Report - trk.emails.dailygopnews.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

Report Overview

Visited public
2023-09-24 03:09:09
Tags
URL
trk.emails.dailygopnews.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_DIzx3e9nZ5TDPxfEg
Finishing URL
secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260
IP / ASN
52.71.250.148
#14618 AMAZON-AES
Title
I'm livid!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
secure.winred.com	84060	2000-01-14	2019-06-24 22:14:16	2023-09-22 12:52:27	23 kB	1.0 MB	104.19.212.89
js.stripe.com	1149	1995-09-12	2012-09-30 14:39:23	2023-09-23 19:59:53	9.7 kB	1.2 MB	151.101.0.176
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-09-24 00:31:38	340 B	942 B	143.204.48.16
m.stripe.com	1092	1995-09-12	2017-01-30 13:42:51	2023-09-23 18:19:17	484 B	883 B	52.10.94.213
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-09-23 18:19:59	463 B	105 kB	104.16.56.101
d35ligi1n5bgzc.cloudfront.net	unknown	2008-04-25	2016-09-29 19:39:33	2023-09-22 20:47:59	2.5 kB	3.5 MB	54.230.111.45
m.stripe.network	1204	2017-03-16	2017-05-17 17:53:13	2023-09-23 19:46:24	1.5 kB	93 kB	151.101.0.176
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20 07:02:03	2023-09-23 19:04:01	2.7 kB	346 kB	104.17.3.184
cdn1.decide.dev	41584	2021-12-05	2022-11-21 00:45:21	2023-09-22 23:21:03	430 B	3.3 kB	151.139.128.10
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-09-23 23:33:42	526 B	578 B	142.250.74.163
gtm.winred.com	unknown	2000-01-14	2022-08-03 20:09:21	2023-09-22 20:48:01	5.3 kB	28 kB	104.16.250.69
app.revv.co	151563	2014-12-11	2015-08-16 04:53:31	2023-09-22 20:48:00	728 B	9.3 kB	104.19.211.89
r.stripe.com	5180	1995-09-12	2021-03-08 12:03:26	2023-09-23 23:29:45	5.0 kB	4.7 kB	54.187.119.242
trk.emails.dailygopnews.com	unknown	2022-04-13	2023-04-17 10:52:07	2023-09-23 13:08:41	998 B	554 B	54.156.128.221
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-23 18:12:07	2.0 kB	4.2 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-24 00:19:52	2.2 kB	792 kB	142.250.74.168
maps.googleapis.com	33876	2005-01-25	2019-10-17 17:56:16	2023-09-23 20:21:56	1.8 kB	175 kB	142.250.74.10
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-09-23 20:51:19	1.1 kB	448 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-09-24 03:08:44	high	54.37.238.86	Client IP	ET POLICY PE EXE or DLL Windows file download HTTP

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (62)

	URL	From	Size	First Seen	Last Seen
	secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	ScriptElement	347 B	2023-03-07	2024-08-21
Pretty URL secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.212.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:21 Last Seen2024-08-21 07:41 Times Seen10 Hash ea98103f9dd7591e7f4eadf58ef9a078 641a2bccba731414989606d10fbadef62a4c3a55 089a7803c9e7fce23d8862ed50f54cb014de49b449cf0736d15a020eeccb10f1 Loading...

	m.stripe.network/inner.html#url=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&title=I'm%20livid!&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&muid=NA&sid=NA&version=6&preview=false	ScriptElement	827 B	2023-06-30	2024-12-05
Pretty URL m.stripe.network/inner.html#url=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&title=I'm%20livid!&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&muid=NA&sid=NA&version=6&preview=false IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-30 16:45 Last Seen2024-12-05 22:09 Times Seen8084 Hash 1f54cecc3b769967137af0567a96ec3d bda8188907959253112d6639984e671ede889b41 0ea22f8a5f8ae43c169a5bf57522c356130b13eaab2629ff5712a9af29118a40 Loading...

	maps.googleapis.com/maps-api-v3/api/js/54/6/util.js	ScriptElement	158 kB	2023-09-19	2025-01-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/54/6/util.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-19 22:29 Last Seen2025-01-17 07:24 Times Seen626 Hash 57d5468d624452f1930763403b660b64 ab8abbf7cb9f0e71aa88b2c1c5ff7bc8fce1e573 5b7efd6d37de2602371b70c8017f9a533b66246b64bcab1317f6333b6ee6392d Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KBSKFC3	ScriptElement	557 kB	2023-09-24	2023-09-24
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KBSKFC3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash 1278171a0c2b7b40e20fbb32732668d7 530042bcead1cc1c1e9f3fe4b2e0a3e8eb65270e 76775d33723ddb1230e258e980a2eec8e29a480a13f3e535a74d67394645c99d Loading...

	js.stripe.com/v3/fingerprinted/js/controller-6911f86fec01b61d77aef174880786ec.js	ScriptElement	587 kB	2023-09-22	2024-08-21
Pretty URL js.stripe.com/v3/fingerprinted/js/controller-6911f86fec01b61d77aef174880786ec.js IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 09:59 Last Seen2024-08-21 06:06 Times Seen15 Hash f25de5bf18bdc52a370fda9b0d5ee732 2c61a7dc56636fe7cd49a3acf97176259ddce545 57cbe6b573d45adcf6ed7a6c9d5fe87651d4902f266cacaadad32552037eab89 Loading...

	cdn1.decide.dev/tracking/timscottforsenate_lander.js	ScriptElement	6.3 kB	2023-09-24	2024-10-28
Pretty URL cdn1.decide.dev/tracking/timscottforsenate_lander.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2024-10-28 00:13 Times Seen3 Hash be8bf59b1cb4718d4bc0e45b369c4695 abc0cb513ba94a8ce7e5ca473ea39ac8cf1067ac 0fb437afa24051d33f9981dab1366ce430cfdab696d9668ae3a966c12f08eade Loading...

	secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	ScriptElement	345 B	2023-03-10	2025-03-21
Pretty URL secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.212.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 11:42 Last Seen2025-03-21 05:35 Times Seen33 Hash cd4937bf71e5aa5ed460a7770d9ccd83 683925c3a8a85926e760063e51bb576dc5f9de87 dc8a524c69c1a90b64969efba7fb615f10ae9a67bad66e51cfecd729dfdac5bd Loading...

	js.stripe.com/v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js	ScriptElement	506 kB	2023-09-22	2023-09-25
Pretty URL js.stripe.com/v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 09:59 Last Seen2023-09-25 16:55 Times Seen15 Hash 4ee047fd9c07072ad4206430e08adc9b 48fbcce3d4a8624751489aea1c107671f20c8ce7 9fa101eb8187170c04e5b2b0c46c611a6aa029e8eb4ca816193ebd5bbc4567be Loading...

	secure.winred.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.3 kB	2023-09-24	2023-09-24
Pretty URL secure.winred.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.19.211.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash 21d06379115ccb905a34adf5fb3af730 a2f4a4febd47e100ed325efead6e58a9a2bd6267 e0ada1b901fc87fd7b400e52c91b75da05453298daffd4cc84068f2e09b9861c Loading...

	unknown	ScriptElement	247 B	2024-08-21	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:54 Last Seen2024-08-21 05:54 Times Seen1 Hash d1e426e73b46b41c5dde320c832a07fc e46945449329030a4619011b68d3d495195a2bd7 1a617a4297a0b998d8f482e90c4ba5840e6743837ed6edc73d6f3f6b4fae9b44 Loading...

	www.googletagmanager.com/gtag/js?id=G-LB6LPZ3Q3Z&l=dataLayer&cx=c	ScriptElement	255 kB	2023-09-24	2023-09-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-LB6LPZ3Q3Z&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash 5f70f85b66bf3e7a158a87412f632986 c0c16740bd9647a91d93d68350c97d9c53bed32f 3db6a4cb13d1b9fac2d4efcd843ae73b703b4e0070f3bf6bccc6ac986653e05a Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NTQZ9N	ScriptElement	419 kB	2023-09-24	2023-09-24
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NTQZ9N IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash e3206ded90fa65e0c9d4f9e9caed9624 7348737a1c3a1933f7eacd451f904a2ed63226ca 69d4b0d035be40b36a4d6a258d730cedc12fa1e5bd2946449658ace83afaa223 Loading...

	secure.winred.com/vote-tim-scott/sunny-and-sean/sandbox%20eval%20code		147 B	2023-04-11	2025-05-12
Pretty URL secure.winred.com/vote-tim-scott/sunny-and-sean/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-12 16:10 Times Seen342234 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	maps.googleapis.com/maps/api/js?key=AIzaSyDGBR6MmEzkdkem9Ci2VrraiYLneizw9Rg&libraries=places	ScriptElement	194 kB	2023-09-24	2023-09-24
Pretty URL maps.googleapis.com/maps/api/js?key=AIzaSyDGBR6MmEzkdkem9Ci2VrraiYLneizw9Rg&libraries=places IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash 6d62de4233343635c44ac27365a870ef e32a0e73313957072d540a2d3fdf1c6169caa15d 59ca20efb149ab1526cbfb35109498db31c718662263816e960c5830c1428def Loading...

	js.stripe.com/v3/fingerprinted/js/elements-inner-card-cdd742720b8be0f15f93969054c43ddd.js	ScriptElement	49 kB	2023-09-23	2023-10-01
Pretty URL js.stripe.com/v3/fingerprinted/js/elements-inner-card-cdd742720b8be0f15f93969054c43ddd.js IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 07:45 Last Seen2023-10-01 17:19 Times Seen8 Hash 93e76bde8326d768a44de6786a5a326e 7646d5d41ced9e67af53b5e7575adfb8c014f642 dd5e6ca8dd24585187320b0ebcb6291879e9a04831ffdabcf3e2a9e8113c96db Loading...

	m.stripe.network/out-4.5.43.js	ScriptElement	89 kB	2023-06-30	2025-01-28
Pretty URL m.stripe.network/out-4.5.43.js IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-30 16:45 Last Seen2025-01-28 16:47 Times Seen8249 Hash 69cb7809b5011312e716f29b3d19dce6 833dabfb546d57065aeba7190b5ee5a2428dfa47 e039e607c78306c7e029a7fd0ecdb14f86456f16e1a5ce65aa26b4fdf1d38a3c Loading...

	secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	ScriptElement	62 B	2023-03-07	2025-05-05
Pretty URL secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.212.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 22:21 Last Seen2025-05-05 18:25 Times Seen174 Hash a4268d9863e47b139253d2ceddb13092 dc021529c308a21d8e9ea248de2b1395ff526330 0a3a4a95d3438a765fed5d98fa0dfce58897106abbdfb3135b1c3e4d1733cef1 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-12
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-12 16:10 Times Seen341423 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	js.stripe.com/v3/fingerprinted/js/m-outer-6576085ca35ee42f2f484cda6763e4aa.js	ScriptElement	631 B	2023-09-09	2024-08-21
Pretty URL js.stripe.com/v3/fingerprinted/js/m-outer-6576085ca35ee42f2f484cda6763e4aa.js IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-09 04:27 Last Seen2024-08-21 07:15 Times Seen2630 Hash 70cacf09ae81711ac6dcbc5ee59750c4 117ab921aa9438662e7042c6f57cf4558baeb637 f0205495d259e89d99e6c4989147f8a65bef41513bfbe3e97251cd6fb6fa5947 Loading...

	static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854	ScriptElement	20 kB	2023-07-20	2025-05-12
Pretty URL static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-20 20:39 Last Seen2025-05-12 06:15 Times Seen7608 Hash efeb2542712dce8a2c51cf68396e4a05 ac9ce350c598644c7b7f6186aaf0368eb077d396 c235f21017bcc11fcaa31d7dfd9855aaebcbf5f6d7ee9bf9f2e98a910907c391 Loading...

	maps.googleapis.com/maps-api-v3/api/js/54/6/common.js	ScriptElement	259 kB	2023-09-19	2025-01-17
Pretty URL maps.googleapis.com/maps-api-v3/api/js/54/6/common.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-19 22:29 Last Seen2025-01-17 07:24 Times Seen623 Hash 707059b78086cab8dbb047492b4c7c1f 103ba7c8cdc55eb359aa12500c4f19d38e0d9c5b b29b1817692148eb026c359732d2cc65c21a259050825754cecc42bc2f388ae0 Loading...

	secure.winred.com/assets/application-landing-page-675d5d84505ed9e5cfffeffe9c90232667009091899f3fc6b5ea711630886307.js	ScriptElement	655 kB	2023-09-19	2023-10-01
Pretty URL secure.winred.com/assets/application-landing-page-675d5d84505ed9e5cfffeffe9c90232667009091899f3fc6b5ea711630886307.js IP 104.19.211.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-19 15:53 Last Seen2023-10-01 17:19 Times Seen5 Hash 3c643811645485c2119a0c22e19f80be addd4bea2d6f8dec50679580fcb12fd7c857e46c 35a5c5f5f1ac1efdac0c313a8a159ab0ccb3d3f593ae3e6fcf3534897f229d1b Loading...

	secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	ScriptElement	207 B	2023-03-07	2025-05-05
Pretty URL secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.212.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12 Last Seen2025-05-05 21:09 Times Seen353 Hash 00e39500ec5fac92ef320c4cf09d3df2 35e6f3f78ef0874239a272240576664da3e04bcb c8678a6f7015cd1724c161fc239bc0453e2ac988ed7ac4124d1721ed513aef3b Loading...

	www.googletagmanager.com/gtag/js?id=G-X6H0114PDF&l=dataLayer&cx=c	ScriptElement	261 kB	2023-09-24	2023-09-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-X6H0114PDF&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash 522c0c4f0d37ab436d60cf0ad6d340fa b96fd1b6900c7a5d56f4f702f2efb9bbe24d3ca8 cc1ca38e369196df6c3e404c53f4eff794d7340f6b5cee562f3f4c749db792ba Loading...

	js.stripe.com/v3/	ScriptElement	542 kB	2023-09-22	2023-09-25
Pretty URL js.stripe.com/v3/ IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-22 06:19 Last Seen2023-09-25 19:04 Times Seen96 Hash 2f43f864ab4d97d636908d4a345359f6 07ec5613f907ae530021ca3b2bb5cce2cb5ee7eb faa479f6ab9e6ce381d4dc92196b147f88b5247182d37ea4764182d0ca37f7f9 Loading...

	unknown	ScriptElement	422 B	2024-08-21	2024-10-28
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 05:54 Last Seen2024-10-28 00:13 Times Seen3 Hash c5f5cda1e59e90a92becdef6e18c11ba 9c90d6bbf72f0da47ffccee4ececeabcc43bc63a 2a3203ff1f005188448a76ca16c3756c927d987d50fb355d8925d0f58b03e1d8 Loading...

	secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	ScriptElement	1.1 kB	2024-08-21	2024-08-21
Pretty URL secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.212.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:54 Last Seen2024-08-21 05:54 Times Seen1 Hash f6910e3863e6b68deaf73661b856701c fa2a9e62fe5fd6763f589c2725be359d2b5b712b d7837d789977e0bbd711d2a4661b0dcbb81b563c0db183005eb8760e2a663aa5 Loading...

	www.googletagmanager.com/gtag/js?id=G-CM6HT6HPTV&l=dataLayer&cx=c	ScriptElement	243 kB	2023-09-24	2023-09-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-CM6HT6HPTV&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 05:09 Last Seen2023-09-24 05:09 Times Seen1 Hash 4948660dd997d298a25e53504e45d1df de81b5d386ce9395d9539b2938295e31bde5f2dc 9f7a95d0a5f28676353a7260a6dfb359f3839234c7f3d1569ec798ca09ac4f6e Loading...

	js.stripe.com/v3/fingerprinted/js/ui-shared-9dbddfcfc656c0282376647fda9915a7.js	ScriptElement	317 kB	2023-09-23	2023-09-24
Pretty URL js.stripe.com/v3/fingerprinted/js/ui-shared-9dbddfcfc656c0282376647fda9915a7.js IP 151.101.0.176 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-23 07:45 Last Seen2023-09-24 17:27 Times Seen6 Hash bcc5411dbab11bd7e108924986fa9838 70a78a392b011913896bd6b5b3b42c4fe40583f5 314eccb31ae54c82d0124be09e911c6b15e744335c6a1dbd9474dec5fc570794 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 1187e761732bc6b59d1bdf64b87a1c6a	189 B	2023-03-07 22:21	2025-05-09 18:21
Pretty Observations First Seen2023-03-07 22:21 Last Seen2025-05-09 18:21 Times Seen178 Hash 1187e761732bc6b59d1bdf64b87a1c6a 787693343277d13f37274412a55bc37cdab6b14c d91e700c6f704c0aa28941b1d929931bcd82b5e17fd29f0d5b10ffc6e63e8e74 Loading...

