www.sprkcvr.com/2H9TBTBD7/2LMZLS6/?sub2=6570aa871b0b60000110fc12&sub1=701_884089
302 Found 264 B URL User Request GET HTTP/2 www.sprkcvr.com/2H9TBTBD7/2LMZLS6/?sub2=6570aa871b0b60000110fc12&sub1=701_884089
IP
Certificate IssuerStarfield Technologies, Inc.
Subjectsprkcvr.com
Fingerprint9B:7C:C4:E0:8B:E1:BE:9A:87:D8:65:02:CC:93:7E:43:63:6C:3C:52
ValiditySun, 12 Feb 2023 19:04:25 GMT - Fri, 15 Mar 2024 19:04:25 GMT
File type HTML document, ASCII text
Hash 356fe80d3043136864f6d05959933adf
58875165daa5094cdfdc85ff38a34f6090818ad1
196d44663ec44176c1c1943ba0f3e2b76d2af778610b3e38f80fdce6ff4ddf73
GET /2H9TBTBD7/2LMZLS6/?sub2=6570aa871b0b60000110fc12&sub1=701_884089 HTTP/1.1
Host: www.sprkcvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Wed, 06 Dec 2023 17:08:42 GMT
content-type: text/html; charset=utf-8
content-length: 264
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
location: https://www.sprkcvr.com/2H9TBTBD7/2N1GGNK/?__rpt=0&__po=921&__ptid=c5bf72d6dae64e1da4326a6ff45f65c0&__rpa=0&__rc=1&sub1=701_884089&sub2=6570aa871b0b60000110fc12&sub3=&sub4=&sub5=&source_id=&__pcd=3
set-cookie: uniqueClick_2LMZLS6=f115fcea-e396-4990-9eca-d653d19d2c47:1701882522; Path=/; Expires=Fri, 05 Jan 2024 17:08:42 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 5a2236d8-19f0-4674-a2a1-3423dadfa6d2
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sprkcvr.com/2H9TBTBD7/2N1GGNK/?__rpt=0&__po=921&__ptid=c5bf72d6dae64e1da4326a6ff45f65c0&__rpa=0&__rc=1&sub1=701_884089&sub2=6570aa871b0b60000110fc12&sub3=&sub4=&sub5=&source_id=&__pcd=3
302 Found 401 B URL User Request GET HTTP/2 www.sprkcvr.com/2H9TBTBD7/2N1GGNK/?__rpt=0&__po=921&__ptid=c5bf72d6dae64e1da4326a6ff45f65c0&__rpa=0&__rc=1&sub1=701_884089&sub2=6570aa871b0b60000110fc12&sub3=&sub4=&sub5=&source_id=&__pcd=3
IP
Certificate IssuerStarfield Technologies, Inc.
Subjectsprkcvr.com
Fingerprint9B:7C:C4:E0:8B:E1:BE:9A:87:D8:65:02:CC:93:7E:43:63:6C:3C:52
ValiditySun, 12 Feb 2023 19:04:25 GMT - Fri, 15 Mar 2024 19:04:25 GMT
File type HTML document, ASCII text, with very long lines (399)
Hash 2b41bd4e669e0a3ed1456d7cc3e7007d
6b2f53f4531e1d3f3141996407b24a1a0d55f8ef
28172ed4c9c09c6ad7604ccc2b9f371f3199f203031863f0876e7670e9df7adb
GET /2H9TBTBD7/2N1GGNK/?__rpt=0&__po=921&__ptid=c5bf72d6dae64e1da4326a6ff45f65c0&__rpa=0&__rc=1&sub1=701_884089&sub2=6570aa871b0b60000110fc12&sub3=&sub4=&sub5=&source_id=&__pcd=3 HTTP/1.1
Host: www.sprkcvr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uniqueClick_2LMZLS6=f115fcea-e396-4990-9eca-d653d19d2c47:1701882522
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 06 Dec 2023 17:08:43 GMT
content-type: text/html; charset=utf-8
content-length: 401
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
location: https://www.sweepswinner.com/Lander.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
set-cookie: uniqueClick_2N1GGNK=3f750a7e-4f48-47f5-a261-1cc503d513bf:1701882523; Path=/; Expires=Thu, 07 Dec 2023 17:08:43 GMT; Secure; SameSite=None
transaction_id=883a51fdd1fe4baca1da8b1bb97922e3; Path=/; Expires=Tue, 05 Mar 2024 17:08:43 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 358a87a0-4901-4346-b38c-61e4162b20b9
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sweepswinner.com/Lander.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
301 Moved Permanently 462 B URL User Request GET HTTP/2 www.sweepswinner.com/Lander.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (390), with CRLF line terminators
Hash e5d9de6226f5eed40a95ca3d88c680a1
1683a3c2527bf83bb24655824e8aece878ff12da
662d11cb625da22cc72cb8e8755951d7bcc9cda156537276326a73b038b74adf
GET /Lander.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear= HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:43 GMT
server: Microsoft-IIS/10.0
location: /Lander?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
set-cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9;Path=/;HttpOnly;Secure;Domain=www.sweepswinner.com
ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9;Path=/;HttpOnly;SameSite=None;Secure;Domain=www.sweepswinner.com
content-length: 462
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Lander?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
302 Found 490 B URL User Request GET HTTP/2 www.sweepswinner.com/Lander?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (418), with CRLF line terminators
Hash 9d3ee8c53fd30e23c1816d62b4944cee
349a186523d613aed1a8d3af6c55b7b7630220ea
6e49433c5e15d4e749263b5d84d8b2895a411f8fc36889b32601b513915a01c8
GET /Lander?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear= HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:43 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
location: /Sweepstakes/ApplyStepOneEmail.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
set-cookie: ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; path=/; HttpOnly; SameSite=Lax
content-length: 490
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
301 Moved Permanently 485 B URL User Request GET HTTP/2 www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (413), with CRLF line terminators
Hash 98be0161aab233ddcfd4646ca5f6689d
65a3bf44928be487a45ce6510ae331b0471b82c3
e416e042472892ee4839b0c19204ace589b08220b40ba0a62da608fafc315835
GET /Sweepstakes/ApplyStepOneEmail.aspx?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear= HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:43 GMT
server: Microsoft-IIS/10.0
location: /Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
content-length: 485
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
