track.uptruckthat.com/redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D
18.192.249.87 379 B URL track.uptruckthat.com/redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D
IP 18.192.249.87:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (379), with no line terminators
Hash 737541e06d38423b9beca2a33b306da6
434691e7c9edec6d6805157e6f8550ec2609ba41
140056a2df1e16026c09cf7fb62f44de82caa93942da397dfd00f1ad46d45416
GET /redirect?target=BASE64aHR0cHM6Ly93d3cuYTJjY2VjbXRyay5jb20vOFBIOUxUTC82TEZRNUhIUS8_c291cmNlX2lkPWQzZmE1NDVhLWE5MDMtNGIyYS1iM2IzLTM3YzA0ZDI4ZmU4MSZzdWIzPXc5Z20yNjJ2OGhwYzlmMnBpMmk2Y2Q5Zw&ts=1685373457159&hash=9dXtnNQ-JVIcolhBx80uuCvoZaflbGqDWPAfyYVdgoU&rm=D HTTP/1.1
Host: track.uptruckthat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 29 May 2023 15:17:49 GMT
content-type: text/html;charset=UTF-8
content-length: 379
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2
www.a2ccecmtrk.com/8PH9LTL/6LFQ5HHQ/?source_id=d3fa545a-a903-4b2a-b3b3-37c04d28fe81&sub3=w9gm262v8hpc9f2pi2i6cd9g
35.241.26.240302 Found 153 B URL User Request GET HTTP/2 www.a2ccecmtrk.com/8PH9LTL/6LFQ5HHQ/?source_id=d3fa545a-a903-4b2a-b3b3-37c04d28fe81&sub3=w9gm262v8hpc9f2pi2i6cd9g
IP 35.241.26.240:443
Certificate IssuerSectigo Limited
Subjectwww.alphaatrk.com
Fingerprint67:33:9B:E6:FD:9D:20:CD:F1:7F:AE:CC:96:E1:99:47:77:7F:30:F1
ValidityThu, 23 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT
File type HTML document, ASCII text
Hash 3c3ad7832293cf9da522318a6c6229c7
61222bf3fcfd7ef7961c85abc3d0f8c0b5a1a174
a7cf9febc592569d36135a70565a5f08a1d7bc6f3e16821ebcc44affc536e6b2
GET /8PH9LTL/6LFQ5HHQ/?source_id=d3fa545a-a903-4b2a-b3b3-37c04d28fe81&sub3=w9gm262v8hpc9f2pi2i6cd9g HTTP/1.1
Host: www.a2ccecmtrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Mon, 29 May 2023 15:17:50 GMT
content-type: text/html; charset=utf-8
content-length: 153
accept-ch: Sec-Ch-Ua-Platform-Version
location: https://link.trkhs.com/CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81
set-cookie: uniqueClick_6LFQ5HHQ=beda3f2c-6ca3-41c5-ab08-6340fafa8d21:1685373470; Path=/; Expires=Mon, 29 May 2023 20:17:50 GMT; Secure; SameSite=None
transaction_id=e3ae038f86b648fb8479057bb406c5e1; Path=/; Expires=Sun, 27 Aug 2023 15:17:50 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 948fdf50-1e0a-4397-80a5-6dba4af8b3c8
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
link.trkhs.com/CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81
52.169.78.163302 Found 0 B URL User Request GET HTTP/1.1 link.trkhs.com/CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81
IP 52.169.78.163:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert, Inc.