	#2 Eval - e8a1642d1a2f75749d33d2f54d0bc8d6	255 B	2023-03-07 01:40	2025-05-10 15:26
Pretty Observations First Seen2023-03-07 01:40 Last Seen2025-05-10 15:26 Times Seen1313 Hash e8a1642d1a2f75749d33d2f54d0bc8d6 15956e1f1304f4c31f694062601fbfc3dd1d93b2 b0ef31f31656d506b130d30b7ff52db8bfff0a39a113bb214d26a3f07643a83a Loading...

	#3 Eval - 0fabf04e5998e812833afd5460929601	289 B	2023-09-18 15:04	2025-01-28 22:30
Pretty Observations First Seen2023-09-18 15:04 Last Seen2025-01-28 22:30 Times Seen5 Hash 0fabf04e5998e812833afd5460929601 af6ff97ae489360ccd2486e3feeb51e961d57615 ce693a1b9d0a4902d9c2da2a5bf1f46ef9716019f6dbdfec29d5a22c8b08a508 Loading...

	#4 Eval - d9ed2b431428cc9ffcdb18c254a7c33a	285 B	2023-09-24 05:09	2025-05-05 18:25
Pretty Observations First Seen2023-09-24 05:09 Last Seen2025-05-05 18:25 Times Seen21 Hash d9ed2b431428cc9ffcdb18c254a7c33a 84bb059cbda1dcb7fa5771387943ecb5ccf4f75a 9fd45082203af9eb892466f395c71acdd29d523ed41d7bf2d8933f9d6187807d Loading...

	#5 Eval - 396650ed8cc13e05903d73abc6e1c308	289 B	2023-08-31 20:13	2024-10-31 20:42
Pretty Observations First Seen2023-08-31 20:13 Last Seen2024-10-31 20:42 Times Seen11 Hash 396650ed8cc13e05903d73abc6e1c308 716430906778b170a68872f288e7d3c276a506fa 0bc0649b972c4e13ef9ca8d648afa46c8d5168f5f237ad30248b540449d7be73 Loading...

	#6 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07 01:03	2025-05-12 16:12
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-12 16:12 Times Seen369303 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#7 Eval - 45e3bd6214a8f27e6caf06dd3978581a	285 B	2023-07-18 05:45	2025-01-25 19:26
Pretty Observations First Seen2023-07-18 05:45 Last Seen2025-01-25 19:26 Times Seen57 Hash 45e3bd6214a8f27e6caf06dd3978581a 2cb1a4156bbf4f4eb5b82b3330885c49e9cf3f6e 7094c9ae6f3ed8ce173719a6938e94438d7605505412ee0839d07eee32153dc3 Loading...

	#8 Eval - 20dcd58e770a470c827c840c5db95f23	43 B	2023-03-07 12:55	2025-05-12 15:35
Pretty Observations First Seen2023-03-07 12:55 Last Seen2025-05-12 15:35 Times Seen2712 Hash 20dcd58e770a470c827c840c5db95f23 e3c25cd4d1dcdc26fd6b5e670ca893cd06479c5d 79db7032ffc2ce206ab5a0a82b5bdb8e69fa36a77510276616ecd94d8dca6d53 Loading...

	#9 Eval - 864d9b06b2d5d2a138d4054326ad647a	285 B	2023-07-18 05:45	2025-01-25 19:26
Pretty Observations First Seen2023-07-18 05:45 Last Seen2025-01-25 19:26 Times Seen60 Hash 864d9b06b2d5d2a138d4054326ad647a a37c4d892bc4b1897dace50647c2ff3b52674767 5865a6d1e0389481561aac369069af385df4d9afb2222236e3697eab52343441 Loading...

	#10 Eval - 68b9ac389c911d7b8bc64d21381cc3d9	111 B	2023-03-09 02:49	2025-05-11 08:41
Pretty Observations First Seen2023-03-09 02:49 Last Seen2025-05-11 08:41 Times Seen1442 Hash 68b9ac389c911d7b8bc64d21381cc3d9 abe515f69910e94b155086eb7c8154e429da9f3e 5bff7cb785c5eafa67874879dc5188134635ddc54620cdb14b55ba49f8604a4c Loading...

	#11 Eval - 232fed096b55cfd2c852e98903b2a01a	113 B	2023-03-07 22:21	2025-05-09 18:21
Pretty Observations First Seen2023-03-07 22:21 Last Seen2025-05-09 18:21 Times Seen173 Hash 232fed096b55cfd2c852e98903b2a01a a0bc89bea1f37bf52feeb5b825a8307cd6276346 739d31cf3c5606b975dde8556942a95347287d9f692d091278e7baf7836b3533 Loading...

	#12 Eval - 0dc59c2d49e77b5fad351995be34d5ad	285 B	2023-08-31 20:13	2025-04-15 10:00
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-04-15 10:00 Times Seen20 Hash 0dc59c2d49e77b5fad351995be34d5ad 5ab29f818d2d81f6e02f031528a3715e432a7c5c f17d58c17baa3d962aa53d96b20e8029aa95f4937921841de1651d364622b5f8 Loading...

	#13 Eval - 62e25eae867bb2c422126d57971906fc	163 B	2023-09-22 02:33	2024-08-21 06:07
Pretty Observations First Seen2023-09-22 02:33 Last Seen2024-08-21 06:07 Times Seen7143 Hash 62e25eae867bb2c422126d57971906fc 81d0898bace510a76f96dfea087fbaa5e05235b8 6afa1f750904a72226860727e2f8dd4891abc6dac37bf07bdd60d7afbd207a4a Loading...

	#14 Eval - 64c729994e2ac4a1c8c99544037ab639	211 B	2023-06-13 16:03	2025-05-09 18:21
Pretty Observations First Seen2023-06-13 16:03 Last Seen2025-05-09 18:21 Times Seen181 Hash 64c729994e2ac4a1c8c99544037ab639 6b93d2615e44256373c84cc3560fa05fbe8158c1 82f12ecbccb2888fdd5c9714f9233efc0768f8bf3bc4d5115da3119c28844328 Loading...

	#15 Eval - d7b82cbfb3c8a2edef5414d1b4410da4	285 B	2023-08-31 20:13	2025-04-16 13:08
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-04-16 13:08 Times Seen67 Hash d7b82cbfb3c8a2edef5414d1b4410da4 00935fcf829245949467d4cfba1be17fe487da4d ca0ca7c070feec04a827846dadd9ed199a30fbc25dd3ee9eeb3b7579e46f3486 Loading...

	#16 Eval - 3ff6e3f5d0240addfed1d7cce2cf268f	289 B	2023-09-24 05:09	2025-02-22 19:34
Pretty Observations First Seen2023-09-24 05:09 Last Seen2025-02-22 19:34 Times Seen6 Hash 3ff6e3f5d0240addfed1d7cce2cf268f 2d671e4e413b2cb433c6d797b4319025c42e23a8 ed9edefe8cd023db03eb501a7cdb6cbbacd14592521e7cb9f715dbca89990078 Loading...

	#17 Eval - a32dc6b3b29d589ea53d4047ca05a24f	289 B	2023-09-24 05:09	2024-10-28 00:13
Pretty Observations First Seen2023-09-24 05:09 Last Seen2024-10-28 00:13 Times Seen4 Hash a32dc6b3b29d589ea53d4047ca05a24f 8c0660b9824cd7da4c7034b9bf2a00334798fd92 2279d46ebd393e3c0fdf46d9102ecba1ada2cd0b6b9394b37cd395a4bd7f2d28 Loading...

	#18 Eval - ba73f931c5e4972784dea7cab9ce15b3	285 B	2023-09-18 00:02	2025-03-08 14:32
Pretty Observations First Seen2023-09-18 00:02 Last Seen2025-03-08 14:32 Times Seen48 Hash ba73f931c5e4972784dea7cab9ce15b3 9584f01c4bbebc9eeac7797237339d7811a7d476 9dee95db1df0013e0e911e6ada383d0d7497e6538a950e0d1399ac329df1bc36 Loading...

	#19 Eval - ae969fcfcf1da4f7d9fc518079886842	281 B	2023-07-18 05:45	2025-01-25 19:26
Pretty Observations First Seen2023-07-18 05:45 Last Seen2025-01-25 19:26 Times Seen46 Hash ae969fcfcf1da4f7d9fc518079886842 4e4ceb3da7868ae40b703ea357b6eb1bdd8e5259 91775f4f2e00df4b29c9c8dc497249759c3d6fc4535b3f356ef9be6976ac2d55 Loading...

	#20 Eval - 03e0c97158523eda1e5a10f3e48fb656	281 B	2023-07-18 05:45	2025-01-25 19:26
Pretty Observations First Seen2023-07-18 05:45 Last Seen2025-01-25 19:26 Times Seen58 Hash 03e0c97158523eda1e5a10f3e48fb656 da561aa7f60a0b31dcd3be1765f0498c82dfecd5 01ea2452196b223c361f785ba795eead142fc5745593e958c90bcb6a0e8e0c1a Loading...

	#21 Eval - 1485c788f1106f788378bf900697dfd5	142 B	2023-08-31 20:13	2025-01-25 19:26
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-01-25 19:26 Times Seen53 Hash 1485c788f1106f788378bf900697dfd5 1a86525d35512b7e043b3c0db0628c8bfc6720b5 c199fa4f8a73b5465f9c117fa2c11c8ca0cee9a0fc97ef8fc695a6c08e04b2d2 Loading...

	#22 Eval - 840e5f30e3c39b3a648aca6e0a7c54b0	126 B	2023-04-01 11:09	2025-05-09 18:21
Pretty Observations First Seen2023-04-01 11:09 Last Seen2025-05-09 18:21 Times Seen178 Hash 840e5f30e3c39b3a648aca6e0a7c54b0 27190853760b01e6eaf85b1e6c186e9f2e030d6c 7818a2c46683b0849cd165b5c953afadf255a4c4c3561445de7b05ed13442fe5 Loading...

	#23 Eval - 72ad78146e0d5cd88d8b636b43c48295	130 B	2023-03-07 22:21	2025-05-09 18:21
Pretty Observations First Seen2023-03-07 22:21 Last Seen2025-05-09 18:21 Times Seen179 Hash 72ad78146e0d5cd88d8b636b43c48295 e1413d5e87fe01f5db8d21f69c61d7d188acac94 7514eb97e6329bb19030be3d3f2acd82961a0d54ed9e349d82211981a32b6572 Loading...

	#24 Eval - 47fcc3aca94bbfe07568a269f694f2a0	142 B	2023-08-31 20:13	2024-08-21 07:41
Pretty Observations First Seen2023-08-31 20:13 Last Seen2024-08-21 07:41 Times Seen12 Hash 47fcc3aca94bbfe07568a269f694f2a0 ae4bf0eba72a65220c6b1cd912a624b82e650441 4d1006a5139bb790f8433a2647c2b69421b15f66ff97157462d1f7b3c8ae448d Loading...

	#25 Eval - 89fdd56500064ae974717fa832345c40	289 B	2023-09-24 05:09	2024-10-28 00:13
Pretty Observations First Seen2023-09-24 05:09 Last Seen2024-10-28 00:13 Times Seen4 Hash 89fdd56500064ae974717fa832345c40 485be1c841aa5f71da368e9a5283f60d285f1aa0 5a1305fb132a33eb6517721af2cbf78d363a9f27bfe819bed379ae29e02dca97 Loading...

	#26 Eval - 7c415ff499f92fc53c3ed60fd9e8ec1c	289 B	2023-08-31 20:13	2024-08-21 07:41
Pretty Observations First Seen2023-08-31 20:13 Last Seen2024-08-21 07:41 Times Seen8 Hash 7c415ff499f92fc53c3ed60fd9e8ec1c ea17df766532c4aea2696851ba1756df88ade437 5ea12757073d1c440554f903dfa9462bfe9f8b9b73df972cddbf9fdd44a9d38d Loading...

	#27 Eval - d87ad96fa45e1a2ac4e1811f125df5c6	957 B	2023-03-07 22:21	2025-05-09 18:21
Pretty Observations First Seen2023-03-07 22:21 Last Seen2025-05-09 18:21 Times Seen176 Hash d87ad96fa45e1a2ac4e1811f125df5c6 bed93773a9de8be3c3231553da13d5ffeaeeb2fd 70c4de8244bc5412b2cce1d64575cbb87119eaaa97eb381574126ccc69a2b8b8 Loading...

	#28 Eval - a11db0df793e60043922ce93827dac0b	285 B	2023-08-31 20:13	2025-04-15 10:00
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-04-15 10:00 Times Seen23 Hash a11db0df793e60043922ce93827dac0b 1d4b47dd9ad6b95e66eca3ec86353bb2aea81989 aaa4188a7a8185bc533edcddfec1e890d599031b707ab5ba6289674577d8c0f0 Loading...

	#29 Eval - d46827d687c24ed4e8bc9dadd4f6b35b	285 B	2023-08-31 20:13	2025-01-24 16:18
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-01-24 16:18 Times Seen45 Hash d46827d687c24ed4e8bc9dadd4f6b35b 0ab24bd1cc982a8d79f4712d9edef167e06a9e0d b63d28c49c69864bdb14bdf53037df00c9faac89d0e788b4cb23befa4a193486 Loading...