200 OK 16 kB URL User Request GET HTTP/2 www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10224), with CRLF, LF line terminators
Hash e1eab59596031b1a342b318456b98f56
dfb04fa026018bd0c3a8a300a12b2b6157a442e6
777063ba990cc5fdac64573caf8fa57fed5e5a87db0953a86980c61a6a9e864d
GET /Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear= HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:44 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
content-length: 15938
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/foundation/6.3.1/js/foundation.min.js
200 OK 24 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/foundation/6.3.1/js/foundation.min.js
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32024)
Hash 7ed39eb42c8c450b59a24bab9cfa7fae
7fdd3fee90709f703fac533b6061864fcd7ec206
35ddb1ce73a4ac4f4792b00c8b8c56cbf857910ada5e2a0183d898b01adc16bb
GET /ajax/libs/foundation/6.3.1/js/foundation.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:08:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 24181
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e64-1e276"
last-modified: Mon, 04 May 2020 16:10:12 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1089134
expires: Mon, 25 Nov 2024 17:08:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H6ZPI55XL0e6Wznuxa4glCl%2FwggmriTNE5voO1j6tZc0IZIvneBQvuqDJnXfn%2FChED6x7yLPNTSPJLj0sO6G0ZFhnQxSn2GSip%2BqageaMD%2BbKykaCyQXfY7%2Feolsoiw7S7GEiaI%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 831621f68e231c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/2.1.4/jquery.min.js
200 OK 27 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/2.1.4/jquery.min.js
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32025)
Hash 4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:08:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 26646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1499c"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1160981
expires: Mon, 25 Nov 2024 17:08:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7p0%2BmQCOiQfNrraRH9Sk13QYjt7p%2FZP87L9A8M8X76mYXJ7Zw8GCQ9aRcKQnv%2FGQaeX6dYiBWJLxtAkGjIFVRRNFIwesJncZEfoV7uuQpKWhUxj7BP399kjwcepKT8zzrYET3NCG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 831621f68e191c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.sweepswinner.com/Sweepstakes/css/user-styles.css
200 OK 2.6 kB URL GET HTTP/2 www.sweepswinner.com/Sweepstakes/css/user-styles.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type ASCII text, with CRLF line terminators
Hash a6fd006a699a751cbd8d44427cb95a66
386fa8ae63b97d87ee2d865d93965b6b779ad850
36e0e0b8222e724d8dabe8d161374fef13632680f0d4ea34c547a53e54a321bc
GET /Sweepstakes/css/user-styles.css HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Wed, 06 Dec 2023 17:08:44 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
vary: Accept-Encoding
content-length: 2637
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Web/Resources/Scripts/Azure/appinsights.js
200 OK 2.2 kB URL GET HTTP/2 www.sweepswinner.com/Web/Resources/Scripts/Azure/appinsights.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (4078), with CRLF line terminators
Hash 1b368f5f40f56c3a7afd3a60c26fbbb6
04038c4c05867c7af2c0369baeb49e8d66025e39
2e5721c07a38d5f77f44a6383b05b29cdd4ab47f8abfcb61f44f938f4c5f05b3
GET /Web/Resources/Scripts/Azure/appinsights.js HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Wed, 06 Dec 2023 17:08:44 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
vary: Accept-Encoding
content-length: 2240
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-499133920
200 OK 72 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=AW-499133920
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3026)
Hash 6b354e916a8c4b839e2debb2d0fb7014
0e6a0c1af2546e5d3899423a9df8e4048a5bf972
cc5726674e3053889786a52b4febd692ea66509e8fbb56b74bd0ebb5c90f1b5d
GET /gtag/js?id=AW-499133920 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 17:08:45 GMT
expires: Wed, 06 Dec 2023 17:08:45 GMT
cache-control: private, max-age=900
last-modified: Wed, 06 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 72462
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sweepswinner.com/WebResource.axd?d=QrKDZSYIEyrPfJPlfELKoezqtxWQU-pVPe_jdB4r5u9nYD66_HbOQjkw3tvtbI-bpjjEt3a2HJBE2KOIV7EqVc7DMoHkAv85LrJmgbGFgegoFNDeJ8PWSwjdSSpUJV5VQnbU-8IKweaTyrDIjcRtgcEDDnsRtyyVg6QT_e-1fAU1&t=638322022800000000
200 OK 1.2 kB URL GET HTTP/2 www.sweepswinner.com/WebResource.axd?d=QrKDZSYIEyrPfJPlfELKoezqtxWQU-pVPe_jdB4r5u9nYD66_HbOQjkw3tvtbI-bpjjEt3a2HJBE2KOIV7EqVc7DMoHkAv85LrJmgbGFgegoFNDeJ8PWSwjdSSpUJV5VQnbU-8IKweaTyrDIjcRtgcEDDnsRtyyVg6QT_e-1fAU1&t=638322022800000000
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c4b141805fb8b6dad8229ebbfb3c34ac
04a3ce89232623c8d78c3a7b972888adad01b43c
51ac77987144b303044ba899381ec108fb1af3ffc814b05fbc28cc6262dc8fce
GET /WebResource.axd?d=QrKDZSYIEyrPfJPlfELKoezqtxWQU-pVPe_jdB4r5u9nYD66_HbOQjkw3tvtbI-bpjjEt3a2HJBE2KOIV7EqVc7DMoHkAv85LrJmgbGFgegoFNDeJ8PWSwjdSSpUJV5VQnbU-8IKweaTyrDIjcRtgcEDDnsRtyyVg6QT_e-1fAU1&t=638322022800000000 HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
date: Wed, 06 Dec 2023 17:08:44 GMT
server: Microsoft-IIS/10.0
cache-control: public
content-encoding: gzip
expires: Thu, 05 Dec 2024 15:29:53 GMT
last-modified: Fri, 06 Oct 2023 15:18:00 GMT
vary: Accept-Encoding
content-length: 1155
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/scripts/sparkjqv.parsley.hfields.core.1.4.min.js
200 OK 47 kB URL GET HTTP/2 www.sweepswinner.com/scripts/sparkjqv.parsley.hfields.core.1.4.min.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (34038), with CRLF line terminators
