60e7408
SHA1: dd3898615eae3bff8df6f6860b59a1b7e748773c
SHA256: 7a64a037e78c26864361e79b2b130f777e5ee5a0b232f5052b66fbd00a5a541d
SSDEEP: 192:TiXHuT23oInziim+uk6yMA5eZfLVGjb0R9BNuoQq9iPOD:TieyDC+uk6yMmeZDVGjb0Rxu0
Details
File Type: HTML
Added: 2019-10-09 07:53:20
Yara Hits
YRP/domain | YRP/url | YRP/contentis_base64 |
Source
http://rimdetas.lt/wp-content/verif.accs.docs.com/
Strings
		<!DOCTYPE html>
<html data-adblockkey="MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_CyM4tN34MC951/ACmudB0kbYxloli9H04DNZKtEZsfSXc52FmSH44SQAWA/CD5rXm5famBuarZ/xpSJ8COe3yQ==" xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
     <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" />
    <title>rimdetas.lt</title>
	<script src="//www.google.com/adsense/domains/caf.js" type="text/javascript" ></script>
	<link href="//d1lxhc4jvstzrp.cloudfront.net/themes/assets/style.css" rel="stylesheet" type="text/css" media="screen" />
	<link href="//d1lxhc4jvstzrp.cloudfront.net/themes/cleanPeppermint_7a82f1f3/style.css" rel="stylesheet" type="text/css" media="screen" />
	<link href="https://fonts.googleapis.com/css?family=Poppins:300" rel="stylesheet">
	<meta name="description " content="This domain may be for sale!" />
		<style>
	 @media (min-width:600px) {
		 .tcHolder { margin-top:3rem }
	</style>
	</head>
<body id="afd" style="visibility:hidden">
<div class="wrapper1">
<style>
    .sale_banner_gray {
        background:#706b67;
        background: -moz-linear-gradient(top, #817c78 0%, #5d5854 100%);
        background: -webkit-linear-gradient(top, #817c78 0%,#5d5854 100%);
        background: linear-gradient(to bottom, #817c78 0%,#5d5854 100%);
        filter: progid:DXImageTransform.Microsoft.gradient( startColorstr='#817c78', endColorstr='#5d5854',GradientType=0 );
        border-top: 1px solid #eee;
        border-bottom: 1px solid #eee;
        color: #c8c8c8;
        text-align: center;
        font: bold 16px/36px sans-serif;
        height: 36px;
    .sale_banner_gray a {
        display: block;
        color:#fff;
        text-decoration: none;
</style>
	<script src="http://c.parkingcrew.net/scripts/sale_form.js" type="text/javascript"></script>
<div class="sale_banner_gray" style="border-top:none">
			<a href="https://domainagents.com/rimdetas.lt-pc" target="_blank" onmousedown="tlink('ing', 'rimdetas.lt');">
            Buy this domain.
</div>
    <div class="wrapper2">
        <div class="wrapper3">
            
            <div class="tcHolder">
            	<div id="tc"></div>
								<div class="searchHolder">
					<div id="search"></div>
				</div>
				            </div>
        </div>
    </div>
	<div class="footer">
		<script type="text/javascript">
    function showImprint(){
        var imprintwnd = window.open('','pcrew_imprint','width=640,height=480,left=200,top=200,menubar=no,status=yes,toolbar=no');
        imprintwnd.document.writeln("");
        imprintwnd.document.close();
    function showPolicy(){
        var link = 'www.parkingcrew.net';
        policywnd = window.open(
                'http://' + link + '/privacy.html','pcrew_policy','width=890,height=330,left=200,top=200,menubar=no,status=yes,toolbar=no');
        policywnd.focus();
    function showAboutUs(){
        var link = 'http://'+document.location.host+'/aboutus.php?domain=rimdetas.lt';
        policywnd = window.open(link,'pcrew_policy','width=890,height=330,left=200,top=200,menubar=no,status=yes,toolbar=no');
        policywnd.focus();
</script>
2019 Copyright.  All Rights Reserved. <br/><br/>
The Sponsored Listings displayed above are served automatically by a third party. Neither the service provider nor the domain owner maintain any relationship with the advertisers. In case of trademark issues please contact the domain owner directly (contact information can be found in whois).