	#30 Eval - a0b5a5ca4cc774b3f260e6c92948ef23	285 B	2023-08-31 20:13	2025-04-16 13:08
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-04-16 13:08 Times Seen60 Hash a0b5a5ca4cc774b3f260e6c92948ef23 373f87c5ffff012be2e6b08899611e0b2c3bcaa3 af2f2bd4979021213683ed9b458a35cecbd48c79d585f44475eea17cda51ea52 Loading...

	#31 Eval - 086c88a58b5aaafc0de26cde8beb2804	285 B	2023-08-31 20:13	2025-05-09 18:21
Pretty Observations First Seen2023-08-31 20:13 Last Seen2025-05-09 18:21 Times Seen42 Hash 086c88a58b5aaafc0de26cde8beb2804 83012e35b77cf3c68cc734dfc1adaf4b554fc917 fb9bf31d30ea88b7cdea26d9d30163819740403a0b4242f534849884abdc7595 Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07 01:03	2025-05-12 16:12
Pretty Observations First Seen2023-03-07 01:03 Last Seen2025-05-12 16:12 Times Seen58012 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

	#2 Write - adfb1bc5b6ba91ec5ab5c54ddc225a7a	3.6 kB	2023-09-22 02:30	2024-08-21 06:07
Pretty Observations First Seen2023-09-22 02:30 Last Seen2024-08-21 06:07 Times Seen41377 Hash adfb1bc5b6ba91ec5ab5c54ddc225a7a 16d4d2247f8f343811417dce829fe7595e73995c ca2d1c64f76c12b39444ddb57fb6a2def9521e9d0d29df80eb309ac34ed23b80 Loading...

HTTP Transactions (81)

	URL	IP	Response	Size
	trk.emails.dailygopnews.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_DIzx3e9nZ5TDPxfEg	54.156.128.221	302	0 B
URL User Request GET HTTP/1.1 trk.emails.dailygopnews.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_DIzx3e9nZ5TDPxfEg IP 54.156.128.221:443 ASN #14618 AMAZON-AES Certificate IssuerLet's Encrypt Subjecttrk.emails.dailygopnews.com FingerprintC6:AE:0F:30:10:54:4E:00:F5:54:BF:EC:2F:25:CD:1A:0A:F8:33:EA ValidityMon, 18 Sep 2023 12:34:03 GMT - Sun, 17 Dec 2023 12:34:02 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /c/7/eyJhaSI6OTE4ODYyNjYsImUiOiJ0ZXJyeS5maW5hZnJvY2tAdmlzdGFvdXRkb29yLmNvbSIsInJpIjoiMTI2MC10ZXJyeS5maW5hZnJvY2tAdmlzdGFvdXRkb29yLmNvbSIsInJxIjoiMDItYjIzMjU4LTE4NTYxNjVjYjJhNjRlZTdhODU2YzY1MDZmNzk3YTE4IiwicGgiOm51bGwsIm0iOmZhbHNlLCJ1aSI6IjAiLCJ1biI6IiIsInUiOiJodHRwczovL3NlY3VyZS53aW5yZWQuY29tL3ZvdGUtdGltLXNjb3R0L3N1bm55LWFuZC1zZWFuLz9tb25leV9wbGVkZ2U9dHJ1ZSZ1dG1fY2FtcGFpZ249MjAyMzA5MTVfQWRhbXMtVjQuMTEwNjYyX3QxMzg4MTI2LTEyNjAmZXhfdGlkPTIwMjMwOTE1X0FkYW1zLVY0LjExMDY2Ml90MTM4ODEyNi0xMjYwIn0/oNm1_DIzx3e9nZ5TDPxfEg HTTP/1.1 Host: trk.emails.dailygopnews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 302 Server: openresty/1.21.4.2 Date: Sun, 24 Sep 2023 03:08:44 GMT Content-Length: 0 Connection: keep-alive X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 Strict-Transport-Security: max-age=31536000 ; includeSubDomains X-Frame-Options: DENY Location: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260

	secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	104.19.212.89	403 Forbidden	0 B
URL User Request GET HTTP/3 secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.212.89:443 ASN #13335 CLOUDFLARENET Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache HTTP/1.1 301 Moved Permanently Date: Sun, 24 Sep 2023 03:08:45 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sun, 24 Sep 2023 04:08:45 GMT Location: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Set-Cookie: __cf_bm=YNotCn9ngskriiw0PpM6l0tqcqML9oSUC7FAzy_C_9I-1695524925-0-AeaWM1NpkNWpPsbItMzWg9Zpt5918z5kelKPBrlPfxLc+L3lr4KVj8SQfJD1lEfV8pBU7GHxBxtaWgSF6Gwi+eM=; path=/; expires=Sun, 24-Sep-23 03:38:45 GMT; domain=.secure.winred.com; HttpOnly; SameSite=None Vary: Accept-Encoding X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 80b7d31efd0f56c7-OSL alt-svc: h2=":443"; ma=60

	secure.winred.com/cdn-cgi/rum?	104.19.211.89	204 No Content	0 B
URL POST HTTP/3 secure.winred.com/cdn-cgi/rum? IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 content-type: application/json Content-Length: 2851 Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 204 No Content date: Sun, 24 Sep 2023 03:08:45 GMT access-control-allow-origin: https://secure.winred.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 80b7d3225edb569d-OSL x-frame-options: DENY x-content-type-options: nosniff`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15744902:1695521464:RzZuL1tVKWzpFRf6ZPMpddbV3qhsjO5ndLmFYoV0tgM/80b7d322fe09b50c/bf012ebcd5dcd43	104.17.3.184		233 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15744902:1695521464:RzZuL1tVKWzpFRf6ZPMpddbV3qhsjO5ndLmFYoV0tgM/80b7d322fe09b50c/bf012ebcd5dcd43 IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 233 kB (232974 bytes) Hash 5e3d650868c309852911ab5ef95cef10 a24423cec508b623a342a3d2818be3df729da603 1bf5a95a12132cdbf3f56f3a59a4a5ff5de4450a835f3fc4811a93246987c721 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/15744902:1695521464:RzZuL1tVKWzpFRf6ZPMpddbV3qhsjO5ndLmFYoV0tgM/80b7d322fe09b50c/bf012ebcd5dcd43 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b158k/0x4AAAAAAADnOjc0PNeA8qVm/light/normal Content-type: application/x-www-form-urlencoded CF-Challenge: bf012ebcd5dcd43 Content-Length: 3316 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:46 GMT content-type: text/plain; charset=UTF-8 cf-chl-gen: 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$cJhWsZ8xWOsgwZjKf0DD0Q== server: cloudflare cf-ray: 80b7d3251e81b50c-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	secure.winred.com/assets/win-red-mark-small-24c5e97a925e2a929cae4a87ecdfcdf27f56974fd8172bdd34af91145aebca91.png	104.19.211.89	200 OK	8.7 kB
URL GET HTTP/3 secure.winred.com/assets/win-red-mark-small-24c5e97a925e2a929cae4a87ecdfcdf27f56974fd8172bdd34af91145aebca91.png IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 8.7 kB (8708 bytes) Hash 94ae9c2ca3b21a7519782b13fb7834e9 d40141e21b80d496da03b79b5cec3c593fb96577 36f0bf882a876b13aeb20cf7a495421a43f336da5422072a58f58ce303fb6284 HTTP Headers GET /assets/win-red-mark-small-24c5e97a925e2a929cae4a87ecdfcdf27f56974fd8172bdd34af91145aebca91.png HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:49 GMT content-type: image/webp content-length: 8708 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=11635 content-disposition: inline; filename="win-red-mark-small-24c5e97a925e2a929cae4a87ecdfcdf27f56974fd8172bdd34af91145aebca91.webp" vary: Accept etag: "972c0cca8d1e490484e89513f902e847" last-modified: Wed, 23 Aug 2023 00:52:26 GMT strict-transport-security: max-age=0; includeSubDomains x-amz-id-2: Gtqo6jZQjxI4+/YMJq5MxqDYb5YTXj4Ss+kFIqF3JRb6n2gOvINVrgV4+mygIXmuzQlLt6CPYqc= x-amz-request-id: WJNNVEP6KJS1BCC1 x-amz-version-id: 8906q8AE0P3Pxg4jlJ7EVm4JWqYXrQL0 x-content-type-options: nosniff cf-cache-status: REVALIDATED expires: Sun, 24 Sep 2023 07:08:49 GMT cache-control: public, max-age=14400 accept-ranges: bytes server: cloudflare cf-ray: 80b7d338cc24569d-OSL alt-svc: h3=":443"; ma=86400

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 41d47531a53830929519cbac6bcf752a c39e4c34f34823397d064f1dd018625b2321f892 77798848ecc76001633e9d6571748a6c58fc655abb7509c4deb52932479e93ca HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 24 Sep 2023 03:08:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 41d47531a53830929519cbac6bcf752a c39e4c34f34823397d064f1dd018625b2321f892 77798848ecc76001633e9d6571748a6c58fc655abb7509c4deb52932479e93ca HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 24 Sep 2023 03:08:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854	104.16.56.101	200 OK	105 kB
URL GET HTTP/2 static.cloudflareinsights.com/beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 IP 104.16.56.101:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 105 kB (104670 bytes) Hash 293935c79f251762b89bb840b9e83415 bec5aaa0acac31d716c665c7f912dc221aad7252 b10e3ccc4339dc04a04eb2b3810897c11f13cdbb4e82a09ace0e9734037caade HTTP Headers `GET /beacon.min.js/v8b253dfea2ab4077af8c6f58422dfbfd1689876627854 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 24 Sep 2023 03:08:45 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2023.7.1" last-modified: Thu, 20 Jul 2023 18:10:27 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 80b7d3208f035694-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtm.js?id=GTM-KBSKFC3	142.250.74.168	200 OK	108 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KBSKFC3 IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18 ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT File type ASCII text, with very long lines (59055) Size 108 kB (108095 bytes) Hash 1278171a0c2b7b40e20fbb32732668d7 530042bcead1cc1c1e9f3fe4b2e0a3e8eb65270e 76775d33723ddb1230e258e980a2eec8e29a480a13f3e535a74d67394645c99d HTTP Headers `GET /gtm.js?id=GTM-KBSKFC3 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: gzip vary: Accept-Encoding date: Sun, 24 Sep 2023 03:08:49 GMT expires: Sun, 24 Sep 2023 03:08:49 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 108095 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 41d47531a53830929519cbac6bcf752a c39e4c34f34823397d064f1dd018625b2321f892 77798848ecc76001633e9d6571748a6c58fc655abb7509c4deb52932479e93ca HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 24 Sep 2023 03:08:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=80b7d322fe09b50c	104.17.3.184		94 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=80b7d322fe09b50c IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 94 kB (94471 bytes) Hash d382be0daa804ebea7cb0914a8c85968 c7d9bd9fbd4c9569cbe17229cb8b9501f44a43d6 3dbd6b22aae97736525f6b5cd9d1ab19fe04548df83a984fc93a6a6ffa4e2781 HTTP Headers GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=80b7d322fe09b50c HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b158k/0x4AAAAAAADnOjc0PNeA8qVm/light/normal DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:46 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 server: cloudflare cf-ray: 80b7d3237e22b50c-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html	151.101.0.176		154 B
URL js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html IP 151.101.0.176:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators Size 154 B (154 bytes) Hash 27c67c0d52761104439bb051c7856ab1 80c5cc4bba7acd2b26eb4a46882db254aab06bfd 351ffc2bdf381352dcd801be49be5018361119588eae077650260f9e162fe7b9 HTTP Headers GET /v3/m-outer-27c67c0d52761104439bb051c7856ab1.html HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Fri, 08 Sep 2023 21:23:50 GMT etag: "27c67c0d52761104439bb051c7856ab1" cache-control: max-age=31536000 content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 1316657 x-request-id: 537f6d4c-3cb2-433a-ade2-005ec13f23a7 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 23093 vary: Accept-Encoding timing-allow-origin: * content-length: 154 X-Firefox-Spdy: h2

	secure.winred.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=80b7d31f4dc7569d	104.19.211.89		527 kB
URL secure.winred.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=80b7d31f4dc7569d IP 104.19.211.89:0 ASN #13335 CLOUDFLARENET Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type GIF image data, version 89a, 400 x 400\012- data Size 527 kB (527004 bytes) Hash 8f22237b98779956a9fe3f9d2f671c04 b96a6dd7413e4f4f2c3e291223d5116518752206 a5dad5dcc8e434b9a407f58c1bfa01e7c62db7f16376bba0581ecd8d551130ca HTTP Headers GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=80b7d31f4dc7569d HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260&__cf_chl_rt_tk=TQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs DNT: 1 Connection: keep-alive Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:45 GMT content-type: application/javascript; charset=UTF-8 cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 80b7d3208e5a569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	d35ligi1n5bgzc.cloudfront.net/backgrounds/images/000/476/126/large/aaron-burden-t2b1Z-jPT-w-unsplash_%284%29_%283%29.jpg	54.230.111.45	200 OK	195 kB
URL GET HTTP/2 d35ligi1n5bgzc.cloudfront.net/backgrounds/images/000/476/126/large/aaron-burden-t2b1Z-jPT-w-unsplash_%284%29_%283%29.jpg IP 54.230.111.45:443 ASN #16509 AMAZON-02 Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1920x1440, components 3\012- data Size 195 kB (194651 bytes) Hash 6e710a4037b9283cd0784e6d905a7f38 19dc967d880f099c1aedce5d61ae31db33f06a4d b5e79a12d16ebf6e9949f6812aeef1fba3c21cdea6b4754c16fef848d69c3768 HTTP Headers GET /backgrounds/images/000/476/126/large/aaron-burden-t2b1Z-jPT-w-unsplash_%284%29_%283%29.jpg HTTP/1.1 Host: d35ligi1n5bgzc.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: image/jpeg content-length: 194651 last-modified: Tue, 04 Oct 2022 14:19:06 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: Lii8nXl4v7NNKQjYT_u6LIdKJKAyovYk accept-ranges: bytes server: AmazonS3 date: Sun, 24 Sep 2023 03:08:50 GMT etag: "6e710a4037b9283cd0784e6d905a7f38" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 1LEioTi3pJ6HdcileRz4WIk0cMejaFrY7aFEVj6sh4KiWAQTvQ-IPQ== age: 48028 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 99734170fcdad2d52884412f61321bf8 25163901dbdc047070a12d8afadcaa7009d8b595 f2a2590ac5fa2bcc9db8c46b3b4ad45f0a03b03193f601a2636e900fe851cf59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 24 Sep 2023 03:08:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	secure.winred.com/assets/win-red-full-red-5c68c8aaba76ec9fb516f84adaf0f4b53240d5730f4ab8339417725a536ea848.svg	104.19.211.89	200 OK	16 kB
URL GET HTTP/3 secure.winred.com/assets/win-red-full-red-5c68c8aaba76ec9fb516f84adaf0f4b53240d5730f4ab8339417725a536ea848.svg IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6469) Size 16 kB (15504 bytes) Hash d31530d4186af669daf4f47099614593 9d5cb2e3ddbf0574c08e6dc6404b12368bb83731 5c68c8aaba76ec9fb516f84adaf0f4b53240d5730f4ab8339417725a536ea848 HTTP Headers GET /assets/win-red-full-red-5c68c8aaba76ec9fb516f84adaf0f4b53240d5730f4ab8339417725a536ea848.svg HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:49 GMT content-type: image/svg+xml x-amz-id-2: Nr4MQle+cRaDAvzxsTf8gvXLoR0pH1UzViTQf2JodjLxCEuYzXBP9aYcSyIwaPv/pqYNOgspwmI= x-amz-request-id: H7ZG28JJ9VKP8PX5 last-modified: Tue, 22 Aug 2023 02:31:21 GMT x-amz-version-id: nV4_V9M1KMPLiqYQ1AHOyk..gVn46aRS etag: W/"d31530d4186af669daf4f47099614593" strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff cf-cache-status: REVALIDATED expires: Sun, 24 Sep 2023 07:08:49 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 80b7d338cc29569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html	151.101.0.176		188 B
URL js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html IP 151.101.0.176:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (325), with no line terminators Size 188 B (188 bytes) Hash 9239195964f74ac7d035010429fa6fc6 b7ac84dfced59289fc792d5e888b3f15f5c62e57 cd499789aa0cc8dfa10bfe9e511cc447cc27f58dcf554793d8103f8e4e318a61 HTTP Headers GET /v3/controller-9239195964f74ac7d035010429fa6fc6.html HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:16 GMT etag: "9239195964f74ac7d035010429fa6fc6" cache-control: max-age=60 content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://api.stripe.com https://merchant-ui-api.stripe.com https://stripe.com/cookie-settings/enforcement-mode https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src 'self'; img-src 'self' https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk='; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 39 x-request-id: 380ee45c-eec6-4158-82c3-c1030427b3d5 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2 vary: Accept-Encoding timing-allow-origin: * content-length: 188 X-Firefox-Spdy: h2