Hash 6b5c3952d5f523b783784cfd0b2d7a1b
9265cda576e56cab70cfc6ecd844d1843be64117
99089200f7478d52116ef18480f941904383d9c03b0da33998257e72d25e06f2
GET /scripts/sparkjqv.parsley.hfields.core.1.4.min.js HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Wed, 06 Dec 2023 17:08:44 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
vary: Accept-Encoding
content-length: 47258
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Scripts/sparklib.core.1.1.js
200 OK 44 kB URL GET HTTP/2 www.sweepswinner.com/Scripts/sparklib.core.1.1.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (34038), with CRLF line terminators
Hash ee8f195e82a5ee3505a191946cabc1ad
b5cfafe2ee41b5282e37237885134e3aa712557a
e5d69d2bf3937307446cdaea2eac3df419ba7f7f0de889cd29b01974d61206fa
GET /Scripts/sparklib.core.1.1.js HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
date: Wed, 06 Dec 2023 17:08:44 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
vary: Accept-Encoding
content-length: 44176
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/arrow-top.png
200 OK 2.7 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/arrow-top.png
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type PNG image data, 55 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f0a15ade6d231e346a166d5ae532d41
396f8d150fb040ca35b781690d3c06a9e26095da
5c4d4aec46f1c2999513a3d2e78d21145a95abf4f44fc6376cc91fea0c84d5eb
GET /Sweepstakes/img/arrow-top.png HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 2654
content-type: image/png
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_REMOTE_HIT
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAAANrpNB36JMRIJxJc5zSbJ+QU1TMDRFREdFMTkxNgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAAC/BtRTMwQ6SaSP1QsdcQSLU1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:44 GMT
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/shopping.svg
200 OK 791 B URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/shopping.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0a30a3c1fe26b378a1837aa5238ef9cd
1a41eb90bb74f8b9b92ac063892f59c70c224e2f
ca800c9cf34b86873d4fa5018ace562a8202e7c8a2d7ce23ed29bc3124867b5c
GET /Sweepstakes/img/shopping.svg HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 791
content-type: image/svg+xml
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_REMOTE_HIT
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAAB+qExIZ+y4S7n0Ghm0+2YGQU1TMDRFREdFMTkwOQAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAABeiAmRmMwZQrIKVwrTqAPKU1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:44 GMT
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/main-bg-small.png
200 OK 67 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/main-bg-small.png
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type PNG image data, 320 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash 10a23b2a43edc98b969e7056462bdc54
29b7022d0f220a08e7b8be08234a7fb3605dac8b
ea860ff9ca5e60d0f6ca6b8d400361861d7cbac444dd4e84c2d01cdf002d75ad
GET /Sweepstakes/img/main-bg-small.png HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 67115
content-type: image/png
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_REMOTE_HIT
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAABRuV5E6IEaQKL37kQPoHiPQU1TMDRFREdFMTkyMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAAARSiFM4suFR7S9mkKFuyBdU1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:44 GMT
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/css/foundation.css
200 OK 37 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/css/foundation.css
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type ASCII text, with very long lines (344), with CRLF line terminators
Hash 99a9a56395fbc06a4f47b1ba3bc90cfc
576f37a0882c6d1b17c1d4c3e870c80002caa4ff
a4d41008cd6fc3658830e3a1c785c5705b5ffde5fd3c6100463903b1e0113342
GET /Sweepstakes/css/foundation.css HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 36687
content-type: text/css
content-encoding: gzip
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
vary: Accept-Encoding
x-cache: TCP_REMOTE_HIT
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAABfCHL0ZG1ESZ5chzDweEYkQU1TMDRFREdFMTkyMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAAA1Y8H0U6sxR59OMBqt9bRqU1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:44 GMT
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/headline-1000-large.png
200 OK 88 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/headline-1000-large.png
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type PNG image data, 721 x 165, 8-bit/color RGBA, non-interlaced\012- data
Hash effe6d75ee23823c62bd2b71af0a1b3e
266b665ac9f176505b7fa5be1e86a73b7a6821e1
b1e7faf7a2570c388e51bb72462c943c59516c1a38dbc7686c0f2363dfa3433b
GET /Sweepstakes/img/headline-1000-large.png HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 87452
content-type: image/png
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_REMOTE_HIT
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAADY0+GgWPWCTIwmmHNld2LhQU1TMDRFREdFMTkxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAADE8/TlD30rRamgtL8XX5H3U1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:44 GMT
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/car.svg
200 OK 2.4 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/car.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (321), with CRLF line terminators
Hash d62dbd385422ac60568c462a72f8f6a5
6de814a82998118410517b015a013e252c7d0fcb
985e44856672d41e287c2aea21b6a99c7e8b0ae08b023584a4cbe09f12355057