<br/><br/>
<a href="javascript:void(0);" onClick="showPolicy();">Privacy Policy</a>
<br/><br/>
<br/><br/>
<script type="text/javascript">
 (function() {
    var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
    ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
    var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
  })(); 
</script>
<!-- -->
	</div>
</div>
<script type="text/javascript" language="JavaScript">
var tcblock = {
    // Required and steady
	'container' : 'tc',
	'type' : 'relatedsearch',
	'colorBackground' : 'transparent',
    'number' : 3,
	// Font-Sizes and Line-Heights
	'fontSizeAttribution' : 14,
	'fontSizeTitle' : 24,
	'lineHeightTitle' : 34,
	// Colors
	'colorAttribution' : '#aaa',
	'colorTitleLink' : '#0277bd',
	// Alphabetically
    'horizontalAlignment' : 'center',
	'noTitleUnderline': false,
	'rolloverLinkColor' : '#01579b',
	'verticalSpacing' : 10,
	'webFontFamily' : 'Poppins'
var searchboxBlock = {
	'container' : 'search',
	'type' : 'searchbox',
	'fontSizeSearchInput' : 12,
	'hideSearchInputBorder' : false,
	'hideSearchButtonBorder' : true,
	'fontSizeSearchButton' : 13,
	'colorBackground' : 'transparent',
	'colorSearchButton' : '#848484',
	'colorSearchButtonText' : '#fff',
	'webFontFamily' : 'Poppins'
</script>
<script type='text/javascript' language='JavaScript'>var isAdult=false;var xbase='5d9d91f0900b9e2b1b8b4ab8';var sbtext='Search';var xt_auto_load=0;var ads='',pop_cats='';var rxid='0';var uniqueTrackingID='MTU3MDYwNzYwMC4xNTY3OmI1MjU5ZmE5NThkNDA2MWM3MWJiYzQ5ZTNjZDg5ZDJkNGVlZTg5NDJiMjY0N2M1Mzc1NWRmY2UwYmIzNTRkOTQ6NWQ5ZDkxZjAyNjQzMg==';var search='';var is_afs=false;var country='us';var themedata='fENsZWFuUGVwcGVybWludEJsYW5rMDN8fGIxNTc0fGJ1Y2tldDEwM3x8fHwwfHw1ZDlkOTFmMDI1YjQ2fHx8MTU3MDYwNzYwMC4xNjAxfGU1NmVhYzk4N2YyMWI2OWVlMzgxMWU3ODgxN2M2YjkxY2NmMTQ4MDZ8fHx8fDF8fHwwfHx8fDF8fHx8fDB8MHx8fHx8fHwxfHx8MHwxfHwwfDB8MXwwfDB8ZXlKemRIbHNaVWxrSWpvaU1UTTBPVEl5TXpJd01TSjl8fDE=';var domain='rimdetas.lt';var scriptPath='';var adtest='off';var useFallbackTerms=false;</script><script type="text/javascript" language="JavaScript">if (top.location!=location){top.location.href=location.protocol + "//" + location.host + location.pathname + (location.search ? location.search + "&" : "?") + "_xafvr=NGI0ODc1OTZjMmI4YzZiYWYyNzRlYTE3YmJlYWMzYmU1ZmQ0ZDNjYyw1ZDlkOTFmMDI3MWQ4";}</script><script>if (!window.JSON) { document.write("<script src='//d1lxhc4jvstzrp.cloudfront.net/scripts/json3.min.js' type='text/javascript' language='JavaScript'><\/scr"+"ipt>"); }</script>
<script src='//d1lxhc4jvstzrp.cloudfront.net/scripts/js3caf.js' type='text/javascript' language='JavaScript'></script>
<script type='text/javascript' language='JavaScript'>x(pageOptions,{resultsPageBaseUrl: 'http://ww38.rimdetas.lt/?ts=fENsZWFuUGVwcGVybWludEJsYW5rMDN8fGIxNTc0fGJ1Y2tldDEwM3x8fHwwfHw1ZDlkOTFmMDI1YjQ2fHx8MTU3MDYwNzYwMC4xNjMyfGM2NDgxMTNjODEyYzFhZGU2OTNlMjY0NmNiNTY3MGNiMzQ2MjZmZDV8fHx8fDF8fHwwfDVkOWQ5MWYwOTAwYjllMmIxYjhiNGFiOHx8fDF8fHx8fDB8MHx8fHx8fHwxfHx8MHwxfDVkOWQ5MWYwOTAwYjllMmIxYjhiNGFiOHwwfDB8MXwwfDB8ZXlKemRIbHNaVWxrSWpvaU1UTTBPVEl5TXpJd01TSjl8fDE%3D', hl: 'en', kw: '', terms: '', uiOptimize: true,  channel: 'bucket103', pubId: 'dp-teaminternet09_3ph', adtest: 'off', personalizedAds: false, clicktrackUrl: 'https://parking-crew.com/track.' + 'php?click=caf' + '&domain=rimdetas.lt&rxid=0&uid=MTU3MDYwNzYwMC4xNTY3OmI1MjU5ZmE5NThkNDA2MWM3MWJiYzQ5ZTNjZDg5ZDJkNGVlZTg5NDJiMjY0N2M1Mzc1NWRmY2UwYmIzNTRkOTQ6NWQ5ZDkxZjAyNjQzMg%3D%3D&ts=fENsZWFuUGVwcGVybWludEJsYW5rMDN8fGIxNTc0fGJ1Y2tldDEwM3x8fHwwfHw1ZDlkOTFmMDI1YjQ2fHx8MTU3MDYwNzYwMC4xNjMyfGM2NDgxMTNjODEyYzFhZGU2OTNlMjY0NmNiNTY3MGNiMzQ2MjZmZDV8fHx8fDF8fHwwfDVkOWQ5MWYwOTAwYjllMmIxYjhiNGFiOHx8fDF8fHx8fDB8MHx8fHx8fHwxfHx8MHwxfDVkOWQ5MWYwOTAwYjllMmIxYjhiNGFiOHwwfDB8MXwwfDB8ZXlKemRIbHNaVWxrSWpvaU1UTTBPVEl5TXpJd01TSjl8fDE%3D&adtest=off'});</script><script type='text/javascript' language='JavaScript'>x(pageOptions,{"styleId":1349223201});</script><script type='text/javascript' language='JavaScript'>x(pageOptions,{domainRegistrant:'as-drid-2657853924491968'});</script><script type="text/javascript">function loadFeed(){
    if(typeof formerCalledArguments !== 'undefined' && false === formerCalledArguments){
        formerCalledArguments = arguments;
    var query = arguments;
    if(typeof formerCalledArguments === 'object'){
        query = formerCalledArguments;
    return google.ads.domains.Caf.apply(this, query);
}</script><script type="text/javascript" language="JavaScript">function relatedCallback(options){return false;} function relatedFallback(callback){return callback();}</script><script type='text/javascript' language='JavaScript'>if(typeof x == 'undefined' || typeof pageOptions == 'undefined') { var links = document.head.getElementsByTagName('link'); for(var i = 0; i < links.length; i++) { links[i].href = links[i].href.replace('//d1lxhc4jvstzrp.cloudfront.net', 'http://parkingcrew.net/assets'); } document.body.style.visibility = 'visible'; document.getElementById('searchHolder').style.visibility = 'hidden'; }</script>
<script type="text/javascript" language="JavaScript">x(pageOptions);new loadFeed(pageOptions, tcblock, searchboxBlock);</script>
</body>
</html>