	js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html	151.101.0.176		360 B
URL js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html IP 151.101.0.176:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (798), with no line terminators Size 360 B (360 bytes) Hash c8839c7149dc8c999077f46486575853 9c4c0f0c79990e44ba536a0960b6a33ab0633720 e293d48b94cc26fee1a0bc128087c5e551acf01100e199595b14824263ab1041 HTTP Headers GET /v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:17 GMT etag: "c8839c7149dc8c999077f46486575853" cache-control: max-age=31536000 content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://api.stripe.com https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src data: https:; form-action 'none'; frame-src 'self' https://www.affirm.com https://b.stripecdn.com; img-src 'self' https://q.stripe.com https://b.stripecdn.com https://js.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; report-uri https://q.stripe.com/csp-report content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://api.stripe.com https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src data: https:; form-action 'none'; frame-src 'self' https://www.affirm.com https://b.stripecdn.com; img-src 'self' https://q.stripe.com https://b.stripecdn.com https://js.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 165880 x-request-id: adf12fc5-7fa1-4345-8377-4e1c8a0ca7cd x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2696 vary: Accept-Encoding timing-allow-origin: * content-length: 360 X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	143.204.48.16		471 B
URL ocsp.r2m01.amazontrust.com/ IP 143.204.48.16:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash f58cedd95b7b585e028776c946d06e9e c6595bc13bf84d223e8b617f1c15c7715274b460 51d00732ac6a26d77106f0a80a8b1555fde26d857ba3c1fdbc8ffe52108ca0ad HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Sun, 24 Sep 2023 03:08:50 GMT Last-Modified: Sun, 24 Sep 2023 02:14:04 GMT Server: ECAcc (ska/F6E1) X-Cache: Miss from cloudfront Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pIJG5zRltZMdvf-u98vZLqaELZyZ0vfVuRI5o5IkTxyU4NbL7eNCRg== Age: 3286`

	maps.googleapis.com/maps/api/js?key=AIzaSyDGBR6MmEzkdkem9Ci2VrraiYLneizw9Rg&libraries=places	142.250.74.10	200 OK	66 kB
URL GET HTTP/2 maps.googleapis.com/maps/api/js?key=AIzaSyDGBR6MmEzkdkem9Ci2VrraiYLneizw9Rg&libraries=places IP 142.250.74.10:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49 ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT File type ASCII text, with very long lines (2796) Size 66 kB (65533 bytes) Hash 6d62de4233343635c44ac27365a870ef e32a0e73313957072d540a2d3fdf1c6169caa15d 59ca20efb149ab1526cbfb35109498db31c718662263816e960c5830c1428def HTTP Headers `GET /maps/api/js?key=AIzaSyDGBR6MmEzkdkem9Ci2VrraiYLneizw9Rg&libraries=places HTTP/1.1 Host: maps.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 vary: Accept-Language, Origin, X-Origin, Referer cache-control: public, max-age=1800 cross-origin-resource-policy: cross-origin timing-allow-origin: * content-encoding: gzip date: Sun, 24 Sep 2023 03:08:50 GMT server: scaffolding on HTTPServer2 content-length: 65533 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 99734170fcdad2d52884412f61321bf8 25163901dbdc047070a12d8afadcaa7009d8b595 f2a2590ac5fa2bcc9db8c46b3b4ad45f0a03b03193f601a2636e900fe851cf59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 24 Sep 2023 03:08:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	js.stripe.com/v3/fingerprinted/js/m-outer-6576085ca35ee42f2f484cda6763e4aa.js	151.101.0.176	200 OK	399 B
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-6576085ca35ee42f2f484cda6763e4aa.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html#url=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&title=I'm%20livid!&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&muid=NA&sid=NA&version=6&preview=false Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type ASCII text, with very long lines (526) Size 399 B (399 bytes) Hash 70cacf09ae81711ac6dcbc5ee59750c4 117ab921aa9438662e7042c6f57cf4558baeb637 f0205495d259e89d99e6c4989147f8a65bef41513bfbe3e97251cd6fb6fa5947 HTTP Headers `GET /v3/fingerprinted/js/m-outer-6576085ca35ee42f2f484cda6763e4aa.js HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK last-modified: Fri, 08 Sep 2023 21:23:49 GMT etag: "70cacf09ae81711ac6dcbc5ee59750c4" cache-control: max-age=31536000 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 1316656 x-request-id: 7966ed6b-52b5-46f7-9b7f-12a0d1b3ffb9 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 21385 vary: Accept-Encoding timing-allow-origin: * content-length: 399 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-X6H0114PDF&l=dataLayer&cx=c	142.250.74.168	200 OK	89 kB
URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-X6H0114PDF&l=dataLayer&cx=c IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18 ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT File type ASCII text, with very long lines (5788) Size 89 kB (89145 bytes) Hash 522c0c4f0d37ab436d60cf0ad6d340fa b96fd1b6900c7a5d56f4f702f2efb9bbe24d3ca8 cc1ca38e369196df6c3e404c53f4eff794d7340f6b5cee562f3f4c749db792ba HTTP Headers `GET /gtag/js?id=G-X6H0114PDF&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 24 Sep 2023 03:08:50 GMT expires: Sun, 24 Sep 2023 03:08:50 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 89145 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	secure.winred.com/assets/application-landing-page-675d5d84505ed9e5cfffeffe9c90232667009091899f3fc6b5ea711630886307.js	104.19.211.89	200 OK	183 kB
URL GET HTTP/3 secure.winred.com/assets/application-landing-page-675d5d84505ed9e5cfffeffe9c90232667009091899f3fc6b5ea711630886307.js IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 183 kB (183404 bytes) Hash 3c643811645485c2119a0c22e19f80be addd4bea2d6f8dec50679580fcb12fd7c857e46c 35a5c5f5f1ac1efdac0c313a8a159ab0ccb3d3f593ae3e6fcf3534897f229d1b HTTP Headers GET /assets/application-landing-page-675d5d84505ed9e5cfffeffe9c90232667009091899f3fc6b5ea711630886307.js HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=VHR0aVM4MS9PZFZnb1REZ1FnQW5Wdll0TU1ZVW1mMDlWQnBnL3RDRXAxdlQrTkR2TEZWbDhnWTFsTVoyaENHM3prby8xUlo1S2x0Z3doUkZpSEFBQnVlRWhFSUNnaE5FeHI1ZUZ0L0JORWY3WnZ6bDV3NjdxMGJoOTdENEc0QldkcFB6N1QzeTNyR1MzWU5sVzlmVU9ocWhKSnFmSXBqUGRNYUlxU3duOEdJY2ZVL1FqQ0NmK0pUM2dnbXVYN2J1SERvQjN5K0t4RWtNNzdRUWZ3S2hxM1MzRSt5bUlSQnJGTWhQU3BJQ2x2RGRZRy9KVnVQa0E2SGhkZkFTVkdHL1kzRXNHeDV5YnkwdkhUelNydFJDOEpKTXU5UDRtckJrZVdWRUtXNzBwRU5KYmYxWWltSkhQeHgrRmhETVJZT1BWRkxDVjJDUWkwbFhLOVpYTEEyQ25QUVRZN2VkR2loekRyeXhDaHFYL0w4PS0tTDU3SWpvOGJRZVNiUkNUYUVTS1BXUT09--5ec90b129c4296ee7c3f212a4367f420ba436a6b Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:49 GMT content-type: application/javascript cf-bgj: minify cf-polished: origSize=655513 etag: W/"4d4f6f1eefe4c00ced109b217479038e" last-modified: Mon, 18 Sep 2023 23:46:43 GMT strict-transport-security: max-age=0; includeSubDomains x-amz-id-2: Td4wx8qumiy8PnmYGQ3MRnTOLkCdHGe31nLsR42feDgPh2sI3v9gn+1Q4m6hg++iFvBHUg7M46M= x-amz-request-id: J1TRA5VE4E3X6C7Y x-amz-version-id: IfjAcR3kMVlqFQmaJHYYwN64pgNgLs5M x-content-type-options: nosniff cf-cache-status: REVALIDATED expires: Sun, 24 Sep 2023 07:08:49 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 80b7d338bbf1569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	js.stripe.com/v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js	151.101.0.176	200 OK	124 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 124 kB (123524 bytes) Hash 4ee047fd9c07072ad4206430e08adc9b 48fbcce3d4a8624751489aea1c107671f20c8ce7 9fa101eb8187170c04e5b2b0c46c611a6aa029e8eb4ca816193ebd5bbc4567be HTTP Headers `GET /v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:31 GMT etag: "4ee047fd9c07072ad4206430e08adc9b" cache-control: max-age=31536000 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 165880 x-request-id: b7553cae-0916-43d7-9f10-4e583715ad8d x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 6032 vary: Accept-Encoding timing-allow-origin: * content-length: 123524 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/js/controller-6911f86fec01b61d77aef174880786ec.js	151.101.0.176	200 OK	158 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/js/controller-6911f86fec01b61d77aef174880786ec.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 158 kB (157919 bytes) Hash f25de5bf18bdc52a370fda9b0d5ee732 2c61a7dc56636fe7cd49a3acf97176259ddce545 57cbe6b573d45adcf6ed7a6c9d5fe87651d4902f266cacaadad32552037eab89 HTTP Headers GET /v3/fingerprinted/js/controller-6911f86fec01b61d77aef174880786ec.js HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 20:06:46 GMT etag: "f25de5bf18bdc52a370fda9b0d5ee732" cache-control: max-age=31536000 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 195035 x-request-id: 7228f070-ff97-4918-9c92-532eaf9ed310 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 86 vary: Accept-Encoding timing-allow-origin: * content-length: 157919 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/js/ui-shared-9dbddfcfc656c0282376647fda9915a7.js	151.101.0.176	200 OK	98 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/js/ui-shared-9dbddfcfc656c0282376647fda9915a7.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 98 kB (98047 bytes) Hash bcc5411dbab11bd7e108924986fa9838 70a78a392b011913896bd6b5b3b42c4fe40583f5 314eccb31ae54c82d0124be09e911c6b15e744335c6a1dbd9474dec5fc570794 HTTP Headers GET /v3/fingerprinted/js/ui-shared-9dbddfcfc656c0282376647fda9915a7.js HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:32 GMT etag: "bcc5411dbab11bd7e108924986fa9838" cache-control: max-age=31536000 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 165880 x-request-id: aa1f7e29-c869-4c11-a3cd-bf0db0930318 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2944 vary: Accept-Encoding timing-allow-origin: * content-length: 98047 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js	151.101.0.176	200 OK	124 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 124 kB (123524 bytes) Hash 4ee047fd9c07072ad4206430e08adc9b 48fbcce3d4a8624751489aea1c107671f20c8ce7 9fa101eb8187170c04e5b2b0c46c611a6aa029e8eb4ca816193ebd5bbc4567be HTTP Headers GET /v3/fingerprinted/js/shared-64ae3beea3113d48aa7486462fd2d12e.js HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:31 GMT etag: "4ee047fd9c07072ad4206430e08adc9b" cache-control: max-age=31536000 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 165880 x-request-id: 1ee8393d-dc39-49ba-8bbc-6a5445ae6764 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 6033 vary: Accept-Encoding timing-allow-origin: * content-length: 123524 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/js/elements-inner-card-cdd742720b8be0f15f93969054c43ddd.js	151.101.0.176	200 OK	13 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/js/elements-inner-card-cdd742720b8be0f15f93969054c43ddd.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type ASCII text, with very long lines (48776) Size 13 kB (12891 bytes) Hash 93e76bde8326d768a44de6786a5a326e 7646d5d41ced9e67af53b5e7575adfb8c014f642 dd5e6ca8dd24585187320b0ebcb6291879e9a04831ffdabcf3e2a9e8113c96db HTTP Headers GET /v3/fingerprinted/js/elements-inner-card-cdd742720b8be0f15f93969054c43ddd.js HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:29 GMT etag: "93e76bde8326d768a44de6786a5a326e" cache-control: max-age=31536000 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 165880 x-request-id: e820529a-0745-4746-a372-e521c7b1017c x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2619 vary: Accept-Encoding timing-allow-origin: * content-length: 12891 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/css/ui-shared-1d27f4e2b314637ba4bb9d7ff79c23c7.css	151.101.0.176	200 OK	3.3 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/css/ui-shared-1d27f4e2b314637ba4bb9d7ff79c23c7.css IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type ASCII text, with very long lines (20764), with no line terminators Size 3.3 kB (3304 bytes) Hash b361d7109e9925ca18e32c9da528520f c66e1465f883acc2c5f90a692595f1c5e2ad452d 394724ca0118829643c12fb5a033cb66680e51327ba157677d18dec209278a3d HTTP Headers GET /v3/fingerprinted/css/ui-shared-1d27f4e2b314637ba4bb9d7ff79c23c7.css HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:17 GMT etag: "b361d7109e9925ca18e32c9da528520f" cache-control: max-age=31536000 content-type: text/css; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 129564 x-request-id: 9649dcbc-c17f-4558-86e2-4bf80ebb5ab3 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2503 vary: Accept-Encoding timing-allow-origin: * content-length: 3304 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/css/elements-inner-card-1c7bee4785d93019a11fa1aa4aadb4ae.css	151.101.0.176	200 OK	1.8 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/css/elements-inner-card-1c7bee4785d93019a11fa1aa4aadb4ae.css IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type ASCII text, with very long lines (11879), with no line terminators Size 1.8 kB (1768 bytes) Hash c70a6ce921e821338c031d05a48eb659 00add46d747a9d7681d05bea609d74a5a12f3a3d 53d6eb6e1878802f013e9ba10e391922ffd1debb6f528c3b65a9c6bd24aaac03 HTTP Headers GET /v3/fingerprinted/css/elements-inner-card-1c7bee4785d93019a11fa1aa4aadb4ae.css HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Wed, 06 Sep 2023 16:08:05 GMT etag: "c70a6ce921e821338c031d05a48eb659" cache-control: max-age=31536000 content-type: text/css; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 1508267 x-request-id: 8c2b6c24-a42e-46f9-a7ab-fca65c49dfb8 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2231 vary: Accept-Encoding timing-allow-origin: * content-length: 1768 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-CM6HT6HPTV&l=dataLayer&cx=c	142.250.74.168	200 OK	85 kB
URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-CM6HT6HPTV&l=dataLayer&cx=c IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18 ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT File type ASCII text, with very long lines (3034) Size 85 kB (85135 bytes) Hash 4948660dd997d298a25e53504e45d1df de81b5d386ce9395d9539b2938295e31bde5f2dc 9f7a95d0a5f28676353a7260a6dfb359f3839234c7f3d1569ec798ca09ac4f6e HTTP Headers `GET /gtag/js?id=G-CM6HT6HPTV&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 24 Sep 2023 03:08:50 GMT expires: Sun, 24 Sep 2023 03:08:50 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 85135 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.googletagmanager.com/gtag/js?id=G-LB6LPZ3Q3Z&l=dataLayer&cx=c	142.250.74.168	200 OK	88 kB
URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-LB6LPZ3Q3Z&l=dataLayer&cx=c IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18 ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT File type ASCII text, with very long lines (4179) Size 88 kB (87573 bytes) Hash 5f70f85b66bf3e7a158a87412f632986 c0c16740bd9647a91d93d68350c97d9c53bed32f 3db6a4cb13d1b9fac2d4efcd843ae73b703b4e0070f3bf6bccc6ac986653e05a HTTP Headers `GET /gtag/js?id=G-LB6LPZ3Q3Z&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 24 Sep 2023 03:08:50 GMT expires: Sun, 24 Sep 2023 03:08:50 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 87573 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	d35ligi1n5bgzc.cloudfront.net/widget_images/images/000/678/358/medium/I_Will_Never_Back_Down_Exit_Intent_GIF.gif	54.230.111.45	200 OK	2.8 MB
URL GET HTTP/2 d35ligi1n5bgzc.cloudfront.net/widget_images/images/000/678/358/medium/I_Will_Never_Back_Down_Exit_Intent_GIF.gif IP 54.230.111.45:443 ASN #16509 AMAZON-02 Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type GIF image data, version 89a, 800 x 800\012- data Size 2.8 MB (2783483 bytes) Hash 936165ab99ef1f44efef195c712af364 6e613240c150cce271054359f3c29c8f21e2e2b2 223a8b3e99b920c1a9448fbd76878b4704fbd16eac15b42e9292a42464a9d812 HTTP Headers `GET /widget_images/images/000/678/358/medium/I_Will_Never_Back_Down_Exit_Intent_GIF.gif HTTP/1.1 Host: d35ligi1n5bgzc.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/gif content-length: 2783483 last-modified: Fri, 21 Jul 2023 19:11:50 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: ZQfOCeQQnn4OP1lUm4waoF9.LOY0I4uC accept-ranges: bytes server: AmazonS3 date: Sat, 23 Sep 2023 08:34:30 GMT etag: "936165ab99ef1f44efef195c712af364" x-cache: Hit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: p4Iko4_32D4WezknqaGyvvI1SHcHSvsBh0Rhs2_EfHNQTV86obAl3w== age: 66861 X-Firefox-Spdy: h2