Subjectlink.trkhs.com
FingerprintF5:A7:3B:93:17:1B:7B:6F:C6:F7:17:07:6D:69:A3:8A:DC:51:20:E1
ValidityWed, 05 Apr 2023 00:00:00 GMT - Thu, 05 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /CD50F/TU9UQ?externalid=e3ae038f86b648fb8479057bb406c5e1&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81 HTTP/1.1
Host: link.trkhs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Content-Length: 0
Date: Mon, 29 May 2023 15:17:50 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Request-Context
Cache-Control: no-cache, no-store, must-revalidate
Expires: -1
Location: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Pragma: no-cache
Set-Cookie: V_D50F=638209702702627807|||||; domain=link.trkhs.com; expires=Sat, 29-May-2123 15:17:50 GMT; path=/; secure; SameSite=None
MREvt=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819; domain=link.trkhs.com; expires=Sat, 29-May-2123 15:17:50 GMT; path=/; secure; SameSite=None
MRPEvt=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819; domain=link.trkhs.com; expires=Sat, 29-May-2123 15:17:50 GMT; path=/; secure; SameSite=None
TRFK_EventId: NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819
X-AspNet-Version: 4.0.30319
Request-Context: appId=cid-v1:dfa34523-a7bd-4de5-a276-fe480e1ef8cd
X-Powered-By: ASP.NET
offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
20.49.104.48200 OK 23 kB URL User Request GET HTTP/1.1 offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (749), with CRLF, LF line terminators
Hash 5345ba3cf3feb7895b3e31052363d573
f90f6deffea98cd6142b778081ad8275832bbc28
704fa1bb385bf2992bb69ac1c9534e815510b4558775ee5d063362a49ca73578
GET /QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 23409
Content-Type: text/html; charset=utf-8
Date: Mon, 29 May 2023 15:17:52 GMT
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; path=/; secure; SameSite=None
PSESS=Id=202305291517510352154703577&LA=133298470710352888; expires=Wed, 29-May-3022 15:17:51 GMT; path=/; secure
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
cdnjs.cloudflare.com/ajax/libs/es6-shim/0.33.3/es6-shim.min.js
104.17.25.14200 OK 12 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/es6-shim/0.33.3/es6-shim.min.js
IP 104.17.25.14:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (32019)
Hash 94a9dd5eef0ae582b868627606ac4a7b
e4a502aee212d308c78f73578363ba0f85b320a6
a6fd7482cb9f3aed074fbdb7d22c3ea1d8601f694f72cef50c9ed08475654a5c
GET /ajax/libs/es6-shim/0.33.3/es6-shim.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 29 May 2023 15:17:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 12540
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e54-bd42"
last-modified: Mon, 04 May 2020 16:09:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 10604039
expires: Sat, 18 May 2024 15:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dve8WcqldS%2FcudIQS%2FadDzul%2F9Sha0Lkdi5XlsVsNkTHXKRcS4J0d30yaQxZ%2BIA7AYRAL1qL07QwGzRYvEWzGmCK8x3Nb1xL%2FON0tN1X1KRSlWKewhPp9yNpp4XT9fGc1Uo7qiwd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cefb4eacea00b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/systemjs/0.19.20/system-polyfills.js
104.17.25.14200 OK 4.0 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/systemjs/0.19.20/system-polyfills.js
IP 104.17.25.14:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (13857)
Hash 20a9e2c110012afe9eeaa40908898e48
064ab212cfd9e125474ae3bbb600c366b31e79cb
950c228a7493000da1dda78f709bb67dc6ab13f27333099e513aba1f63a346db
GET /ajax/libs/systemjs/0.19.20/system-polyfills.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 29 May 2023 15:17:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 4019
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ff8-3697"
last-modified: Mon, 04 May 2020 16:16:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 16834699
expires: Sat, 18 May 2024 15:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=okySez6%2Bdbllm2l6RyUCDqF9dEShyIXFNTs%2FgttFuklRCfFtyGN6GwVkqpP1CXKCmSW2p9yyItbq8n5OodWmzyR%2Ba5g%2BgbVdzOhe2%2Fp3IfQPRoqYo7MyVVQzEnr2gVkk%2FKRxWT1u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cefb4eadeae0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js
151.101.65.229200 OK 24 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js
IP 151.101.65.229:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (65299)
Hash 7ccd9d390d31af98110f74f842ea9b32
a85e681624c91a106a514c31eacf80de817b2cc3
f5210fa3e7f0245a4c51eb7f280092c0ef99fdd28c45e17dab8cc5854fdf4fd3
GET /npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"13131-qF5oFiTJGhBqUUwx6s+A3oF7LMM"
content-encoding: br
accept-ranges: bytes
date: Mon, 29 May 2023 15:17:52 GMT
age: 6488288