GET /Sweepstakes/img/car.svg HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 2384
content-type: image/svg+xml
content-encoding: gzip
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
vary: Accept-Encoding
x-cache: TCP_MISS
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAADtgfBdNq1iTKc8tnR9KALtQU1TMDRFREdFMTkxMwAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAADCmay2lCEXTYYt6AFG50e6U1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:45 GMT
X-Firefox-Spdy: h2
www.proadprovider.net/Scripts/nitro-popoverscript.js
200 OK 1.8 kB URL GET HTTP/1.1 www.proadprovider.net/Scripts/nitro-popoverscript.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectproadprovider.net
Fingerprint58:BD:BF:C7:94:DE:EA:F6:03:01:89:C3:D2:A8:C9:F7:70:64:22:66
ValidityTue, 08 Aug 2023 19:10:42 GMT - Sun, 08 Sep 2024 19:10:42 GMT
File type Unicode text, UTF-8 (with BOM) text
Hash f40d8fdbc7437f1a0f0f6300b8b47c67
8568c9b88d5080236b5ca3dbb5ab4a1f4f88887d
32a447bab702bab2b8e92a81a5f05ceb9aaa77ff9364c634eb2de476435008c9
GET /Scripts/nitro-popoverscript.js HTTP/1.1
Host: www.proadprovider.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1847
Content-Type: application/x-javascript
Date: Wed, 06 Dec 2023 17:08:44 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "08d80c9e313da1:0"
Last-Modified: Fri, 10 Nov 2023 14:40:02 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
sweepswinner.azureedge.net/Sweepstakes/css/animate.css
200 OK 8.2 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/css/animate.css
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type ASCII text, with CRLF line terminators
Hash 1aaa8beecce19062646761f002462694
682ae6b92a88b8e1424f72070422772030f1030a
213e86422cd9a5571a335fcbfe6222340615bd912b3207f07b07f51865971bf2
GET /Sweepstakes/css/animate.css HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 8179
content-type: text/css
content-encoding: gzip
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
vary: Accept-Encoding
x-cache: TCP_MISS
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAACINzx0gjnnRJwqs2fMSV2mQU1TMDRFREdFMTgwNwAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAAAc/YjplyfQS5N4zu3XhA09U1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:45 GMT
X-Firefox-Spdy: h2
www.proadprovider.net/Content/nitropopover.css
200 OK 326 B URL GET HTTP/1.1 www.proadprovider.net/Content/nitropopover.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectproadprovider.net
Fingerprint58:BD:BF:C7:94:DE:EA:F6:03:01:89:C3:D2:A8:C9:F7:70:64:22:66
ValidityTue, 08 Aug 2023 19:10:42 GMT - Sun, 08 Sep 2024 19:10:42 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash e3536e13dabc8db0943278cc26a4a4c6
0e7a285466dbc9f8f5c6a6c3ac60dc7cdfe38172
9da72ece743bdab25f8034aed8f57944cc8dcdaf0327ff95698e8c27840f09f5
GET /Content/nitropopover.css HTTP/1.1
Host: www.proadprovider.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 326
Content-Type: text/css
Date: Wed, 06 Dec 2023 17:08:44 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "3f92aad12732d71:0"
Last-Modified: Thu, 15 Apr 2021 18:47:43 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48208, version 1.0\012- data
Hash c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 07:26:53 GMT
expires: Wed, 04 Dec 2024 07:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
age: 121313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48208, version 1.0\012- data
Hash c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 07:26:53 GMT
expires: Wed, 04 Dec 2024 07:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
age: 121313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48208, version 1.0\012- data
Hash c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 07:26:53 GMT
expires: Wed, 04 Dec 2024 07:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
age: 121313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48208, version 1.0\012- data
Hash c49b7c3643f781d71645c5a40a78b5bf
e71138026b38afc443fb60da5ffc2244c4f5eb11
8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 07:26:53 GMT
expires: Wed, 04 Dec 2024 07:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
age: 121313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sweepswinner.com/Sweepstakes/img/main-bg-large.jpg
200 OK 140 kB URL GET HTTP/2 www.sweepswinner.com/Sweepstakes/img/main-bg-large.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2200x900, components 3\012- data
Size 140 kB (139804 bytes)
Hash f5c673c7674edc4041bbf7c1c59a496d
c062702d1f812c308c92936480e2491d9b0984c2
5bb285db3cc658bf789bfdceff6812232c6a255dad676835d4e22ecc1b7274c2
GET /Sweepstakes/img/main-bg-large.jpg HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/css/user-styles.css
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
date: Wed, 06 Dec 2023 17:08:45 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
content-length: 139804
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Scripts/ValidTopLevelDomains.json
200 OK 4.5 kB URL GET HTTP/2 www.sweepswinner.com/Scripts/ValidTopLevelDomains.json
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type JSON data\012- , ASCII text, with CRLF line terminators
Hash 299fe2a339c61b5c9a6f9890f45cfadd
1dbc5cf38f05381b61e5de908a71083960b5b609
623c807f69acfba94b996299c6dc4545775b826d9cb7d3cff9fc1bd27b979d9d
GET /Scripts/ValidTopLevelDomains.json HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Wed, 06 Dec 2023 17:08:45 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
vary: Accept-Encoding
content-length: 4465
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/Scripts/ValidTopLevelDomains.json