	js.stripe.com/v3/.deploy_status_henson.json	151.101.0.176	200 OK	262 B
URL GET HTTP/2 js.stripe.com/v3/.deploy_status_henson.json IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (474), with no line terminators Size 262 B (262 bytes) Hash 6a955f8970d56b697fb1312045250936 89489be5441bf581946bd622afbf48b04ae99dc1 bb5880ffd5fb15b0669aacc2f6b2b40e4671d39fa0328f498029aacf30569c1a HTTP Headers GET /v3/.deploy_status_henson.json HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Content-Type: application/x-www-form-urlencoded DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Fri, 22 Sep 2023 20:48:37 GMT etag: "6a955f8970d56b697fb1312045250936" cache-control: max-age=60 content-type: application/json access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:51 GMT via: 1.1 varnish age: 48 x-request-id: 42b17eaa-6897-4d72-96e6-6b44d9c28445 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2 vary: Accept-Encoding strict-transport-security: max-age=31556926; includeSubDomains; preload timing-allow-origin: * content-length: 262 X-Firefox-Spdy: h2

	m.stripe.network/inner.html	151.101.0.176		540 B
URL m.stripe.network/inner.html IP 151.101.0.176:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators Size 540 B (540 bytes) Hash 06bfcd88af438673a8bf9b845a11aa6e d024a745032cbe115526abe648d9fa0f0a10a681 947ac0903521f5eceefc90637c066306a8ca67466ccc188bb0107fb7cfb532d1 HTTP Headers GET /inner.html HTTP/1.1 Host: m.stripe.network User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK cache-control: max-age=300, public content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:51 GMT via: 1.1 varnish age: 21 x-request-id: 332a2d65-e131-48df-ba72-d7768f0d8ec8 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 4 x-timer: S1695524931.135889,VS0,VE0 vary: Accept-Encoding, Origin content-length: 540 X-Firefox-Spdy: h2

	secure.winred.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/dffb14d6/main.js	104.19.211.89	200 OK	43 kB
URL GET HTTP/3 secure.winred.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/dffb14d6/main.js IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (7333), with no line terminators Size 43 kB (43008 bytes) Hash 21d06379115ccb905a34adf5fb3af730 a2f4a4febd47e100ed325efead6e58a9a2bd6267 e0ada1b901fc87fd7b400e52c91b75da05453298daffd4cc84068f2e09b9861c HTTP Headers GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/dffb14d6/main.js HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; origin_url=https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260; _ga_X6H0114PDF=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga=GA1.1.2129217710.1695524931; _ga_CM6HT6HPTV=GS1.1.1695524931.1.0.1695524931.0.0.0 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:51 GMT content-type: application/javascript; charset=UTF-8 vary: accept-encoding x-content-type-options: nosniff cache-control: max-age=14400, public strict-transport-security: max-age=0; includeSubDomains server: cloudflare cf-ray: 80b7d343cf77569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400`

	js.stripe.com/v3/.deploy_status_henson.json	151.101.0.176	200 OK	262 B
URL GET HTTP/2 js.stripe.com/v3/.deploy_status_henson.json IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (474), with no line terminators Size 262 B (262 bytes) Hash 6a955f8970d56b697fb1312045250936 89489be5441bf581946bd622afbf48b04ae99dc1 bb5880ffd5fb15b0669aacc2f6b2b40e4671d39fa0328f498029aacf30569c1a HTTP Headers GET /v3/.deploy_status_henson.json HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html Content-Type: application/x-www-form-urlencoded DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK last-modified: Fri, 22 Sep 2023 20:48:37 GMT etag: "6a955f8970d56b697fb1312045250936" cache-control: max-age=60 content-type: application/json access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:51 GMT via: 1.1 varnish age: 49 x-request-id: a1b7a567-cbfa-4ecf-a9f3-b360a178e614 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 3 vary: Accept-Encoding strict-transport-security: max-age=31556926; includeSubDomains; preload timing-allow-origin: * content-length: 262 X-Firefox-Spdy: h2

	secure.winred.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	104.19.211.89	302 Found	16 kB
URL GET HTTP/3 secure.winred.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type data Size 16 kB (15509 bytes) Hash c226fb3a23f80b7cfa3ac4cc139d24e3 9fa64a9bdf933038bac8feba5a2acbabb2115f20 c565a8354b63613e0d97ac83c9da0289197fdf29da8e046c6b4164416fa6574f HTTP Headers GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=VHR0aVM4MS9PZFZnb1REZ1FnQW5Wdll0TU1ZVW1mMDlWQnBnL3RDRXAxdlQrTkR2TEZWbDhnWTFsTVoyaENHM3prby8xUlo1S2x0Z3doUkZpSEFBQnVlRWhFSUNnaE5FeHI1ZUZ0L0JORWY3WnZ6bDV3NjdxMGJoOTdENEc0QldkcFB6N1QzeTNyR1MzWU5sVzlmVU9ocWhKSnFmSXBqUGRNYUlxU3duOEdJY2ZVL1FqQ0NmK0pUM2dnbXVYN2J1SERvQjN5K0t4RWtNNzdRUWZ3S2hxM1MzRSt5bUlSQnJGTWhQU3BJQ2x2RGRZRy9KVnVQa0E2SGhkZkFTVkdHL1kzRXNHeDV5YnkwdkhUelNydFJDOEpKTXU5UDRtckJrZVdWRUtXNzBwRU5KYmYxWWltSkhQeHgrRmhETVJZT1BWRkxDVjJDUWkwbFhLOVpYTEEyQ25QUVRZN2VkR2loekRyeXhDaHFYL0w4PS0tTDU3SWpvOGJRZVNiUkNUYUVTS1BXUT09--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; origin_url=https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 302 Found date: Sun, 24 Sep 2023 03:08:50 GMT access-control-allow-origin: * location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/dffb14d6/main.js cache-control: max-age=300, public vary: accept-encoding strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 80b7d3415ed9569d-OSL alt-svc: h3=":443"; ma=86400`

	maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true	142.250.74.10	200 OK	23 B
URL GET HTTP/3 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true IP 142.250.74.10:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49 ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT File type JSON data\012- , ASCII text Size 23 B (23 bytes) Hash 8a80554c91d9fca8acb82f023de02f11 5f36b2ea290645ee34d943220a14b54ee5ea5be5 ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356 HTTP Headers `GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1 Host: maps.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/json; charset=UTF-8 vary: Origin, X-Origin, Referer content-encoding: gzip date: Sun, 24 Sep 2023 03:08:51 GMT server: scaffolding on HTTPServer2 cache-control: private content-length: 23 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff access-control-allow-origin: https://secure.winred.com access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	cdn1.decide.dev/tracking/timscottforsenate_lander.js	151.139.128.10	200 OK	2.9 kB
URL GET HTTP/2 cdn1.decide.dev/tracking/timscottforsenate_lander.js IP 151.139.128.10:443 ASN #20446 STACKPATH-CDN Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerLet's Encrypt Subjectcdn1.decide.dev FingerprintEF:98:20:69:2B:FE:37:0E:70:D1:BD:41:44:94:14:A7:E2:0F:53:35 ValiditySun, 03 Sep 2023 12:53:07 GMT - Sat, 02 Dec 2023 12:53:06 GMT File type Unicode text, UTF-8 text, with very long lines (3733) Size 2.9 kB (2862 bytes) Hash be8bf59b1cb4718d4bc0e45b369c4695 abc0cb513ba94a8ce7e5ca473ea39ac8cf1067ac 0fb437afa24051d33f9981dab1366ce430cfdab696d9668ae3a966c12f08eade HTTP Headers `GET /tracking/timscottforsenate_lander.js HTTP/1.1 Host: cdn1.decide.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 24 Sep 2023 03:08:51 GMT cache-control: max-age=3600 content-encoding: gzip content-length: 2862 content-type: application/javascript last-modified: Wed, 16 Feb 2022 23:15:35 GMT accept-ranges: bytes etag: "be8bf59b1cb4718d4bc0e45b369c4695" x-hw: 1695524931.cds226.sk1.hn,1695524931.cds213.sk1.sc,1695524931.cds213.sk1.pr timing-allow-origin: https://decide.dev X-Firefox-Spdy: h2`

	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15744902:1695521464:RzZuL1tVKWzpFRf6ZPMpddbV3qhsjO5ndLmFYoV0tgM/80b7d322fe09b50c/bf012ebcd5dcd43	104.17.3.184		5.3 kB
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/15744902:1695521464:RzZuL1tVKWzpFRf6ZPMpddbV3qhsjO5ndLmFYoV0tgM/80b7d322fe09b50c/bf012ebcd5dcd43 IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3584), with no line terminators Size 5.3 kB (5285 bytes) Hash c537a06b6b6d5f94c25cdd239f180643 6d2fb0e17e428e5d3804971468df308ef3b10437 5a2935b00ef5ef9b13224fd7ab8a38d8b5c0eda531ba8c871d42ac23fffa1f33 HTTP Headers POST /cdn-cgi/challenge-platform/h/g/flow/ov1/15744902:1695521464:RzZuL1tVKWzpFRf6ZPMpddbV3qhsjO5ndLmFYoV0tgM/80b7d322fe09b50c/bf012ebcd5dcd43 HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/b158k/0x4AAAAAAADnOjc0PNeA8qVm/light/normal Content-type: application/x-www-form-urlencoded CF-Challenge: bf012ebcd5dcd43 Content-Length: 26405 Origin: https://challenges.cloudflare.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:48 GMT content-type: text/html; charset=UTF-8 cf-chl-out: dwcihGjGo01RcvzZ0Vmbg6TmGP7RBdb4rbEO8qlf5Gf/cKDs5c/54k7HojvVqusHKT/bakdhW3Pm08pE2Mjv1cD+RLSX+BpTNaEdv/wiKT2vTrTCb7Eoeo3UK/9SlLhS$SSqfeEjAdYU+npoSQilB2w== cf-chl-out-s: 3duaVo+3DycZJvZYwDDg/U1J6x0E3WttdSpbByLYqCQq2hMZ5IuqvO3Wj1QM29WiyGRqIgan3hrFeUtMzKOWnWydubvbNtHq1EES4OB/p5nhS6qf8PB504zomQ6gqrD7IQ1XbCNMKaeROC2HaB1T60l/1bIzfX4UDvw8WodDftgXxnE5i3ft6IWKTzIPg2k05jJLs4hQOwk60t7Mz/SFCLu8jRyRpTlBdK+g9ysCr+By97gdmXRS7/PpSJKgUtyVHOFSMuezfEoLV8QOUpoycGbHoKr1/WHZVeHH/22W4v8ca219V31EkxzzFxyneQjcWjk4fzw7WJnaz736+0Ml8uAYqsPSlneJM8gfDrv1PXo=$suqCtGgl9+h7ZmWY6ejXwg== server: cloudflare cf-ray: 80b7d3323917b50c-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LB6LPZ3Q3Z&cid=2129217710.1695524931&gtm=45je39k2&aip=1&z=820832992	142.250.74.163	200 OK	42 B
URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LB6LPZ3Q3Z&cid=2129217710.1695524931&gtm=45je39k2&aip=1&z=820832992 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google.no FingerprintF8:21:85:85:E7:A3:F0:03:9E:50:77:60:8D:CB:66:7C:41:ED:3D:28 ValidityMon, 04 Sep 2023 08:25:22 GMT - Mon, 27 Nov 2023 08:25:21 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LB6LPZ3Q3Z&cid=2129217710.1695524931&gtm=45je39k2&aip=1&z=820832992 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Sun, 24 Sep 2023 03:08:51 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d82f304bb3184a26ae49e14ad4d87091 2caa05bdfd03064e8f336795d17b8f0070b24fe4 b51043325f565bc1b55e5c5baf171a375b07ce61dccb39b7ba273da508d0f328 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 24 Sep 2023 03:08:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	secure.winred.com/cdn-cgi/rum?	104.19.211.89	204 No Content	0 B
URL POST HTTP/3 secure.winred.com/cdn-cgi/rum? IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 15331 Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=0P0rrAaKEnL.0KWJRIPFththZ2mjNQPAHhnW.J.kxHA-1695524931-0-1-69b0ef05.6b0d8b6b.438cce4a-150.2.1695524931; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; origin_url=https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260; _ga_X6H0114PDF=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga=GA1.1.2129217710.1695524931; _ga_CM6HT6HPTV=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga_LB6LPZ3Q3Z=GS1.1.1695524931.1.0.1695524931.60.0.0 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 204 No Content date: Sun, 24 Sep 2023 03:08:51 GMT access-control-allow-origin: https://secure.winred.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 80b7d348c947569d-OSL x-frame-options: DENY x-content-type-options: nosniff`