x-served-by: cache-fra-eddf8230075-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24376
X-Firefox-Spdy: h2
offer.primedrawclub.com/views/products/lib/v7-lite/style/bootstrap_5.min.css
20.49.104.48200 OK 36 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/style/bootstrap_5.min.css
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65307)
Hash e1aebbfb4234e7cc3b044060a6ddd07b
349f22998a94f211cd142cd46427c18ee592b04b
34642785562ffe09f193a2ec34ff70e1af0abf170d601208368108fe526292ef
GET /views/products/lib/v7-lite/style/bootstrap_5.min.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 35902
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D97858602A9980"
Expires: Tue, 30 May 2023 14:36:07 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:35 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/style/forms_v4.css
20.49.104.48200 OK 942 B URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/style/forms_v4.css
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type assembler source, ASCII text, with CRLF line terminators
Hash 8c2557e245c6e7e27f3a03af856053c5
1d138bf04135817fa38eb7810001cd3782af457d
3e6cb82ea40cc1afe230641b3e679740420ecd424395684aa4c1b9491cc471f5
GET /views/products/lib/v7-lite/style/forms_v4.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 942
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D97858615BC680"
Expires: Tue, 30 May 2023 14:36:07 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:37 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/style/animate.min.css
20.49.104.48200 OK 6.8 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/style/animate.min.css
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (57790), with CRLF line terminators
Hash 83156cbc61728bc80174ac1eb26f1a34
da0d19a8e4fbe5de92d8385074b91d32c223921e
220b12c5dcb405684b22aa4a7ab6ff7eaa5d6c3c91814f0c69d281d5b3755d69
GET /views/products/lib/v7-lite/style/animate.min.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 6818
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978585E60D600"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:32 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/Products/7711/assets/css/custom.css
20.49.104.48200 OK 2.5 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/assets/css/custom.css
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 978b5925fe78e7c44fb91cbe7a5c59dd
fcb173d0ba818111167849e3220aecd9c45ddab4
7fcd869e2928d9a9de509530ab13874f6aa305fc3cf0e695df637f7874091ceb
GET /views/Products/7711/assets/css/custom.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 2540
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D97DB1687F5900"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:21:30 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/style/main.css
20.49.104.48200 OK 0 B URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/style/main.css
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /views/products/lib/v7-lite/style/main.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97858615BC680"
Expires: Tue, 30 May 2023 14:36:07 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:37 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/Products/7711/assets/css/style.css
20.49.104.48200 OK 0 B URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/assets/css/style.css
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /views/Products/7711/assets/css/style.css HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/css
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB167E6C280"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:21:29 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.9.1/font/bootstrap-icons.min.css
104.17.25.14200 OK 9.1 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/bootstrap-icons/1.9.1/font/bootstrap-icons.min.css
IP 104.17.25.14:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 09ba7a74dd8a7bc39210ce7092fd1946
bab2719a48ec441630df2c8ff8db1ade6fc91f03
ab473681c33f3651348191decd30c331e854797b26745f60bf867fec058c4f53
GET /ajax/libs/bootstrap-icons/1.9.1/font/bootstrap-icons.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 29 May 2023 15:17:52 GMT
content-type: text/css; charset=utf-8
content-length: 9146
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62d371f8-23ba"
last-modified: Sun, 17 Jul 2022 02:20:40 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 24693176
expires: Sat, 18 May 2024 15:17:52 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DzN6xqhnPDmkUd%2F%2BFtORX6%2BhXTf9%2FNQziirxdZy%2BkfsACOpRM7N5TBptKyalxEwQa3kVYUzzlfqD0ecA8gD6A3kqVgHQ3vrr%2B42nI9ox3hvlfGu9%2B7F5bLePCN%2B1HLtwJJ%2FB1sUx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cefb4edff2fb512-OSL
alt-svc: h3=":443"; ma=86400
offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js
20.49.104.48200 OK 988 B URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-cookies.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (555), with CRLF line terminators
Hash 6a2ff4296c3606d463af1dbfcb8eec3d
8d35ef2d836ad8bc598de20350c9b2f812b3f64d
a3625e996727e005e693f1ba21461b33ff9f829db898c603839da7ce4529b29a
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/angular-cookies.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 988
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978584E48F680"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:05 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js
20.49.104.48200 OK 4.2 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular-sanitize.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (1257), with CRLF line terminators
Hash 08f2e1c39a2b72d0fc6a100950d6393c
8914ca977251e64f3f7b159984b9495e69fe18c7
4bc6f69806d6897c2264cb9cd97ed74cf9c50657b8c14ad7dc785bfbb18068cc
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/angular-sanitize.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 4171
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978584EE18D00"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:06 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js
20.49.104.48200 OK 8.5 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.validate.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (21445), with CRLF line terminators
Hash cd42a643283a57205e70a8ed43038c55
e27a56d8cf81304f4b40b24de90052c67bbccf37
df3cd737c392d248e8e3ebb8912e1cc65d6e342d6a2ee7ee4a6c114c141f1749
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/jquery.validate.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 8492
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785853A64100"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:14 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js
20.49.104.48200 OK 78 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/angular.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (672), with CRLF line terminators
Hash 378cd06007cfc003445150131b4745cb
eaa44aa0db490b9f2371d39026ca9dd2ec3541aa
4fb8b923f26b0241c0189dc25ed27c0b06641d89b29dd37866f79fbd9d3b6834
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/angular.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978585012BA00"
Expires: Tue, 30 May 2023 15:17:52 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:08 GMT
Transfer-Encoding: chunked
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js
20.49.104.48200 OK 45 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/ui-router.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (64987), with CRLF line terminators
Hash 3bea08be6acbac6fc4529c0822a2f3f6
a020a847c2da64263b209b05089330fe64052d1d
108003ecf366061ea88c77eb4d571c9baa541968504e87e94d5a6335c691f78a
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/ui-router.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 44943
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785856089B00"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:18 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js
20.49.104.48200 OK 40 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery-3.6.0.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 7c14a783dfeb3d238ccd3edd840d82ee
ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b
80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/jquery-3.6.0.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 39756
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:52 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785852751400"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:12 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js
20.49.104.48200 OK 7.9 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/cleave.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (20970)
Hash 9d800c462d0440e0e0791df6bdb2745f
c93af0d1b19051513bc6751936c5c015b59f9980
7eb194c2648de022cb8f29399b9f4409d5ec0cc5314d6e4eea175c78d1d5089a
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/cleave.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7939
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785851DC7D80"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:11 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js
20.49.104.48200 OK 18 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/card.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (51786)
Hash 30e93a747ba8285615cfbc3643dc1a62
3a55f9d6ac708f519d351ea0b69083457778ec9d
18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/card.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 17865