200 OK 4.5 kB URL GET HTTP/2 www.sweepswinner.com/Scripts/ValidTopLevelDomains.json
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type JSON data\012- , ASCII text, with CRLF line terminators
Hash 299fe2a339c61b5c9a6f9890f45cfadd
1dbc5cf38f05381b61e5de908a71083960b5b609
623c807f69acfba94b996299c6dc4545775b826d9cb7d3cff9fc1bd27b979d9d
GET /Scripts/ValidTopLevelDomains.json HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Wed, 06 Dec 2023 17:08:45 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "084534f8aeda1:0"
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
vary: Accept-Encoding
content-length: 4465
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
pushomnicdn.azureedge.net/jslibs/subscribe.js
421 Misdirected Request 11 kB URL GET HTTP/2 pushomnicdn.azureedge.net/jslibs/subscribe.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash c25215f354b98a94b660dfbbdbd21205
7c7984185ccafce578a38587945565270ec7c9fd
cb0193352db8c80a30d84427f7afccad566d0d44b88901e723d7941dd11e8c50
GET /jslibs/subscribe.js HTTP/1.1
Host: pushomnicdn.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 421 Misdirected Request
x-azure-ref: 0nqpwZQAAAABaZVac+NP6SYq1Q4HX5YowU1ZHMjBFREdFMDUxMgBlODhhYmY1Yi1iYTFmLTQxMzctOTI3MC0wM2IwYjRjYzc2Zjg=
date: Wed, 06 Dec 2023 17:08:45 GMT
X-Firefox-Spdy: h2
docs.corepassage.com/JSLibraries/OptOutOverlay/close.png
200 OK 2.0 kB URL GET HTTP/2 docs.corepassage.com/JSLibraries/OptOutOverlay/close.png
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectdocs.corepassage.com
FingerprintC6:98:EF:F5:DA:F4:A1:63:1D:BA:66:DA:10:36:17:99:B4:67:0A:C9
ValidityFri, 01 Sep 2023 15:51:08 GMT - Wed, 11 Sep 2024 21:34:01 GMT
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 503423fe92f69111e7c5b64739a5074b
61cfbbc08de7e34c4a8ee5e5e8066de10a3c73af
2351d2386177b19ecbbfbffb30e3030d9cd3a9adf1eb30ba64eebd745490f723
GET /JSLibraries/OptOutOverlay/close.png HTTP/1.1
Host: docs.corepassage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Wed, 06 Dec 2023 17:08:46 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
etag: "0cdfbe600da1:0"
last-modified: Mon, 16 Oct 2023 18:44:08 GMT
content-length: 1996
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
docs.corepassage.com/JSLibraries/SparkJQValidation/sparkjqv.parsley.css
200 OK 1.7 kB URL GET HTTP/2 docs.corepassage.com/JSLibraries/SparkJQValidation/sparkjqv.parsley.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectdocs.corepassage.com
FingerprintC6:98:EF:F5:DA:F4:A1:63:1D:BA:66:DA:10:36:17:99:B4:67:0A:C9
ValidityFri, 01 Sep 2023 15:51:08 GMT - Wed, 11 Sep 2024 21:34:01 GMT
File type ASCII text, with very long lines (6495), with CRLF line terminators
Hash 935f6f0f1a67c7529a1f096e1a89515a
9ea7b80895a494a4f7217a484199cbded5185722
fe50a3a30c09c5fa387429dab07630becb4a38254a3944271bd12a429a730601
GET /JSLibraries/SparkJQValidation/sparkjqv.parsley.css HTTP/1.1
Host: docs.corepassage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Wed, 06 Dec 2023 17:08:46 GMT
server: Microsoft-IIS/10.0
accept-ranges: bytes
content-encoding: gzip
etag: "0cdfbe600da1:0"
last-modified: Mon, 16 Oct 2023 18:44:08 GMT
vary: Accept-Encoding
content-length: 1731
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
tracking.proadprovider.net/NitroChannels/GetDelayInMilliseconds?channelId=581&AffId=40078
200 OK 744 B URL GET HTTP/1.1 tracking.proadprovider.net/NitroChannels/GetDelayInMilliseconds?channelId=581&AffId=40078
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjecttracking.proadprovider.net
FingerprintB7:CB:76:CC:61:25:6B:5C:1C:20:3A:43:59:6F:64:5F:7E:6F:4C:9A
ValidityTue, 19 Sep 2023 13:32:31 GMT - Sun, 20 Oct 2024 13:32:31 GMT
File type JSON data\012- , ASCII text, with very long lines (992), with no line terminators
Hash 86ba825130d59fc637773e5e070f9283
50cc4d793de2ccdaac3f11186506847f56e70cb7
bf66225e661c1fa599349044d35e03dcf9dbb0cfcfa4458db3cc0ca54f7361b2
GET /NitroChannels/GetDelayInMilliseconds?channelId=581&AffId=40078 HTTP/1.1
Host: tracking.proadprovider.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 744
Content-Type: application/json; charset=utf-8
Date: Wed, 06 Dec 2023 17:08:46 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
docs.britebox.io/JSLibraries/SparkJQValidation/sparkjqv.parsley.css
200 OK 1.7 kB URL GET HTTP/1.1 docs.britebox.io/JSLibraries/SparkJQValidation/sparkjqv.parsley.css
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerDigiCert, Inc.
Subjectdocs.britebox.io
Fingerprint48:64:1D:68:06:E8:4E:61:5C:9B:86:A9:E2:06:37:09:1E:18:3D:31
ValidityTue, 12 Sep 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (6495), with CRLF line terminators
Hash 935f6f0f1a67c7529a1f096e1a89515a
9ea7b80895a494a4f7217a484199cbded5185722
fe50a3a30c09c5fa387429dab07630becb4a38254a3944271bd12a429a730601
GET /JSLibraries/SparkJQValidation/sparkjqv.parsley.css HTTP/1.1
Host: docs.britebox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1731
Content-Type: text/css
Date: Wed, 06 Dec 2023 17:08:47 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0c194d660da1:0"
Last-Modified: Mon, 16 Oct 2023 19:23:54 GMT
Set-Cookie: ARRAffinity=fdc7d01ba77124143f2abb7a519902f451a3c5edf28da525b2ec8cdada4adeff;Path=/;HttpOnly;Secure;Domain=docs.britebox.io
ARRAffinitySameSite=fdc7d01ba77124143f2abb7a519902f451a3c5edf28da525b2ec8cdada4adeff;Path=/;HttpOnly;SameSite=None;Secure;Domain=docs.britebox.io
Vary: Accept-Encoding
X-Powered-By: ASP.NET
docs.britebox.io/JSLibraries/OptOutOverlay/close.png
200 OK 2.0 kB URL GET HTTP/1.1 docs.britebox.io/JSLibraries/OptOutOverlay/close.png
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerDigiCert, Inc.
Subjectdocs.britebox.io
Fingerprint48:64:1D:68:06:E8:4E:61:5C:9B:86:A9:E2:06:37:09:1E:18:3D:31
ValidityTue, 12 Sep 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 503423fe92f69111e7c5b64739a5074b
61cfbbc08de7e34c4a8ee5e5e8066de10a3c73af
2351d2386177b19ecbbfbffb30e3030d9cd3a9adf1eb30ba64eebd745490f723
GET /JSLibraries/OptOutOverlay/close.png HTTP/1.1
Host: docs.britebox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1996
Content-Type: image/png
Date: Wed, 06 Dec 2023 17:08:47 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "0c194d660da1:0"
Last-Modified: Mon, 16 Oct 2023 19:23:54 GMT
Set-Cookie: ARRAffinity=d2d96df0d4cde4b1b6dbf0323ce4144b185e8f44aa038506ca24366e4a05b9be;Path=/;HttpOnly;Secure;Domain=docs.britebox.io
ARRAffinitySameSite=d2d96df0d4cde4b1b6dbf0323ce4144b185e8f44aa038506ca24366e4a05b9be;Path=/;HttpOnly;SameSite=None;Secure;Domain=docs.britebox.io
X-Powered-By: ASP.NET
www.sweepswinner.com/AnuraAjaxHandler.aspx?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk
301 Moved Permanently 284 B URL GET HTTP/2 www.sweepswinner.com/AnuraAjaxHandler.aspx?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bfe6e4589cff3d482d8d4cf3f3a84354
19a11440cca7e78ee30b925350e4f0e5c45ac92e
8a952d393ba3287120263dde73c01262914a83d89407ac6d4e25831b26b26a7e
GET /AnuraAjaxHandler.aspx?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Request-Id: |b880585cf8bf456ba499a9ce13732bb3.a99be8da83e541e7
traceparent: 00-b880585cf8bf456ba499a9ce13732bb3-a99be8da83e541e7-01
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; _gcl_au=1.1.1308560654.1701882532; ai_user=mOdXM3ErEHVBKc+OGWNZlB|2023-12-06T17:08:52.660Z; ai_session=UCiqGz6EkkbWDEnIwuSNPa|1701882533470|1701882533470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:46 GMT
server: Microsoft-IIS/10.0
location: /AnuraAjaxHandler?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk
content-length: 284
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
200 OK 0 B URL OPTIONS HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subjectin.applicationinsights.azure.com
Fingerprint4B:90:9B:CE:B0:36:AC:2C:0E:F8:4F:DE:DE:D1:F6:C9:6E:D5:5A:78
ValiditySat, 02 Sep 2023 07:21:45 GMT - Tue, 27 Aug 2024 07:21:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,sdk-context
Referer: https://www.sweepswinner.com/
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-methods: POST
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Wed, 06 Dec 2023 17:08:47 GMT
content-length: 0
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HEAD HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sweepswinner.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 06 Dec 2023 17:08:47 GMT
expires: Wed, 06 Dec 2023 17:08:47 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7926801997988484852
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51727
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
200 OK 96 B URL OPTIONS HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subjectin.applicationinsights.azure.com
Fingerprint4B:90:9B:CE:B0:36:AC:2C:0E:F8:4F:DE:DE:D1:F6:C9:6E:D5:5A:78
ValiditySat, 02 Sep 2023 07:21:45 GMT - Tue, 27 Aug 2024 07:21:45 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash f4b7d6c922ff23585ad62f54936e1573
eb2907bc2860bc541e8f20c36540cc741404a486
5c896c174de340a26a5bd44bbd25baf560f9ec9359dbabac1a2ee0450517d66b
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Sdk-Context: appId
Content-Length: 2108
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-ms-session-id: C0ED338E-C6EB-498B-90CD-DC0EE32E0D13
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Wed, 06 Dec 2023 17:08:47 GMT
content-length: 96
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HEAD HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint6C:2A:75:F2:3F:EF:4F:43:B1:8D:C3:B7:E9:2E:4A:EF:40:6A:FC:92
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.sweepswinner.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 06 Dec 2023 17:08:47 GMT
expires: Wed, 06 Dec 2023 17:08:47 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7909548844318074911
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51814
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.sweepswinner.com/AjaxHandler.aspx?ba=0&sw=1280&dw=1280&im=0
301 Moved Permanently 167 B URL GET HTTP/2 www.sweepswinner.com/AjaxHandler.aspx?ba=0&sw=1280&dw=1280&im=0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 17d3c8c743128d1af5609cc8defb5eb6
2449995a13211e3c1e95017bc017dcad235d3c70
78d27f84e32b514a7d514c57cd9c9afa2b7dfbd7e7921cf93d97a271285298e9
GET /AjaxHandler.aspx?ba=0&sw=1280&dw=1280&im=0 HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Request-Id: |b880585cf8bf456ba499a9ce13732bb3.e90c5f85d0b04683
traceparent: 00-b880585cf8bf456ba499a9ce13732bb3-e90c5f85d0b04683-01
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; _gcl_au=1.1.1308560654.1701882532; ai_user=mOdXM3ErEHVBKc+OGWNZlB|2023-12-06T17:08:52.660Z; ai_session=UCiqGz6EkkbWDEnIwuSNPa|1701882533470|1701882533470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:47 GMT
server: Microsoft-IIS/10.0
location: /AjaxHandler?ba=0&sw=1280&dw=1280&im=0
content-length: 167
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/AjaxHandler.aspx?ba=0&sw=1280&dw=1280&im=0
301 Moved Permanently 167 B URL GET HTTP/2 www.sweepswinner.com/AjaxHandler.aspx?ba=0&sw=1280&dw=1280&im=0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 17d3c8c743128d1af5609cc8defb5eb6
2449995a13211e3c1e95017bc017dcad235d3c70
78d27f84e32b514a7d514c57cd9c9afa2b7dfbd7e7921cf93d97a271285298e9
GET /AjaxHandler.aspx?ba=0&sw=1280&dw=1280&im=0 HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Request-Id: |b880585cf8bf456ba499a9ce13732bb3.fd2e60c21b1849aa
Request-Context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
traceparent: 00-b880585cf8bf456ba499a9ce13732bb3-fd2e60c21b1849aa-01
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; _gcl_au=1.1.1308560654.1701882532; ai_user=mOdXM3ErEHVBKc+OGWNZlB|2023-12-06T17:08:52.660Z; ai_session=UCiqGz6EkkbWDEnIwuSNPa|1701882533470|1701882533470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
date: Wed, 06 Dec 2023 17:08:47 GMT
server: Microsoft-IIS/10.0
location: /AjaxHandler?ba=0&sw=1280&dw=1280&im=0
content-length: 167
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/AnuraAjaxHandler?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk
200 OK 0 B URL GET HTTP/2 www.sweepswinner.com/AnuraAjaxHandler?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AnuraAjaxHandler?anuraid=3180676556.3129e04d4789b40edefd441b0cfc8d2a&utid=348341324&tid=883a51fd-d1fe-4bac-a1da-8b1bb97922e3&ssid=sctapyvauz5vqncpoubxvjsk HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Request-Id: |b880585cf8bf456ba499a9ce13732bb3.a99be8da83e541e7
traceparent: 00-b880585cf8bf456ba499a9ce13732bb3-a99be8da83e541e7-01
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
DNT: 1
Connection: keep-alive
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; _gcl_au=1.1.1308560654.1701882532; ai_user=mOdXM3ErEHVBKc+OGWNZlB|2023-12-06T17:08:52.660Z; ai_session=UCiqGz6EkkbWDEnIwuSNPa|1701882533470|1701882533470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Wed, 06 Dec 2023 17:08:47 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-length: 0
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/favicon.ico
200 OK 2.3 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/favicon.ico
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e6b1699a25708d2a91eddf35d808648
a243923e4e01ea18a85e60c7079efaa6c0766421
a70ea33d60733cca3890ab84ebe1e9f280d2430d07e0a72ae081e35b5a63b112
GET /Sweepstakes/favicon.ico HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 2336
content-type: image/x-icon
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_MISS
x-powered-by: ASP.NET
x-azure-ref-originshield: 0n6pwZQAAAADER6UyStjNTJxZRyIYgXsQQU1TMDRFREdFMTgxMQAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0n6pwZQAAAAA0aH4r4Hb1Q4pUmVrAmu8KU1ZHMjBFREdFMDYxNAAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:47 GMT
X-Firefox-Spdy: h2
www.sweepswinner.com/AjaxHandler?ba=0&sw=1280&dw=1280&im=0
200 OK 0 B URL GET HTTP/2 www.sweepswinner.com/AjaxHandler?ba=0&sw=1280&dw=1280&im=0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AjaxHandler?ba=0&sw=1280&dw=1280&im=0 HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Request-Id: |b880585cf8bf456ba499a9ce13732bb3.e90c5f85d0b04683
traceparent: 00-b880585cf8bf456ba499a9ce13732bb3-e90c5f85d0b04683-01
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
DNT: 1
Connection: keep-alive
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; _gcl_au=1.1.1308560654.1701882532; ai_user=mOdXM3ErEHVBKc+OGWNZlB|2023-12-06T17:08:52.660Z; ai_session=UCiqGz6EkkbWDEnIwuSNPa|1701882533470|1701882533470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Wed, 06 Dec 2023 17:08:47 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-length: 0
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
www.sweepswinner.com/AjaxHandler?ba=0&sw=1280&dw=1280&im=0
200 OK 0 B URL GET HTTP/2 www.sweepswinner.com/AjaxHandler?ba=0&sw=1280&dw=1280&im=0
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoDaddy.com, Inc.
Subjectsweepswinner.com
Fingerprint00:F3:65:91:D3:30:47:31:07:B9:04:FC:D1:DC:BA:9E:A2:4D:05:7E
ValidityMon, 06 Nov 2023 23:07:39 GMT - Thu, 05 Dec 2024 21:18:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AjaxHandler?ba=0&sw=1280&dw=1280&im=0 HTTP/1.1
Host: www.sweepswinner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Request-Id: |b880585cf8bf456ba499a9ce13732bb3.fd2e60c21b1849aa
Request-Context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
traceparent: 00-b880585cf8bf456ba499a9ce13732bb3-fd2e60c21b1849aa-01
Referer: https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
DNT: 1
Connection: keep-alive
Cookie: ARRAffinity=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ARRAffinitySameSite=9601355ebfdc98c9bec4f24633c623cbec80a642bf80722a274708e562f553e9; ASP.NET_SessionId=sctapyvauz5vqncpoubxvjsk; _gcl_au=1.1.1308560654.1701882532; ai_user=mOdXM3ErEHVBKc+OGWNZlB|2023-12-06T17:08:52.660Z; ai_session=UCiqGz6EkkbWDEnIwuSNPa|1701882533470|1701882533470
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
date: Wed, 06 Dec 2023 17:08:47 GMT
server: Microsoft-IIS/10.0
access-control-expose-headers: Request-Context
cache-control: private
content-length: 0
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:56af07da-1eda-4488-8386-8decf21ad8e3
x-powered-by: ASP.NET
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
200 OK 49 B URL OPTIONS HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subjectin.applicationinsights.azure.com
Fingerprint4B:90:9B:CE:B0:36:AC:2C:0E:F8:4F:DE:DE:D1:F6:C9:6E:D5:5A:78
ValiditySat, 02 Sep 2023 07:21:45 GMT - Tue, 27 Aug 2024 07:21:45 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ecdf742adce0c405db526c84f8b3cf1b
25fedfb649a68bafc7a8caf0dbccba29e3d37672
76dc829025cdfa2c12dfaf8863662fc69c15a5a16535f2835bc9c5e0d14942b6
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=utf-8
Content-Length: 4488
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-ms-session-id: 2FBABE00-2039-49F1-ACAE-4D87823D8F98
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Wed, 06 Dec 2023 17:08:59 GMT
content-length: 49
X-Firefox-Spdy: h2
js.monitor.azure.com/scripts/b/ai.2.min.js
200 OK 123 kB URL GET HTTP/2 js.monitor.azure.com/scripts/b/ai.2.min.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subjectjs.monitor.azure.com
FingerprintFF:8C:AA:D5:CE:B8:1C:2B:92:4E:2E:4C:30:25:29:9E:54:57:FC:73
ValidityWed, 20 Sep 2023 05:47:48 GMT - Sat, 14 Sep 2024 05:47:48 GMT
File type ASCII text, with very long lines (65409)
Size 123 kB (122828 bytes)
Hash 393625d2cd565323f9ad9f264e6bdbc8
0587dfce0dca45b29b882c0a8219ab74f880073d
6c14d731b13bcdec4325028eb0d8d2cb0190b3b1e65e0fcb52907fe6f55c2707
GET /scripts/b/ai.2.min.js HTTP/1.1
Host: js.monitor.azure.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=1800, immutable, no-transform
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OTYl0s1WUyP5rZ8mTmvbyA==
last-modified: Wed, 20 Sep 2023 16:12:29 GMT
etag: 0x8DBB9F46341BD96
x-cache: TCP_HIT
x-ms-request-id: c92a15b2-601e-00a0-6265-285eed000000
x-ms-version: 2009-09-19
x-ms-meta-aijssdksrc: [cdn]/scripts/b/ai.2.8.16.min.js
x-ms-meta-aijssdkver: 2.8.16
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,x-ms-meta-aijssdksrc,x-ms-meta-aijssdkver,x-ms-meta-lastmodified,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0wahwZQAAAAA6yDz5LIyWR7s0H/GZxJrkQU1TMDRFREdFMTkwOABmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
x-azure-ref: 0nqpwZQAAAACto+OGbLYGSr1aGbjYb9EbU1ZHMjBFREdFMDYxOABmMWNhNzNkNC04ODgzLTRjYWYtYWJkYy1mZTJkNTY3YWZiOTY=
date: Wed, 06 Dec 2023 17:08:45 GMT
X-Firefox-Spdy: h2
script.anura.io/response.json
200 OK 52 B URL POST HTTP/2 script.anura.io/response.json
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerAmazon
Subjectscript.anura.io
Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20
ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash daccbd11e63828733100c1bd62c077da
98257bf0561399dfde20abf84a7a531aa4c8f0a0
4e14721093cde547d3a2dba112c249b41dafe40e8e475d029e0cbfde65e093c0
POST /response.json HTTP/1.1
Host: script.anura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5670
Origin: https://www.sweepswinner.com
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:08:47 GMT
content-type: application/json; charset=utf-8
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: POST
expires: Sun, 28 Dec 1980 18:57:00 EST
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/sw-logo.svg
200 OK 7.1 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/sw-logo.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7400), with no line terminators
Hash 4c974ced14836ac84b42855810a16f1c
c618474fde672c110ed9e403e0976e41d4e392b8
cc7102e4d3eeeaf8355ea9ffa3ed623b25643e8d94e02aa1ab2dcf567cd9463d
GET /Sweepstakes/img/sw-logo.svg HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
content-encoding: br
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_MISS
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAADTBsW2NA/LT50Bubl7fc85QU1TMDRFREdFMTgxNQAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAAD8gvPjef2MRakaXJeeNqyMU1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:45 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:300,400,600,800
200 OK 6.7 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Raleway:300,400,600,800
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (6840), with no line terminators
Hash 125f0894deefd82d23e72279d3d38b91
d45407e1148216ce0e37748826fd84af3abc8fff
6c3b9f521e76cb04257a6b5d54d122d92e03255d943a2f834961162c9e2b45cb
GET /css?family=Raleway:300,400,600,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 06 Dec 2023 17:08:45 GMT
date: Wed, 06 Dec 2023 17:08:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sweepswinner.azureedge.net/Sweepstakes/img/vacation.svg
200 OK 2.7 kB URL GET HTTP/2 sweepswinner.azureedge.net/Sweepstakes/img/vacation.svg
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerMicrosoft Corporation
Subject*.azureedge.net
Fingerprint05:FC:82:4E:BB:AC:BF:9E:BD:A4:C5:50:C4:8C:40:76:EC:F8:FD:A6
ValiditySun, 08 Oct 2023 04:19:55 GMT - Wed, 02 Oct 2024 04:19:55 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2794), with no line terminators
Hash d86fa17851c84b16875dbeae961ea8f1
7c3cfa2201de5efe7893875d9382598f9a61d1cf
8fa9d20819c3f315871608895d66493b70510bb38b2cc0bfe852457cb98115c0
GET /Sweepstakes/img/vacation.svg HTTP/1.1
Host: sweepswinner.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
content-encoding: br
last-modified: Fri, 03 Nov 2023 19:16:56 GMT
accept-ranges: bytes
etag: "084534f8aeda1:0"
x-cache: TCP_REMOTE_HIT
x-powered-by: ASP.NET
x-azure-ref-originshield: 0napwZQAAAACAfZnN6CG0Rr3MWNVGl2vHQU1TMDRFREdFMTgxMQAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
x-azure-ref: 0napwZQAAAACcy8hlZ2rVQZcmFtZkNeBnU1ZHMjBFREdFMDUxMgAyOWM0MTYyZS0xMjJmLTRkZmItYmMxMy01ZjgxYjhhYTdjM2Q=
date: Wed, 06 Dec 2023 17:08:44 GMT
X-Firefox-Spdy: h2
script.anura.io/request.js?instance=169568588&source=730762&campaign=948%7C701_884089&variable=anuraResponse&816873562791
200 OK 56 kB URL GET HTTP/2 script.anura.io/request.js?instance=169568588&source=730762&campaign=948%7C701_884089&variable=anuraResponse&816873562791
IP
Requested by https://www.sweepswinner.com/Sweepstakes/ApplyStepOneEmail?sfid=30&ns=wax-2&cdn=1&isrevc=0&nscpa=1&crp=rh&oid=948&tid=883a51fdd1fe4baca1da8b1bb97922e3&aid=730762&c1=701_884089&c2=6570aa871b0b60000110fc12&c3=&isrxmg=0&email=&first=&last=&address=&zip=&hphone1=&hphone2=&hphone3=&dobday=&dobmonth=&dobyear=
Certificate IssuerAmazon
Subjectscript.anura.io
Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20
ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (1912)
Hash 45b11c6138c3c2a252317cea57286de1
6d10ccff7ba52acd8c1d904d95399a695d108bd7
cb99bfeacec3a430164c4efcf1515b52c1eecdcb84db1addcd8f830690b81958
GET /request.js?instance=169568588&source=730762&campaign=948%7C701_884089&variable=anuraResponse&816873562791 HTTP/1.1
Host: script.anura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sweepswinner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 17:08:46 GMT
content-type: application/javascript; charset=utf-8
server: nginx
vary: Accept-Encoding
expires: Sun, 28 Dec 1980 18:57:00 EST
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
35.186.247.135
3.8.43.133
104.17.24.14
52.236.186.217
18.158.229.59