	region1.analytics.google.com/g/collect?v=2&tid=G-LB6LPZ3Q3Z&gtm=45je39k2&_p=1786741307&_gaz=1&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_s=1&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=page_view&_fv=1&_ss=1	216.239.32.36	204 No Content	0 B
URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-LB6LPZ3Q3Z&gtm=45je39k2&_p=1786741307&_gaz=1&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_s=1&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=page_view&_fv=1&_ss=1 IP 216.239.32.36:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18 ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-LB6LPZ3Q3Z&gtm=45je39k2&_p=1786741307&_gaz=1&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_s=1&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=page_view&_fv=1&_ss=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://secure.winred.com date: Sun, 24 Sep 2023 03:08:51 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 560 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932325709 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932325137 content-type: text/plain X-Firefox-Spdy: h2`

	challenges.cloudflare.com/turnstile/v0/g/dffb14d6/api.js?onload=AsGt1&render=explicit	104.17.3.184		12 kB
URL challenges.cloudflare.com/turnstile/v0/g/dffb14d6/api.js?onload=AsGt1&render=explicit IP 104.17.3.184:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (33998) Size 12 kB (11458 bytes) Hash cc3e43876d80dbb4f1bff1e8b15a9c60 3b43cbd347df372f7c1daf463b1229e4a8849195 06d063d7e58bade3ae244489087afa82f9f7c59276cdd7dcfbb2a9b5b600c5da HTTP Headers `GET /turnstile/v0/g/dffb14d6/api.js?onload=AsGt1&render=explicit HTTP/1.1 Host: challenges.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 24 Sep 2023 03:08:45 GMT content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * cache-control: max-age=31536000 vary: Accept-Encoding server: cloudflare cf-ray: 80b7d3217a0bb4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 580 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932325532 x-stripe-server-envoy-upstream-service-time-ms: 3 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932324905 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 577 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932506532 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932506102 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 568 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932506396 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932505826 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 1551 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932506281 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932506001 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 2319 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932506317 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932505881 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 569 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932506598 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932506052 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 592 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932506800 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932506214 content-type: text/plain X-Firefox-Spdy: h2`

	m.stripe.com/6	52.10.94.213	200 OK	156 B
URL POST HTTP/2 m.stripe.com/6 IP 52.10.94.213:443 ASN #16509 AMAZON-02 Requested by https://m.stripe.network/inner.html#url=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&title=I'm%20livid!&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&muid=NA&sid=NA&version=6&preview=false Certificate IssuerDigiCert Inc Subjectm.stripe.com Fingerprint83:4A:74:B3:15:11:DE:61:95:BB:77:4C:1A:81:F3:96:61:4A:87:59 ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 26 Oct 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 156 B (156 bytes) Hash 880dd005b2abf4da7bb00102311d3476 e45572b5d49f924d1f9a127df5b6fba22317a860 dbfb16d016c42ecf232a86a6dbebd15cb2289e7adbfc0a6904eb1be9340eb37a HTTP Headers `POST /6 HTTP/1.1 Host: m.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 4416 Origin: https://m.stripe.network DNT: 1 Connection: keep-alive Referer: https://m.stripe.network/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 156 set-cookie: m=d0d3fcfe-1822-4ee2-bc29-c23605467f9fa478de;Expires=Tue, 23-Sep-2025 03:08:52 GMT;Secure;HttpOnly; SameSite=None x-content-type-options: nosniff x-stripe-server-envoy-start-time-us: 1695524932547430 x-stripe-server-envoy-upstream-service-time-ms: 3 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932547120 access-control-allow-origin: https://m.stripe.network access-control-allow-credentials: true access-control-allow-headers: Content-Type strict-transport-security: max-age=31556926; includeSubDomains; preload content-type: application/json;charset=utf-8 X-Firefox-Spdy: h2

	gtm.winred.com/g/collect?v=2&tid=G-X6H0114PDF&gtm=45je39k2&_p=1786741307&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.gse=1&sst.etld=google.no&sst.gcsub=region1&sst.tft=1695524929606&_s=2&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=user%20session%20start&ep.pagepath=%2Fvote-tim-scott%2Fsunny-and-sean%2F&ep.pagehostname=secure.winred.com&ep.parsedurl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean&epn.load_time_sec=-1695524929.3&epn.event_fire_time=1695524930650&ep.event_uuid=68b532c9-e5c1-4b2a-ae53-073e73425e0c&ep.isVideoPage=f&ep.referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&ep.category=donation%20landing%20page&ep.action=user%20session%20start&ep.label=landing%20page%20settings&ep.customCSS=f&ep.usercategory=anonymous&tfd=2742&richsstsse	104.16.250.69	403 Forbidden	9.6 kB
URL GET HTTP/3 gtm.winred.com/g/collect?v=2&tid=G-X6H0114PDF&gtm=45je39k2&_p=1786741307&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.gse=1&sst.etld=google.no&sst.gcsub=region1&sst.tft=1695524929606&_s=2&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=user%20session%20start&ep.pagepath=%2Fvote-tim-scott%2Fsunny-and-sean%2F&ep.pagehostname=secure.winred.com&ep.parsedurl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean&epn.load_time_sec=-1695524929.3&epn.event_fire_time=1695524930650&ep.event_uuid=68b532c9-e5c1-4b2a-ae53-073e73425e0c&ep.isVideoPage=f&ep.referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&ep.category=donation%20landing%20page&ep.action=user%20session%20start&ep.label=landing%20page%20settings&ep.customCSS=f&ep.usercategory=anonymous&tfd=2742&richsstsse IP 104.16.250.69:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA7:7A:96:02:64:2B:A6:58:5B:46:95:8C:1F:3F:C9:7D:EC:F9:14:6F ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (17514) Size 9.6 kB (9576 bytes) Hash 57ce2985220d7c051917cca5b5264252 7b3a6add39db3a95958cdeb25423c4db5be8649f ddc7e0032580f67d6bed15e5ff50824b32d1d592470242b44f060b6bde87392b HTTP Headers GET /g/collect?v=2&tid=G-X6H0114PDF&gtm=45je39k2&_p=1786741307&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.gse=1&sst.etld=google.no&sst.gcsub=region1&sst.tft=1695524929606&_s=2&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=user%20session%20start&ep.pagepath=%2Fvote-tim-scott%2Fsunny-and-sean%2F&ep.pagehostname=secure.winred.com&ep.parsedurl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean&epn.load_time_sec=-1695524929.3&epn.event_fire_time=1695524930650&ep.event_uuid=68b532c9-e5c1-4b2a-ae53-073e73425e0c&ep.isVideoPage=f&ep.referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&ep.category=donation%20landing%20page&ep.action=user%20session%20start&ep.label=landing%20page%20settings&ep.customCSS=f&ep.usercategory=anonymous&tfd=2742&richsstsse HTTP/1.1 Host: gtm.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Cookie: _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; _ga_X6H0114PDF=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga=GA1.1.2129217710.1695524931; _ga_CM6HT6HPTV=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga_LB6LPZ3Q3Z=GS1.1.1695524931.1.0.1695524931.60.0.0 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 403 Forbidden date: Sun, 24 Sep 2023 03:08:51 GMT content-type: text/html; charset=UTF-8 cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-frame-options: SAMEORIGIN cf-mitigated: challenge cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 80b7d3483e00b4fd-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 571 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932565932 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932565499 content-type: text/plain X-Firefox-Spdy: h2`

	secure.winred.com/cdn-cgi/challenge-platform/h/g/jsd/r/80b7d336bb7e569d	104.19.211.89	200 OK	1 B
URL POST HTTP/3 secure.winred.com/cdn-cgi/challenge-platform/h/g/jsd/r/80b7d336bb7e569d IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type very short file (no magic) Size 1 B (1 bytes) Hash eccbc87e4b5ce2fe28308fd9f2a7baf3 77de68daecd823babbb58edb1c8e14d7106e83bb 4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce HTTP Headers POST /cdn-cgi/challenge-platform/h/g/jsd/r/80b7d336bb7e569d HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 12384 Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; origin_url=https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260; _ga_X6H0114PDF=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga=GA1.1.2129217710.1695524931; _ga_CM6HT6HPTV=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga_LB6LPZ3Q3Z=GS1.1.1695524931.1.0.1695524931.60.0.0 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:51 GMT content-type: text/plain; charset=UTF-8 set-cookie: cf_clearance=0P0rrAaKEnL.0KWJRIPFththZ2mjNQPAHhnW.J.kxHA-1695524931-0-1-69b0ef05.6b0d8b6b.438cce4a-150.2.1695524931; path=/; expires=Mon, 23-Sep-24 03:08:51 GMT; domain=.secure.winred.com; HttpOnly; Secure; SameSite=None strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 80b7d34808e6569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 575 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932573641 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932573173 content-type: text/plain X-Firefox-Spdy: h2`

	r.stripe.com/0	54.187.119.242	200 OK	0 B
URL POST HTTP/2 r.stripe.com/0 IP 54.187.119.242:443 ASN #16509 AMAZON-02 Requested by https://js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html#apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&stripeJsId=1d55c9f5-1e30-491b-95c3-7204897993f9&stripeJsLoadTime=1695524929974&manualBrowserDeprecationRollout=false&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subject.stripe.com Fingerprint67:A5:07:D9:E6:2A:3E:65:38:7C:4B:8E:F5:01:E0:E9:02:15:49:54 ValidityTue, 01 Aug 2023 00:00:00 GMT - Thu, 02 Nov 2023 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /0 HTTP/1.1 Host: r.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 691 Origin: https://js.stripe.com DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK server: nginx date: Sun, 24 Sep 2023 03:08:52 GMT content-length: 0 access-control-allow-origin: https://js.stripe.com access-control-allow-credentials: true x-stripe-server-envoy-start-time-us: 1695524932574881 x-stripe-server-envoy-upstream-service-time-ms: 2 x-stripe-bg-intended-route-color: blue x-stripe-client-envoy-start-time-us: 1695524932574641 content-type: text/plain X-Firefox-Spdy: h2`

	maps.googleapis.com/maps-api-v3/api/js/54/6/common.js	142.250.74.10	200 OK	57 kB
URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/54/6/common.js IP 142.250.74.10:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49 ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT File type ASCII text, with very long lines (4497) Size 57 kB (56903 bytes) Hash 707059b78086cab8dbb047492b4c7c1f 103ba7c8cdc55eb359aa12500c4f19d38e0d9c5b b29b1817692148eb026c359732d2cc65c21a259050825754cecc42bc2f388ae0 HTTP Headers `GET /maps-api-v3/api/js/54/6/common.js HTTP/1.1 Host: maps.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: br content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="maps-api-js" report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]} content-length: 56903 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 19 Sep 2023 20:03:40 GMT expires: Wed, 18 Sep 2024 20:03:40 GMT cache-control: public, max-age=31536000 last-modified: Mon, 18 Sep 2023 20:18:59 GMT content-type: text/javascript vary: Accept-Encoding, Origin age: 371115 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	maps.googleapis.com/maps-api-v3/api/js/54/6/util.js	142.250.74.10	200 OK	50 kB
URL GET HTTP/3 maps.googleapis.com/maps-api-v3/api/js/54/6/util.js IP 142.250.74.10:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49 ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT File type ASCII text, with very long lines (582) Size 50 kB (49859 bytes) Hash 57d5468d624452f1930763403b660b64 ab8abbf7cb9f0e71aa88b2c1c5ff7bc8fce1e573 5b7efd6d37de2602371b70c8017f9a533b66246b64bcab1317f6333b6ee6392d HTTP Headers `GET /maps-api-v3/api/js/54/6/util.js HTTP/1.1 Host: maps.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-encoding: br content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="maps-api-js" report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]} content-length: 49859 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 21 Sep 2023 18:36:15 GMT expires: Fri, 20 Sep 2024 18:36:15 GMT cache-control: public, max-age=31536000 last-modified: Mon, 18 Sep 2023 20:18:59 GMT content-type: text/javascript vary: Accept-Encoding, Origin age: 203560 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	secure.winred.com/cdn-cgi/rum?	104.19.211.89	204 No Content	0 B
URL POST HTTP/3 secure.winred.com/cdn-cgi/rum? IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 824 Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=0P0rrAaKEnL.0KWJRIPFththZ2mjNQPAHhnW.J.kxHA-1695524931-0-1-69b0ef05.6b0d8b6b.438cce4a-150.2.1695524931; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; origin_url=https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260; _ga_X6H0114PDF=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga=GA1.1.2129217710.1695524931; _ga_CM6HT6HPTV=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga_LB6LPZ3Q3Z=GS1.1.1695524931.1.0.1695524931.60.0.0; __stripe_mid=ec52a7d6-4ee5-43af-85f6-42a18ee587e73ad5f4; __stripe_sid=2e63fbcc-de8f-4d58-addd-dfa8d16f429f5da38e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/3 204 No Content date: Sun, 24 Sep 2023 03:09:05 GMT access-control-allow-origin: https://secure.winred.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 80b7d39c99a1569d-OSL x-frame-options: DENY x-content-type-options: nosniff`