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D978585143E700"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:10 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js
20.49.104.48200 OK 8.6 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/anime.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (17638)
Hash 572d66e85091711b6ee76609573a8364
332031949d78a49e8a18611556253660574e47db
5cbda29ea5096ac9404c59c77493a2f467d0eb4a27f16c750b61fc0d888dd716
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/anime.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 8633
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785850AB5080"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:09 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js
20.49.104.48200 OK 5.0 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/products/lib/v7-lite/packages/jquery.payment.min.js
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (388), with CRLF line terminators
Hash e9ed3ffbf7ac1a11ff859c9651e2d6c6
bae93c0eb1264b20d22dd8263f57070b61c25936
f52b083a7f56ae0cf2eea8c5c74e203e9dcd30a8167354d574fbbcc9c4d6780a
Analyzer Verdict Alert fortinet Phishing
GET /views/products/lib/v7-lite/packages/jquery.payment.min.js HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 5040
Content-Type: application/x-javascript
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
Content-Encoding: gzip
ETag: "1D9785852751400"
Expires: Tue, 30 May 2023 14:36:09 GMT
Last-Modified: Wed, 26 Apr 2023 16:01:12 GMT
Vary: Accept-Encoding
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
fonts.googleapis.com/css2?family=Source+Sans+Pro:wght@200;300;400;500;600;700;800&display=swap
142.250.74.106200 OK 14 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Source+Sans+Pro:wght@200;300;400;500;600;700;800&display=swap
IP 142.250.74.106:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type gzip compressed data, max compression\012- data
Hash e8fd2df40322cd09fbe276f110d05a85
18d036ef32b0046ad21e5ca53cfe9d15fc10e8d3
d27774fc2092c137e60e57f103ca9e69d00fb4e579e0b34fc04c857770caf714
GET /css2?family=Source+Sans+Pro:wght@200;300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 15:17:53 GMT
date: Mon, 29 May 2023 15:17:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
offer.primedrawclub.com/views/Products/7711/templates/core.html
20.49.104.48200 OK 192 B URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/templates/core.html
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 2eab0822b029ee2dbde4adc41d10a087
096227f22af2d41d03d7cc55d5d0e2e85eb18c59
ec57bdbef1d99370056c927948a494078a471057d394d0f5e4a12400a9de0cfb
Analyzer Verdict Alert fortinet Phishing
GET /views/Products/7711/templates/core.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 192
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "f8f14a80b17dd91:0"
Last-Modified: Wed, 03 May 2023 11:22:09 GMT
Vary: Accept-Encoding
offer.primedrawclub.com/views/Products/7711/templates/footer.html
20.49.104.48200 OK 0 B URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/templates/footer.html
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /views/Products/7711/templates/footer.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
ETag: "815ea80b17dd91:0"
Last-Modified: Wed, 03 May 2023 11:22:10 GMT
offer.primedrawclub.com/views/Products/7711/favicon.png
20.49.104.48200 OK 6.3 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/favicon.png
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 782ebb1d244e1bcc83357a5bce408d74
33335f5ca7577b935077362217bf73a6b45a007f
2a912fc64918bc6a350edf455500b10f528969de4994f0c50f7a3af32152d93d
GET /views/Products/7711/favicon.png HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 6290
Content-Type: image/png
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB182B93700"
Expires: Tue, 30 May 2023 00:57:54 GMT
Last-Modified: Wed, 03 May 2023 11:22:14 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/Products/7711/views/homepage.html
20.49.104.48200 OK 17 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/views/homepage.html
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash efe874d1592d6474957611b544879460
e7d3659b5363eeefe94942b535ca2e551c9f9bfb
b3799828eb48b928a3ec0de1c416614b8564b18d21e411bf4e5f4a5132edf4a1
Analyzer Verdict Alert fortinet Phishing
GET /views/Products/7711/views/homepage.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 16799
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "8079c1bab37dd91:0"
Last-Modified: Wed, 03 May 2023 11:38:07 GMT
Vary: Accept-Encoding
offer.primedrawclub.com/views/Products/7711/templates/header.html
