| award-soft.com/download/klprosetup.zip |  23.82.12.35 | 302 Found | 11 B |
URL award-soft.com/download/klprosetup.zip IP23.82.12.35:0 ASN#30633 LEASEWEB-USA-WDC
File typeASCII text, with no line terminators Hash32682312d17c7cbf18e73594f5570319 60e22121bdd0bc71cdb2bae2a3aa577006b2eae9 e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /download/klprosetup.zip HTTP/1.1
Host: award-soft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Thu, 13 Feb 2025 07:34:43 GMT
location: http://winfr-wtc.com/zclkvisitor/fdd7f400-e9dc-11ef-946d-12529875e547/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=1f221ad0-16c2-11ef-994a-12832fc4c381
server: nginx
set-cookie: sid=fdd5849f-e9dc-11ef-9539-faef42fd8e84; path=/; domain=.award-soft.com; expires=Tue, 03 Mar 2093 10:48:51 GMT; max-age=2147483647; HttpOnly
|
|
| winfr-wtc.com/zclkvisitor/fdd7f400-e9dc-11ef-946d-12529875e547/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=1f221ad0-16c2-11ef-994a-12832fc4c381 | 52.71.131.42 | 200 | 3.1 kB |
URL winfr-wtc.com/zclkvisitor/fdd7f400-e9dc-11ef-946d-12529875e547/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=1f221ad0-16c2-11ef-994a-12832fc4c381 IP52.71.131.42:0
File typeHTML document, ASCII text, with very long lines (408) Hash7703ff33f2c45a4f8b3c24b79f5dfd2a 5d4d9f688f73faa89f8bd16ddfabe45b73faa0ae e7b5ecd8d9a5f9fed718fca875ad8ce01156cd23ad6dfe6b2c93a55920c128af
GET /zclkvisitor/fdd7f400-e9dc-11ef-946d-12529875e547/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=1f221ad0-16c2-11ef-994a-12832fc4c381 HTTP/1.1
Host: winfr-wtc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Date: Thu, 13 Feb 2025 07:34:44 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 3086
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type
|
|
| winfr-wtc.com/zclkredirect?visitid=fdd7f400-e9dc-11ef-946d-12529875e547&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC | 54.209.19.241 | 302 | 0 B |
URL User Request GET HTTP/1.1winfr-wtc.com/zclkredirect?visitid=fdd7f400-e9dc-11ef-946d-12529875e547&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC IP54.209.19.241:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zclkredirect?visitid=fdd7f400-e9dc-11ef-946d-12529875e547&type=js&browserWidth=1280&browserHeight=1024&iframeDetected=false&webdriverDetected=false&gpu=undefined&timezone=UTC%2B00%3A00&timezoneName=UTC HTTP/1.1
Host: winfr-wtc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://winfr-wtc.com/zclkvisitor/fdd7f400-e9dc-11ef-946d-12529875e547/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=1f221ad0-16c2-11ef-994a-12832fc4c381
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302
Date: Thu, 13 Feb 2025 07:34:45 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type
Location: https://geotrkclknow.com/rot/CoXC1ug9UP3UrzbI?extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard
|
|
| cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard |  188.114.97.1 | 404 Not Found | 979 B |
URL User Request GET HTTP/2cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard IP188.114.97.1:443
CertificateIssuerGoogle Trust Services Subjectcpvmnwdw.com Fingerprint58:F3:0B:E1:26:64:54:37:A6:CB:D3:3E:4E:66:B6:C7:A7:53:59:20 ValidityThu, 19 Dec 2024 05:00:46 GMT - Wed, 19 Mar 2025 05:59:18 GMT
File typeHTML document, ASCII text Hash47172e62787300b279ae2e1d21763c81 8bc8206ab37105da07312f4d39d8e57cc9763e00 258682bcb3d7d927aaf47bfe1c01788db1f0cda4bf2240001e5e7408a6f559ae
GET /click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard HTTP/1.1
Host: cpvmnwdw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://winfr-wtc.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 13 Feb 2025 07:34:45 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=piT%2BRlh%2BKtUrAgMmrf9u3lJJzJ16eDOxmzi76NmtFY1CNfVLC4wYfne6DUivzfzFnUp6lv5NmiP4wO6w8eSq8Kqh2o2LYpCw6eqDu%2FOx6ECJtQ40WAqDIuqqS4onKmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 911323453b7c1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6452&min_rtt=394&rtt_var=12073&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3200&recv_bytes=1264&delivery_rate=7438356&cwnd=254&unsent_bytes=0&cid=79fcc89afa6816f3&ts=112&x=0"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTQ3jw.woff2 | 142.250.74.35 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTQ3jw.woff2 IP142.250.74.35:443
Requested byhttps://cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint62:57:FE:D4:36:DB:03:15:19:B1:2C:50:42:64:6E:D7:C2:32:4F:B6 ValidityMon, 20 Jan 2025 08:37:07 GMT - Mon, 14 Apr 2025 08:37:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16292, version 1.0 Hashce485a2bdee361bb271bd6d3ce1ee5cd 4f9a446275d160cccd6666addee65f849c9c5a50 923963e0a56b84c4438f2359121e855e147a01a78a2591c471179cfc9bf0e784
GET /s/nunito/v26/XRXI3I6Li01BKofiOc5wtlZ2di8HDLshdTQ3jw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cpvmnwdw.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Feb 2025 22:49:08 GMT
expires: Sun, 08 Feb 2026 22:49:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:41:55 GMT
content-type: font/woff2
age: 377137
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Nunito | 142.250.74.138 | 200 OK | 1.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Nunito IP142.250.74.138:443
Requested byhttps://cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard CertificateIssuerGoogle Trust Services Subjectupload.video.google.com Fingerprint91:3E:F9:90:4B:40:4C:8E:D9:11:EA:64:14:86:3D:AD:DB:41:93:5C ValidityMon, 20 Jan 2025 08:37:08 GMT - Mon, 14 Apr 2025 08:37:07 GMT
File typeASCII text, with very long lines (1837), with no line terminators Hashd119e652b2412c8eef0104de4bcf431a f95729fa520ef8cc80574d7e6bea22449ff8e0fb 5e7e376aaacad8960cfbf1c2324e5dd4034a63fe31c35b67be71d70aef53de2f
GET /css?family=Nunito HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cpvmnwdw.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 13 Feb 2025 07:34:45 GMT
date: Thu, 13 Feb 2025 07:34:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cpvmnwdw.com/favicon.ico | 188.114.97.1 | 404 Not Found | 1.6 kB |
IP188.114.97.1:443
Requested byhttps://cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard CertificateIssuerGoogle Trust Services Subjectcpvmnwdw.com Fingerprint58:F3:0B:E1:26:64:54:37:A6:CB:D3:3E:4E:66:B6:C7:A7:53:59:20 ValidityThu, 19 Dec 2024 05:00:46 GMT - Wed, 19 Mar 2025 05:59:18 GMT
File typeHTML document, ASCII text, with very long lines (1636), with no line terminators Hash8e2567cdeb86d5d652eb4329d59a4f20 d24c7feb4f7b2e903cc8e57f038d6bb9c0d57e8c 5b4e37a95c238f3c57763b23161bfac0d2637360e2a635d52185812762266657
GET /favicon.ico HTTP/1.1
Host: cpvmnwdw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 13 Feb 2025 07:34:45 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: BYPASS
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=905PJcD1YyhdiT1PzTx2IqHKruvJso%2B3z%2FxXzoUe6mVab4okZ3G0ieTCDxum%2FTM3JmAZGRvFHwD%2Bd%2Fp%2B%2Fxq0A67DHfnX4KC%2BGuYnQsVCA4uao7fejkm%2BeUX6uh3bAFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 911323485e8e7128-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3364&min_rtt=1650&rtt_var=1842&sent=12&recv=6&lost=0&retrans=0&sent_bytes=4063&recv_bytes=1214&delivery_rate=356885&cwnd=12000&unsent_bytes=0&cid=3d140e303dec11db&ts=494&x=1", cfExtPri, cfHdrFlush;dur=0
|
|
| geotrkclknow.com/rot/CoXC1ug9UP3UrzbI?extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard | 172.67.161.46 | 302 Found | 1.6 kB |
URL User Request GET HTTP/2geotrkclknow.com/rot/CoXC1ug9UP3UrzbI?extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard IP172.67.161.46:443
CertificateIssuerGoogle Trust Services Subjectgeotrkclknow.com Fingerprint8B:57:A9:4F:82:9A:C2:78:B9:04:1C:8C:0F:CC:22:4F:C2:53:C6:74 ValidityTue, 11 Feb 2025 07:33:44 GMT - Mon, 12 May 2025 08:32:02 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rot/CoXC1ug9UP3UrzbI?extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard HTTP/1.1
Host: geotrkclknow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://winfr-wtc.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 13 Feb 2025 07:34:45 GMT
content-type: text/html; charset=utf-8
location: https://cpvmnwdw.com/click?trvid=43242&extid=zrfdd7f400e9dc11ef946d12529875e547e9884629202544cf88aa1d4bd0bc70ba0887118f37777fce0c&cost=0.005000&targid=oscar-awa-1lmynwmn60&sczp=badious-buzzard
server: cloudflare
cache-control: no-cache, private
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
cf-ray: 911323440dc41c06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
81.171.28.43