	secure.winred.com/api/v3/donations/live/rv_page_01haa5ammke8e22zgzbrx4qffn-fa2cbaeca613f728b53663fcd8f3757eb00e50d1?stream_id=108424781b71a98c2b709fd89160d6b66131d571&_=1695524930105	104.19.211.89	200 OK	437 B
URL GET HTTP/3 secure.winred.com/api/v3/donations/live/rv_page_01haa5ammke8e22zgzbrx4qffn-fa2cbaeca613f728b53663fcd8f3757eb00e50d1?stream_id=108424781b71a98c2b709fd89160d6b66131d571&_=1695524930105 IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with very long lines (507), with no line terminators Size 437 B (437 bytes) Hash 6e7ef81abaa86328f3d7e19256a0aa64 0d41a4c2e9fa110a58d6f6fab5473bcd51c917d5 30f556bbb8007ed6009c55ca4dade5f459839002da58d01335d41f0f51e3c0e9 HTTP Headers GET /api/v3/donations/live/rv_page_01haa5ammke8e22zgzbrx4qffn-fa2cbaeca613f728b53663fcd8f3757eb00e50d1?stream_id=108424781b71a98c2b709fd89160d6b66131d571&_=1695524930105 HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sW0hgm5WfemkU3hVIVrIsLtp27zLhKznjkpKJw1igC2exyEuGnzTtJoIyVrxwMv3h9mb6cjlRcSf94R8maIkDA== X-Requested-With: XMLHttpRequest DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; origin_url=https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:51 GMT content-type: application/json etag: W/"3de92682fe2cb870ec3e39d558a47433" cache-control: public, max-age=60 x-request-id: 04c8318d-f3ba-463b-acf2-7114ec8052bc x-runtime: 0.120807 vary: Origin, Accept-Encoding x-rack-cors: miss; no-origin strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff cf-cache-status: MISS expires: Sun, 24 Sep 2023 03:09:51 GMT server: cloudflare cf-ray: 80b7d3415ed8569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.googletagmanager.com/gtm.js?id=GTM-NTQZ9N	142.250.74.168	200 OK	419 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NTQZ9N IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18 ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT File type ASCII text, with very long lines (45475) Size 419 kB (419424 bytes) Hash e3206ded90fa65e0c9d4f9e9caed9624 7348737a1c3a1933f7eacd451f904a2ed63226ca 69d4b0d035be40b36a4d6a258d730cedc12fa1e5bd2946449658ace83afaa223 HTTP Headers `GET /gtm.js?id=GTM-NTQZ9N HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 24 Sep 2023 03:08:49 GMT expires: Sun, 24 Sep 2023 03:08:49 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 97819 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	d35ligi1n5bgzc.cloudfront.net/favicons/favicon_assets/000/015/569/original/Artboard.png	54.230.111.45	200 OK	1.5 kB
URL GET HTTP/2 d35ligi1n5bgzc.cloudfront.net/favicons/favicon_assets/000/015/569/original/Artboard.png IP 54.230.111.45:443 ASN #16509 AMAZON-02 Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data Size 1.5 kB (1512 bytes) Hash 7b9c8b7070c8f9c81fc9a133d26daf4e c6811975133bfdcbc35d1d7ef6c6e45ccfc8af1c fc1c77849ba3a6020b87884599c1aefa09a9e1d7bfed95ad3deec6a5d4c08902 HTTP Headers `GET /favicons/favicon_assets/000/015/569/original/Artboard.png HTTP/1.1 Host: d35ligi1n5bgzc.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png content-length: 1512 last-modified: Wed, 10 Jul 2019 18:21:57 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: FN8PLjpE4LnyaM50_d0emgSd0vAz496F accept-ranges: bytes server: AmazonS3 date: Sun, 24 Sep 2023 03:08:51 GMT etag: "7b9c8b7070c8f9c81fc9a133d26daf4e" vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: CAvnP9eT1TBH3HcD71l1vfRpiEEwN9KzveRkm2wp_5-CebOChrySDQ== X-Firefox-Spdy: h2

	js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html	151.101.0.176	200 OK	798 B
URL GET HTTP/2 js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (826), with no line terminators Size 798 B (798 bytes) Hash 5b3aa28a46cbd38f0de8b7f8a8a9ce62 5696aeb31cdaaccfb1f4d9b523d2051fe04e029e 9a869789f1fc7b551a0de2a615e0d00ad40557ba935c49232f6ed0bf6540ff73 HTTP Headers GET /v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:17 GMT etag: "c8839c7149dc8c999077f46486575853" cache-control: max-age=31536000 content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://api.stripe.com https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src data: https:; form-action 'none'; frame-src 'self' https://www.affirm.com https://b.stripecdn.com; img-src 'self' https://q.stripe.com https://b.stripecdn.com https://js.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; report-uri https://q.stripe.com/csp-report content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://api.stripe.com https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src data: https:; form-action 'none'; frame-src 'self' https://www.affirm.com https://b.stripecdn.com; img-src 'self' https://q.stripe.com https://b.stripecdn.com https://js.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 165880 x-request-id: adf12fc5-7fa1-4345-8377-4e1c8a0ca7cd x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2696 vary: Accept-Encoding timing-allow-origin: * content-length: 360 X-Firefox-Spdy: h2

	m.stripe.network/inner.html	151.101.0.176	200 OK	930 B
URL GET HTTP/2 m.stripe.network/inner.html IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html#url=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&title=I'm%20livid!&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&muid=NA&sid=NA&version=6&preview=false Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (950), with no line terminators Size 930 B (930 bytes) Hash f965fbd577896cec85e53f8723dd00c1 8f1efde6d3060695e8c4b15570dcc602d5217836 8203a3820f68e42441db1690aee0059757efb30a2862add5dd250f106f1a08e2 HTTP Headers `GET /inner.html HTTP/1.1 Host: m.stripe.network User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://js.stripe.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: max-age=300, public content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-/5Guo2nzv5n/w6ukZpOBZOtTJBJPSkJ6mhHpnBgm3Ls='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:51 GMT via: 1.1 varnish age: 21 x-request-id: 332a2d65-e131-48df-ba72-d7768f0d8ec8 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 4 x-timer: S1695524931.135889,VS0,VE0 vary: Accept-Encoding, Origin content-length: 540 X-Firefox-Spdy: h2

	js.stripe.com/v3/fingerprinted/data/countryRanges-1e8b3d390a07073baae3a9d50ccffdd5.json	151.101.0.176	200 OK	147 kB
URL GET HTTP/2 js.stripe.com/v3/fingerprinted/data/countryRanges-1e8b3d390a07073baae3a9d50ccffdd5.json IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html#locale=en&wait=false&mids[guid]=NA&mids[muid]=NA&mids[sid]=NA&style[base][iconColor]=%23697A8B&style[base][color]=%23354B70&style[base][lineHeight]=24px&style[base][fontFamily]=%22Helvetica+Neue%22%2C+Helvetica%2C+sans-serif&style[base][fontSmoothing]=antialiased&style[base][fontSize]=15px&style[base][fontWeight]=600&style[base][::placeholder][color]=%23697A8B&style[invalid][color]=%23ff4d55&style[invalid][::placeholder][color]=%23ff4d55&style[invalid][iconColor]=%23ff4d55&rtl=false&componentName=card&keyMode=live&apiKey=pk_live_JzNU2ovfdQBD0CxSZHjPm5Lv&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&controllerId=__privateStripeController5941 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators Size 147 kB (146811 bytes) Hash 1e8b3d390a07073baae3a9d50ccffdd5 9efa87bf1fe34f30ce41bb181dc5cc11b6e0fcd4 b1edba09a92cc8a52b69c18ec834510950b98f387cbe6014a53f92c5579a3725 HTTP Headers GET /v3/fingerprinted/data/countryRanges-1e8b3d390a07073baae3a9d50ccffdd5.json HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://js.stripe.com/v3/elements-inner-card-c8839c7149dc8c999077f46486575853.html Content-Type: application/x-www-form-urlencoded DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK last-modified: Thu, 08 Jun 2023 20:06:38 GMT etag: "1e8b3d390a07073baae3a9d50ccffdd5" cache-control: max-age=31536000 content-type: application/json strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:51 GMT via: 1.1 varnish age: 9266009 x-request-id: d32662a3-101a-43d1-9e84-4b703006c522 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 1799 vary: Accept-Encoding timing-allow-origin: * content-length: 39648 X-Firefox-Spdy: h2

	secure.winred.com/assets/icon-dropdown-background-52b35865280d33e30f9708871085b8db6862e75bc159d6e8e3cd77af6c36bdde.png	104.19.211.89	200 OK	290 B
URL GET HTTP/3 secure.winred.com/assets/icon-dropdown-background-52b35865280d33e30f9708871085b8db6862e75bc159d6e8e3cd77af6c36bdde.png IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 290 B (290 bytes) Hash e1ff72ca838ab1d21bef0c424872ca59 faa83b36c00fffb9f638ac483f92bd5656b2334a 96b04ef160f8b50520a48707a452fecdd6e6771c643706d5949020a2dea15962 HTTP Headers GET /assets/icon-dropdown-background-52b35865280d33e30f9708871085b8db6862e75bc159d6e8e3cd77af6c36bdde.png HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/assets/landing_page-26696a08d7f67e2ed0e87b072eeaf3b1c371c95248f9e53cc9d53262ab9e6a44.css Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=VHR0aVM4MS9PZFZnb1REZ1FnQW5Wdll0TU1ZVW1mMDlWQnBnL3RDRXAxdlQrTkR2TEZWbDhnWTFsTVoyaENHM3prby8xUlo1S2x0Z3doUkZpSEFBQnVlRWhFSUNnaE5FeHI1ZUZ0L0JORWY3WnZ6bDV3NjdxMGJoOTdENEc0QldkcFB6N1QzeTNyR1MzWU5sVzlmVU9ocWhKSnFmSXBqUGRNYUlxU3duOEdJY2ZVL1FqQ0NmK0pUM2dnbXVYN2J1SERvQjN5K0t4RWtNNzdRUWZ3S2hxM1MzRSt5bUlSQnJGTWhQU3BJQ2x2RGRZRy9KVnVQa0E2SGhkZkFTVkdHL1kzRXNHeDV5YnkwdkhUelNydFJDOEpKTXU5UDRtckJrZVdWRUtXNzBwRU5KYmYxWWltSkhQeHgrRmhETVJZT1BWRkxDVjJDUWkwbFhLOVpYTEEyQ25QUVRZN2VkR2loekRyeXhDaHFYL0w4PS0tTDU3SWpvOGJRZVNiUkNUYUVTS1BXUT09--5ec90b129c4296ee7c3f212a4367f420ba436a6b Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:50 GMT content-type: image/webp content-length: 290 cf-bgj: imgq:85,h2pri cf-polished: origFmt=png, origSize=560 content-disposition: inline; filename="icon-dropdown-background-52b35865280d33e30f9708871085b8db6862e75bc159d6e8e3cd77af6c36bdde.webp" vary: Accept etag: "571ee659b7ee9af9291e7dd8176721d5" last-modified: Tue, 22 Aug 2023 02:31:18 GMT strict-transport-security: max-age=0; includeSubDomains x-amz-id-2: D2MrGbLjltHlGWkGCDhK+cWi2QFgK1SVslD5MBYTYCLqVjot1uWDKk0h0wxSDG9hREP1sJld2m0= x-amz-request-id: P7X06CQPW5Y1VW1A x-amz-version-id: 6xHq2fWq2rnO.BDG4GDyPFvg..Kc_eWE x-content-type-options: nosniff cf-cache-status: REVALIDATED expires: Sun, 24 Sep 2023 07:08:50 GMT cache-control: public, max-age=14400 accept-ranges: bytes server: cloudflare cf-ray: 80b7d33c4d56569d-OSL alt-svc: h3=":443"; ma=86400

	d35ligi1n5bgzc.cloudfront.net/logos/logo_assets/000/605/168/large/Never_Back_Down_GIF.gif	54.230.111.45	200 OK	527 kB
URL GET HTTP/2 d35ligi1n5bgzc.cloudfront.net/logos/logo_assets/000/605/168/large/Never_Back_Down_GIF.gif IP 54.230.111.45:443 ASN #16509 AMAZON-02 Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type GIF image data, version 89a, 400 x 400\012- data Size 527 kB (527004 bytes) Hash 8f22237b98779956a9fe3f9d2f671c04 b96a6dd7413e4f4f2c3e291223d5116518752206 a5dad5dcc8e434b9a407f58c1bfa01e7c62db7f16376bba0581ecd8d551130ca HTTP Headers `GET /logos/logo_assets/000/605/168/large/Never_Back_Down_GIF.gif HTTP/1.1 Host: d35ligi1n5bgzc.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/gif content-length: 527004 last-modified: Fri, 14 Apr 2023 19:41:29 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 18kPvnygkCbGz2Q1vLxt7xMhmzIpfUu8 accept-ranges: bytes server: AmazonS3 date: Sun, 24 Sep 2023 03:08:50 GMT etag: "8f22237b98779956a9fe3f9d2f671c04" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 8VrHZnDrmG8qsoUBa0iKi5IpYn8yLNxG9Ag5K61vr96NIM47-jCgjw== age: 66861 X-Firefox-Spdy: h2

	m.stripe.network/out-4.5.43.js	151.101.0.176	200 OK	89 kB
URL GET HTTP/2 m.stripe.network/out-4.5.43.js IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://m.stripe.network/inner.html#url=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&title=I'm%20livid!&referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&muid=NA&sid=NA&version=6&preview=false Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type Size 89 kB (88751 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /out-4.5.43.js HTTP/1.1 Host: m.stripe.network User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://m.stripe.network/inner.html Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: max-age=300, public content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:51 GMT via: 1.1 varnish age: 27 x-request-id: e6fb90dc-9eff-4a34-8e79-f886289a0a91 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 4 x-timer: S1695524931.446861,VS0,VE0 vary: Accept-Encoding, Origin content-length: 15509 X-Firefox-Spdy: h2

	d35ligi1n5bgzc.cloudfront.net/profiles/images/000/080/098/square/119772450_10160150038519307_5764399042612192110_o.jpg	54.230.111.45	200 OK	8.2 kB
URL GET HTTP/2 d35ligi1n5bgzc.cloudfront.net/profiles/images/000/080/098/square/119772450_10160150038519307_5764399042612192110_o.jpg IP 54.230.111.45:443 ASN #16509 AMAZON-02 Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data Size 8.2 kB (8243 bytes) Hash 910d575c5102c70cdd4809e8b3493051 4b2ba23e9e891c1beaf813e192de02246371201b 5c67109cfbeb2c1f809d0df86e36cbc86a4e27854181d994b5c8a949e4dabfc1 HTTP Headers GET /profiles/images/000/080/098/square/119772450_10160150038519307_5764399042612192110_o.jpg HTTP/1.1 Host: d35ligi1n5bgzc.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: image/jpeg content-length: 8243 last-modified: Sat, 17 Jul 2021 21:01:22 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 1nYuxPjsa24W6zrAykkXm_7xB8FCH_0R accept-ranges: bytes server: AmazonS3 date: Sun, 24 Sep 2023 03:08:50 GMT etag: "910d575c5102c70cdd4809e8b3493051" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: WK69m9oqAHwenyvbGRBpPbLF9hZqzcg6q7VLhX-E6vo4rKdlGA-Ecg== age: 78741 X-Firefox-Spdy: h2