20.49.104.48200 OK 0 B URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/templates/header.html
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /views/Products/7711/templates/header.html HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 0
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
ETag: "144f9381b17dd91:0"
Last-Modified: Wed, 03 May 2023 11:22:12 GMT
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:36 GMT
expires: Thu, 23 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 486077
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.227200 OK 13 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.227:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 03:13:14 GMT
expires: Sun, 26 May 2024 03:13:14 GMT
cache-control: public, max-age=31536000
age: 216279
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dus-flag.png
20.49.104.48404 Not Found 103 B URL GET HTTP/1.1 offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dus-flag.png
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 96c5637e1eb8f8f8c34172f2d23eafc6
2a416f86c3c9e26f9c34bf1f8b1bb5daa46e86f9
90b2d35cd5e08370ed20db81197dd9da1a4dbb421f71293fd5733ea49eb7b3e1
GET /%7B%7B$root.imagePath%7D%7Dus-flag.png HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Length: 103
Content-Type: text/html
Date: Mon, 29 May 2023 15:17:53 GMT
offer.primedrawclub.com/views/Products/7711/assets/img/icon-cart.jpg
20.49.104.48200 OK 1.2 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/assets/img/icon-cart.jpg
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 100x100, components 3\012- data
Hash 50c1e3b00e078e14ddd887fb84e0cb9d
3a0f73889ce874f24dd328de53334e750b2dbe83
032291ce14b39569f2d7101c63ea52377108f20a17b2c70cfd19f6f063a1ec3c
GET /views/Products/7711/assets/img/icon-cart.jpg HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1164
Content-Type: image/jpeg
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB17DF48300"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:22:06 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/views/Products/7711/assets/img/us-flag.png
20.49.104.48200 OK 3.7 kB URL GET HTTP/1.1 offer.primedrawclub.com/views/Products/7711/assets/img/us-flag.png
IP 20.49.104.48:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 701600eb4265f103084cf58cee663e89
cae157eb6a22ae0692404661b2f554e663f414d4
2d1bef872851eff0b8f19d536103cf0b6431534ac1cbaebe1f9138f12eac7f8a
GET /views/Products/7711/assets/img/us-flag.png HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3707
Content-Type: image/png
Date: Mon, 29 May 2023 15:17:53 GMT
Accept-Ranges: bytes
Cache-Control: public
ETag: "1D97DB17D5BEC80"
Expires: Tue, 30 May 2023 14:36:08 GMT
Last-Modified: Wed, 03 May 2023 11:22:05 GMT
Request-Context: appId=cid-v1:f002ddb3-a3e3-4720-a65a-61ea99054135
offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dicon-cart.jpg
0.0.0.0 0 B URL GET offer.primedrawclub.com/%7B%7B$root.imagePath%7D%7Dicon-cart.jpg
IP 0.0.0.0:0
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerDigiCert, Inc.
Subjectoffer.primedrawclub.com
FingerprintCB:FE:72:4B:CA:AD:BD:FE:D5:89:FF:46:13:64:EB:B6:FF:52:4F:26
ValidityTue, 24 Jan 2023 00:00:00 GMT - Mon, 24 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /%7B%7B$root.imagePath%7D%7Dicon-cart.jpg HTTP/1.1
Host: offer.primedrawclub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Cookie: SESS=Id=202305291517510352154703577&LA=133298470710352888; PSESS=Id=202305291517510352154703577&LA=133298470710352888
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL GET HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://offer.primedrawclub.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 May 2023 17:39:39 GMT
expires: Sun, 26 May 2024 17:39:39 GMT
cache-control: public, max-age=31536000
age: 164294
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
142.250.74.106200 OK 5.3 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
IP 142.250.74.106:443
Requested by https://offer.primedrawclub.com/QSU?cmpid=401648&aid=500167&subid=4769_d3fa545a-a903-4b2a-b3b3-37c04d28fe81&trfk_id=NEU_S01_01_ae3ff4c9-0560-4633-8e2e-536903159bae_20230529.8ea0176e-0132-4516-b7a6-4feae7570521_151750262_1206769819&sub7=&sub8=&name=&lastname=&street=&city=&zip=&state=&phone=&email=&jjxy=dds
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (5383), with no line terminators
Hash f986b4ef808cf5c5ab1bca1e7529f90b
4603da15fb526489041d94431721f12550da9e8e
13a5cb26f894a2f8381fd9c6dd4ff301206429cdbc4a1ef4002e80bec0e69d31
GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://offer.primedrawclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 29 May 2023 15:17:52 GMT
date: Mon, 29 May 2023 15:17:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2