	js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html	151.101.0.176	200 OK	325 B
URL GET HTTP/2 js.stripe.com/v3/controller-9239195964f74ac7d035010429fa6fc6.html IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (335), with no line terminators Size 325 B (325 bytes) Hash 7e91621b51ab61066239211f6c12fd87 40d90ddb99dfc9cffcab203856629c226738da0a 3bf352c79c9e41fe6134e4aef7de439f978b81d1dff3bc4651642a035ff0f3eb HTTP Headers GET /v3/controller-9239195964f74ac7d035010429fa6fc6.html HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK last-modified: Thu, 21 Sep 2023 22:20:16 GMT etag: "9239195964f74ac7d035010429fa6fc6" cache-control: max-age=60 content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://api.stripe.com https://merchant-ui-api.stripe.com https://stripe.com/cookie-settings/enforcement-mode https://errors.stripe.com https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src 'self'; img-src 'self' https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self' 'sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk='; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 39 x-request-id: 380ee45c-eec6-4158-82c3-c1030427b3d5 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 2 vary: Accept-Encoding timing-allow-origin: * content-length: 188 X-Firefox-Spdy: h2

	gtm.winred.com/g/collect?v=2&tid=G-X6H0114PDF&gtm=45je39k2&_p=1786741307&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.gse=1&sst.etld=google.no&sst.gcsub=region1&sst.tft=1695524929606&_s=1&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=page_view&_fv=1&_nsi=1&_ss=1&ep.pagepath=%2Fvote-tim-scott%2Fsunny-and-sean%2F&ep.pagehostname=secure.winred.com&ep.parsedurl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean&epn.load_time_sec=-1695524929.3&epn.event_fire_time=1695524930577&ep.event_uuid=a74860d8-2d71-4e98-a9a8-95e91c68af46&ep.isVideoPage=f&ep.referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&tfd=1797&richsstsse	104.16.250.69	403 Forbidden	17 kB
URL GET HTTP/2 gtm.winred.com/g/collect?v=2&tid=G-X6H0114PDF&gtm=45je39k2&_p=1786741307&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.gse=1&sst.etld=google.no&sst.gcsub=region1&sst.tft=1695524929606&_s=1&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=page_view&_fv=1&_nsi=1&_ss=1&ep.pagepath=%2Fvote-tim-scott%2Fsunny-and-sean%2F&ep.pagehostname=secure.winred.com&ep.parsedurl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean&epn.load_time_sec=-1695524929.3&epn.event_fire_time=1695524930577&ep.event_uuid=a74860d8-2d71-4e98-a9a8-95e91c68af46&ep.isVideoPage=f&ep.referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&tfd=1797&richsstsse IP 104.16.250.69:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA7:7A:96:02:64:2B:A6:58:5B:46:95:8C:1F:3F:C9:7D:EC:F9:14:6F ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (16665) Size 17 kB (16680 bytes) Hash 82c62fb02dbb429f389e8edbef22d5ee 7b861b608bb274e23526f05a77d2dba4c56d4f37 373439ecd2c50235acea4efa1584e12d166182afa589e13c58cb8954ad9a7fed HTTP Headers GET /g/collect?v=2&tid=G-X6H0114PDF&gtm=45je39k2&_p=1786741307&cid=2129217710.1695524931&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&sst.uc=NO&sst.gse=1&sst.etld=google.no&sst.gcsub=region1&sst.tft=1695524929606&_s=1&sid=1695524931&sct=1&seg=0&dl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260&dr=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&dt=I%27m%20livid!&en=page_view&_fv=1&_nsi=1&_ss=1&ep.pagepath=%2Fvote-tim-scott%2Fsunny-and-sean%2F&ep.pagehostname=secure.winred.com&ep.parsedurl=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean&epn.load_time_sec=-1695524929.3&epn.event_fire_time=1695524930577&ep.event_uuid=a74860d8-2d71-4e98-a9a8-95e91c68af46&ep.isVideoPage=f&ep.referrer=https%3A%2F%2Fsecure.winred.com%2Fvote-tim-scott%2Fsunny-and-sean%2F%3Fmoney_pledge%3Dtrue%26utm_campaign%3D20230915_Adams-V4.110662_t1388126-1260%26ex_tid%3D20230915_Adams-V4.110662_t1388126-1260%26__cf_chl_tk%3DTQEjlULxMcvUjAwbpQ4FP9p4Q67AC.qiS3tHALyLZIg-1695524925-0-gaNycGzNDHs&tfd=1797&richsstsse HTTP/1.1 Host: gtm.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Cookie: _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b; _gcl_au=1.1.1297400531.1695524931; _ga_X6H0114PDF=GS1.1.1695524931.1.0.1695524931.0.0.0; _ga=GA1.1.2129217710.1695524931 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/2 403 Forbidden date: Sun, 24 Sep 2023 03:08:51 GMT content-type: text/html; charset=UTF-8 cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-frame-options: SAMEORIGIN cf-mitigated: challenge cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 80b7d343e81856b4-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	secure.winred.com/stylesheets/rv_page_01haa5ammke8e22zgzbrx4qffn/1694706052.css	104.19.211.89	200 OK	8.2 kB
URL GET HTTP/3 secure.winred.com/stylesheets/rv_page_01haa5ammke8e22zgzbrx4qffn/1694706052.css IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (8191), with no line terminators Size 8.2 kB (8184 bytes) Hash 81722ced9d702aac8ff6109099e6fff5 056d986c2d1cbab5c0fab066cc66f4fba374cc0a e15492cc6e47c5a0ae22dedc524e8dd7f41a5c07e733392bc069cae2147c4839 HTTP Headers GET /stylesheets/rv_page_01haa5ammke8e22zgzbrx4qffn/1694706052.css HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=VHR0aVM4MS9PZFZnb1REZ1FnQW5Wdll0TU1ZVW1mMDlWQnBnL3RDRXAxdlQrTkR2TEZWbDhnWTFsTVoyaENHM3prby8xUlo1S2x0Z3doUkZpSEFBQnVlRWhFSUNnaE5FeHI1ZUZ0L0JORWY3WnZ6bDV3NjdxMGJoOTdENEc0QldkcFB6N1QzeTNyR1MzWU5sVzlmVU9ocWhKSnFmSXBqUGRNYUlxU3duOEdJY2ZVL1FqQ0NmK0pUM2dnbXVYN2J1SERvQjN5K0t4RWtNNzdRUWZ3S2hxM1MzRSt5bUlSQnJGTWhQU3BJQ2x2RGRZRy9KVnVQa0E2SGhkZkFTVkdHL1kzRXNHeDV5YnkwdkhUelNydFJDOEpKTXU5UDRtckJrZVdWRUtXNzBwRU5KYmYxWWltSkhQeHgrRmhETVJZT1BWRkxDVjJDUWkwbFhLOVpYTEEyQ25QUVRZN2VkR2loekRyeXhDaHFYL0w4PS0tTDU3SWpvOGJRZVNiUkNUYUVTS1BXUT09--5ec90b129c4296ee7c3f212a4367f420ba436a6b Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:49 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block cache-control: public, max-age=31556952 x-request-id: df638f65-3680-4af0-81b2-2b280e3b6ce1 x-runtime: 0.048102 x-rack-cors: miss; no-origin strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff last-modified: Sun, 24 Sep 2023 03:08:49 GMT cf-cache-status: MISS expires: Mon, 23 Sep 2024 08:58:01 GMT server: cloudflare cf-ray: 80b7d3389be4569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html	151.101.0.176	200 OK	200 B
URL GET HTTP/2 js.stripe.com/v3/m-outer-27c67c0d52761104439bb051c7856ab1.html IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators Size 200 B (200 bytes) Hash acbbe1fa54e2a13f54d45063298add91 21f1df8ff610910d8092f06ba94f840abcb5f15b 98feb5f53609e13efa02a6b4d9a8c685aa1109b6b34db45b39c424c82c5bde02 HTTP Headers GET /v3/m-outer-27c67c0d52761104439bb051c7856ab1.html HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK last-modified: Fri, 08 Sep 2023 21:23:50 GMT etag: "27c67c0d52761104439bb051c7856ab1" cache-control: max-age=31536000 content-type: text/html; charset=utf-8 content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:50 GMT via: 1.1 varnish age: 1316657 x-request-id: 537f6d4c-3cb2-433a-ade2-005ec13f23a7 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 23093 vary: Accept-Encoding timing-allow-origin: * content-length: 154 X-Firefox-Spdy: h2

	secure.winred.com/assets/landing_page-26696a08d7f67e2ed0e87b072eeaf3b1c371c95248f9e53cc9d53262ab9e6a44.css	104.19.211.89	200 OK	224 kB
URL GET HTTP/3 secure.winred.com/assets/landing_page-26696a08d7f67e2ed0e87b072eeaf3b1c371c95248f9e53cc9d53262ab9e6a44.css IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsecure.winred.com Fingerprint60:BA:9B:F0:DD:53:95:A4:CF:FD:1C:98:A6:4A:AA:82:C2:A7:0F:05 ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 21 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (33312) Size 224 kB (224531 bytes) Hash 32727b629661f8835bf7c4e0a3261081 79ca75f444aeca13992ead4941a68124e16fda27 0ed3948188f1c7b2a67adfac46f4ead2860b2526555ebb327dd32490cdb07fab HTTP Headers GET /assets/landing_page-26696a08d7f67e2ed0e87b072eeaf3b1c371c95248f9e53cc9d53262ab9e6a44.css HTTP/1.1 Host: secure.winred.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Cookie: __cf_bm=CnSSHIQqoujLjnQvwWequLgSgJKhJUonza4JC8xUPkc-1695524924-0-AZ4OH850/ilAhEqNCQxoFuSOaxT5l02y2yzg4H3pgHlWM80kJDoBU8e1x89BSw7iIitstAdYrar/T47JeN7E9Lo=; cf_chl_2=9f31ff2d9f909d7; cf_clearance=2ttFNxhJpme7Z7kddqN64sgWS2ink.9rA17mTTLL_Gc-1695524925-0-1-69b0ef05.6b0d8b6b.438cce4a-150.0.0; _revv_v3_session=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--5ec90b129c4296ee7c3f212a4367f420ba436a6b Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Sun, 24 Sep 2023 03:08:49 GMT content-type: text/css cf-bgj: minify cf-polished: origSize=227653 etag: W/"6e0974b78c46b8d622107652769b20fc" last-modified: Mon, 18 Sep 2023 16:16:09 GMT strict-transport-security: max-age=0; includeSubDomains x-amz-id-2: Xbw39rYXVv6yR8tUePTSxnZ8tpIzJ5jDkKaeFPffOgfC8RGCaLaDPs4zFiHcCKUpHrKW2m+xmek= x-amz-request-id: HGZZM4CCX0676WME x-amz-version-id: M7YZNVVltO6.3zoyopP9QDiVXCBA18pG x-content-type-options: nosniff cf-cache-status: REVALIDATED expires: Sun, 24 Sep 2023 07:08:49 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 80b7d3389be3569d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	js.stripe.com/v3/	151.101.0.176	200 OK	542 kB
URL GET HTTP/2 js.stripe.com/v3/ IP 151.101.0.176:443 ASN #54113 FASTLY Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerDigiCert Inc Subjecta.stripecdn.com Fingerprint43:4B:3E:AF:85:10:19:F0:BC:A3:5C:1D:23:DF:47:B4:C6:87:EE:5F ValidityMon, 31 Jul 2023 00:00:00 GMT - Thu, 30 Nov 2023 23:59:59 GMT File type Size 542 kB (541927 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /v3/ HTTP/1.1 Host: js.stripe.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK last-modified: Fri, 22 Sep 2023 20:48:37 GMT etag: "2f43f864ab4d97d636908d4a345359f6" cache-control: max-age=60 content-type: text/javascript; charset=utf-8 strict-transport-security: max-age=31556926; includeSubDomains; preload x-content-type-options: nosniff access-control-allow-origin: * server: Fastly content-encoding: br accept-ranges: bytes date: Sun, 24 Sep 2023 03:08:49 GMT via: 1.1 varnish age: 5 x-request-id: ce4bc1b1-ca10-4050-bc76-ee70fe02b237 x-served-by: cache-bma1645-BMA x-cache: HIT x-cache-hits: 1 vary: Accept-Encoding timing-allow-origin: * content-length: 150916 X-Firefox-Spdy: h2

	app.revv.co/api/v3/users/current_with_info?organization_token=rv_org_6KNvU36Z2qWJ2gfUBWqGZGoc&redirect=https://secure.winred.com/vote-tim-scott/sunny-and-sean?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260	104.19.211.89	403 Forbidden	8.0 kB
URL GET HTTP/2 app.revv.co/api/v3/users/current_with_info?organization_token=rv_org_6KNvU36Z2qWJ2gfUBWqGZGoc&redirect=https://secure.winred.com/vote-tim-scott/sunny-and-sean?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 IP 104.19.211.89:443 ASN #13335 CLOUDFLARENET Requested by https://secure.winred.com/vote-tim-scott/sunny-and-sean/?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint34:75:E0:9D:A2:F0:A6:85:E1:98:E3:CE:90:E7:D7:25:78:07:8B:22 ValiditySun, 06 Aug 2023 00:00:00 GMT - Sun, 04 Aug 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8131), with no line terminators Size 8.0 kB (8030 bytes) Hash 36b2375c1e0104047b9d9250bccd1a9b 8d9c3d742c92638734201b8fc3be8d4bcb384f5a 5b2559a39a07314adbe4caf47e39c5e0e665b1bd6386bf501de9d4b181e004a5 HTTP Headers GET /api/v3/users/current_with_info?organization_token=rv_org_6KNvU36Z2qWJ2gfUBWqGZGoc&redirect=https://secure.winred.com/vote-tim-scott/sunny-and-sean?money_pledge=true&utm_campaign=20230915_Adams-V4.110662_t1388126-1260&ex_tid=20230915_Adams-V4.110662_t1388126-1260 HTTP/1.1 Host: app.revv.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://secure.winred.com DNT: 1 Connection: keep-alive Referer: https://secure.winred.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 403 Forbidden date: Sun, 24 Sep 2023 03:08:51 GMT content-type: text/html; charset=UTF-8 cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin origin-agent-cluster: ?1 permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-frame-options: SAMEORIGIN cf-mitigated: challenge cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT set-cookie: __cf_bm=qAozcSebSEgCC1U0T0H.z07x932NEM3anZQkoi8QX8U-1695524931-0-AX7GfEZWa8rAT+EzqiiQ/p+p6Ls/7aW43Img3011wjqWg+Ly51TT9FG2sz4q/+thBuOdKLlEtEuKzeGh4MpAE04=; path=/; expires=Sun, 24-Sep-23 03:38:51 GMT; domain=.revv.co; HttpOnly; Secure; SameSite=None vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 80b7d343cd235684-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (62)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash