| verifiedwebpage.com/go?ehash=e7a4f668f2a04f481820e416d45b7a60&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8] | 104.18.21.187 | 302 Found | 134 B |
URL User Request GET HTTP/2verifiedwebpage.com/go?ehash=e7a4f668f2a04f481820e416d45b7a60&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8] IP104.18.21.187:443
CertificateIssuerGoogle Trust Services LLC Subjectverifiedwebpage.com FingerprintB6:7C:0D:93:CD:D6:56:A3:74:B9:46:38:F0:C7:A5:31:BC:5F:AF:56 ValidityWed, 10 Apr 2024 21:43:08 GMT - Tue, 09 Jul 2024 21:43:07 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /go?ehash=e7a4f668f2a04f481820e416d45b7a60&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8] HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 22:55:28 GMT
content-type: text/html; charset=UTF-8
location: http://470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415441913363303447
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=87671854fc9932be704cc1efa14ff4bf; path=/
pixel_session_hash_44769=3415441913363303447; expires=Fri, 24-May-2024 22:55:27 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_44769=3c20c3318f6d17febce52353d4af64b5d6bc78bc71238921f80aa728fe194549; expires=Fri, 26-Apr-2024 22:55:27 GMT; Max-Age=172800
__cf_bm=qA_BCG8uyq6v7B6LNp36lnZG7s3QT2WlFndYjql4AUM-1713999328-1.0.1.1-Lm.zOD5_zbSF6WAbgO9xnVrq3gFj2dip2ScI783dSsgiyyL680U0r32.ze4OuIpuIr5jaQs7bht4418Nl2ZUHA; path=/; expires=Wed, 24-Apr-24 23:25:28 GMT; domain=.verifiedwebpage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8799ae583b2bb4eb-OSL
X-Firefox-Spdy: h2
|
|
| 470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415441913363303447 | 18.217.134.101 | 302 Found | 216 B |
URL User Request GET HTTP/2470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415441913363303447 IP18.217.134.101:443
CertificateIssuerAmazon Subject470kwc1.com Fingerprint71:DE:CD:1D:C9:7F:26:78:C1:13:CE:8A:81:B9:15:B9:EC:6C:33:DC ValiditySun, 17 Mar 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash08e32c8e1eae249374d97a9106ad88cb dde7cc88cb1767bc8aca2053321338a2540561a8 068d3820a429d89698e75f207b40c095bdefa3f335d1a685a07b25078eb08477
GET /clk.trk?CID=468053&AFID=430135&SID=3415441913363303447 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 22:55:29 GMT
content-type: text/html; charset=utf-8
content-length: 216
location: https://pro.paradigm-press.info/m/2307059?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58
cache-control: private
server: Microsoft-IIS/10.0
p3p: policyref="/p3p/P3P.470kwc1.com.xml", CP="NOI DSP COR NID ADM DEV OUR STP OTC"
x-aspnet-version: 4.0.30319
set-cookie: LTTC6_468053=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58; expires=Wed, 01-May-2024 22:55:29 GMT; path=/; secure; SameSite=None
x-powered-by: ASP.NET
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| pro.paradigm-press.info/m/2307059?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58 | 192.135.136.169 | 301 Moved Permanently | 253 B |
URL User Request GET HTTP/1.1pro.paradigm-press.info/m/2307059?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58 IP192.135.136.169:443
CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0a4fccac5c4b54e14eaab9a365dbcef7 bf026e52f3b624e9b8453f1cd7812f0b9c7e6fbe fb36dd8457165280aef8720a90b457e29c53f753dee35ad7058363df2c9bdd85
GET /m/2307059?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58 HTTP/1.1
Host: pro.paradigm-press.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true
Date: Wed, 24 Apr 2024 22:55:29 GMT
Content-Length: 253
Set-Cookie: 2307059=2733285; expires=Tue, 14-May-2024 22:55:30 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!zMUucex9eDABu/E0QCUGrw3uOK3bWS0mxOS9htfwteRlldjRNKchS3PC9I0T3hLpeTTvK2rcM75UHz8=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| go.goodlifestylenews.com/ | 172.67.172.49 | | 143 B |
URL go.goodlifestylenews.com/ IP172.67.172.49:0
File typeHTML document, ASCII text Hashf1fb042c62910c34be16ad91cbbd71fa 5bc7aceba9a8704ef4b1d427d7d08b140afcd866 9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 22:55:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Nov 2023 15:41:05 GMT
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Vary: Accept-Encoding,User-Agent
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=imPBROYPuUF3zvkGhd6c1IVIfJ5W3ElzBhRLkaj3kQ3OAmvyjt9Fs4nO62bw24cQcyUranw50B6yoIIr1fDMFE2nwUjvMVpI5KUORj4dZC09yhnIaK1fmJ%2FEW7E2h1MrlyOloPfK0soL3mk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8799ae65bea6b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true | 161.129.26.18 | 302 Found | 253 B |
URL User Request GET HTTP/1.1pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true IP161.129.26.18:80
File typeHTML document, ASCII text, with CRLF line terminators Hash0a4fccac5c4b54e14eaab9a365dbcef7 bf026e52f3b624e9b8453f1cd7812f0b9c7e6fbe fb36dd8457165280aef8720a90b457e29c53f753dee35ad7058363df2c9bdd85
GET /p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 24 Apr 2024 22:55:30 GMT
Content-Length: 253
Set-Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!LCUijsYd+sh2HVQ0QCUGrw3uOK3bWTF1bZ2EdfSPCtDwCb7z61IG2UFJPdE+kjeCdDGM1YZXfLlJMj0=; path=/; Httponly
|
|
| pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true | 161.129.26.18 | 302 Found | 9.2 kB |
URL User Request GET HTTP/1.1pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true IP161.129.26.18:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1672), with CRLF, LF line terminators Hash2c57ee5e8aa5666d567a048a73159d63 b22dea79913e5704e9298fc381600c77c54780dc 41fadf5223eea3b99a8704e9ea4e71b8e0c8091229768c53a06e9bb618e25e8b
GET /p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!LCUijsYd+sh2HVQ0QCUGrw3uOK3bWTF1bZ2EdfSPCtDwCb7z61IG2UFJPdE+kjeCdDGM1YZXfLlJMj0=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 24 Apr 2024 22:55:30 GMT
Content-Length: 9245
Set-Cookie: LAWN4392=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!xNcLROjHL+zTk0M0QCUGrw3uOK3bWWQ0q9VlpfnqQvNqKoPzK7rJQG1EsEC/6H/ZOkHka0yJC50LgGQ=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js | 216.58.211.10 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP216.58.211.10:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32077) Hash4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:54:39 GMT
expires: Fri, 18 Apr 2025 17:54:39 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 536452
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/Common.js | 161.129.26.18 | 200 OK | 1.1 kB |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/Common.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash2fa1e7a35bfa376eff7f1426fc4a8afa 008b48dbd95a158542969743c18d0bc33e0a9384 857d94bd23b6437baa66255e1d507ad4a23d75ef9a271fb3e1303dc7dd0aced9
GET /p/Scripts/Common.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!LCUijsYd+sh2HVQ0QCUGrw3uOK3bWTF1bZ2EdfSPCtDwCb7z61IG2UFJPdE+kjeCdDGM1YZXfLlJMj0=; LAWN4392=; BIGipServerIRIS_PROD_HTTPS_POOL=!xNcLROjHL+zTk0M0QCUGrw3uOK3bWWQ0q9VlpfnqQvNqKoPzK7rJQG1EsEC/6H/ZOkHka0yJC50LgGQ=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "a37f814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 24 Apr 2024 22:55:30 GMT
Content-Length: 1140
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.130.132 | 200 OK | 137 kB |
URL GET HTTP/2fast.wistia.com/assets/external/E-v1.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65474) Size137 kB (136866 bytes) Hash20fe967bcd5ac28ca99ac2438b0f970a b7550a74f89acbaa601247749d6365c0e953cdaf 1fd3853e40997fffe6b88365e074f065dd452a6dc1af13213172460043411aec
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "6ad6c78daadc4c58258c9d89dea74c96"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:31 GMT
age: 3004
x-served-by: cache-iad-kcgs7200088-IAD, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 461
x-timer: S1713999332.698632,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 136866
X-Firefox-Spdy: h2
|
|
| use.typekit.net/cbv5qfb.css | 23.36.76.186 | 200 OK | 809 B |
URL GET HTTP/2use.typekit.net/cbv5qfb.css IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (516) Hash42c09d1852d82478d323b53c0f50a529 7ae2bd107e50fcc475ab888c67659610ac495279 319fbfbb7f86c701bc2e4a24b3abe3f31dfde38a45a3ef2019d1c41af5029528
GET /cbv5qfb.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 809
date: Wed, 24 Apr 2024 22:55:31 GMT
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/HideContent.js | 161.129.26.18 | 200 OK | 466 B |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeJavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashcc54a637e514fddfe0be2e7c2d062e5b a0f97813508d22d71f015b93cc8dfdcee65acdfd 580942b09dd77a53c0501f35a1d6c61cbcff1d504a6efb0dfa5d77cbdb1af741
GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!LCUijsYd+sh2HVQ0QCUGrw3uOK3bWTF1bZ2EdfSPCtDwCb7z61IG2UFJPdE+kjeCdDGM1YZXfLlJMj0=; LAWN4392=; BIGipServerIRIS_PROD_HTTPS_POOL=!xNcLROjHL+zTk0M0QCUGrw3uOK3bWWQ0q9VlpfnqQvNqKoPzK7rJQG1EsEC/6H/ZOkHka0yJC50LgGQ=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 24 Apr 2024 22:55:31 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| fonts.googleapis.com/css2?family=Bebas+Neue&display=swap | 142.250.74.170 | 200 OK | 2.7 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Bebas+Neue&display=swap IP142.250.74.170:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hashd27c7965397883290c4450b62a3c3b4a 0d0623b92eb8e5c7cc529e1dd6044ce6deba37e2 5c7675e6204d3824aa092a210220cbeaceb45aa7c1d3722a6123a4717c1bd1cf
GET /css2?family=Bebas+Neue&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 22:55:31 GMT
date: Wed, 24 Apr 2024 22:55:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| p.typekit.net/p.css?s=1&k=cbv5qfb&ht=tk&f=26034.26052.26053.26054.26056.26062&a=135983404&app=typekit&e=css | 23.36.76.184 | 200 OK | 5 B |
URL GET HTTP/2p.typekit.net/p.css?s=1&k=cbv5qfb&ht=tk&f=26034.26052.26053.26054.26056.26062&a=135983404&app=typekit&e=css IP23.36.76.184:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
Hash83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=cbv5qfb&ht=tk&f=26034.26052.26053.26054.26056.26062&a=135983404&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Tue, 07 Mar 2023 19:56:00 GMT
etag: "640796d0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:31 GMT
X-Firefox-Spdy: h2
|
|
| cdn.getblueshift.com/blueshift.js | 54.230.111.71 | 200 OK | 2.8 kB |
URL GET HTTP/1.1cdn.getblueshift.com/blueshift.js IP54.230.111.71:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.getblueshift.com Fingerprint29:49:01:4C:AB:3A:C5:E4:F6:F2:67:75:BE:5B:FF:4B:F3:5C:EC:47 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 06 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashe70a08bd9e7ef156c1673f55ed87aa85 9dfa4cf582654332eb4e1ada9843594ca64bb0d2 a97c4e09767a155128f03c8a72efccc7d8e38e2e8e78daf14c8e5beaf72ff1a5
GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2826
Connection: keep-alive
Last-Modified: Wed, 24 Jan 2024 03:44:50 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 24 Apr 2024 22:22:04 GMT
Cache-Control: max-age=3600
ETag: "bd39fba69cd2745738daf44e0e350f6e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fSVWwk4UOUqYkJXgoMy7c5LogA1CA67qzYvYJplE2vJIZ_llUdhFeA==
Age: 2012
|
|
| use.typekit.net/af/6d4bb2/00000000000000003b9acafc/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 | 23.36.76.186 | 200 OK | 26 kB |
URL GET HTTP/2use.typekit.net/af/6d4bb2/00000000000000003b9acafc/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26392, version 1.0 Hash83aff1d23eb8e137c5e38ed45348a1ec 7663cb96dac6f3a68ad9036899e3611d33cdf1de da03f140d305f2abdf496bdd3fad9cfed87a237cf09f6a2edcec58bc5a1f044d
GET /af/6d4bb2/00000000000000003b9acafc/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26392
etag: "7d4a321fb4284bed9856c33aee6c065aba0855a7"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 22:55:32 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/46da36/00000000000000003b9acaf6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 | 23.36.76.186 | 200 OK | 27 kB |
URL GET HTTP/2use.typekit.net/af/46da36/00000000000000003b9acaf6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26812, version 1.0 Hashfd6b32c4721c8c5b477a367a2a60cf38 5e35ed38b7e9ab6857be9f891f87ef5b00578efc 464b561ee00c86db1cddb80f2c9d6febbc2c1aa95f422fa73a4fb8ef7d5d5028
GET /af/46da36/00000000000000003b9acaf6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26812
etag: "de29fb2e3e401b15877c6b3a0953702fe7fa1105"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 22:55:32 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/6ce26b/00000000000000003b9acafd/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 | 23.36.76.186 | 200 OK | 27 kB |
URL GET HTTP/2use.typekit.net/af/6ce26b/00000000000000003b9acafd/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 IP23.36.76.186:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27408, version 1.0 Hashca6f1d9e7730169261dd9f29c7b4cc3f 01d08d23e222dee5fee50a5d7d8bc6bcd7ec0e41 3426ba6d12629295e6905fc2df1fbe0accb038122fb3858949a78ff75fdc96fd
GET /af/6ce26b/00000000000000003b9acafd/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27408
etag: "664c33910513fbd670a2ab47b2c8c1f8b02d68b6"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Wed, 24 Apr 2024 22:55:32 GMT
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-P95MDDF | 142.250.74.72 | 200 OK | 120 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (58328) Size120 kB (119650 bytes) Hash9b8092b90e616d0dd08cd7e2fab19f6d ed82856e6282248f04d5d53289f9936f020c2eab 57126bcf6772ecdea304cedca208c63153b308155bb1bc9eb051987e5bfd4d2b
GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 22:55:32 GMT
expires: Wed, 24 Apr 2024 22:55:32 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 22:17:05 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 119650
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 | 142.250.74.72 | 200 OK | 117 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (56012) Size117 kB (117399 bytes) Hashb800eb164249929e61eae195646db812 797f33afeacaac3392fcd351cc197e3400764087 24a7155bae00ebb674f9d3e0fc6cd03f89afecdb40cf69ee4d1e0c3801810402
GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 22:55:32 GMT
expires: Wed, 24 Apr 2024 22:55:32 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 22:17:05 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 117399
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2 | 216.58.207.227 | 200 OK | 14 kB |
URL GET HTTP/2fonts.gstatic.com/s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2 IP216.58.207.227:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13820, version 1.0 Hash2dd698f2699a5ef991625825011bff90 523ff9357131751e57dd78cb92b218a49a130d1d 02f5dfc0c21e92f3c724260f035833e627513a1b91230cc490a1ea756c95e5e5
GET /s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:36 GMT
expires: Fri, 18 Apr 2025 02:34:36 GMT
cache-control: public, max-age=31536000
age: 591656
last-modified: Thu, 24 Aug 2023 21:28:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/8p6wbm2hqg.json | 151.101.130.132 | 200 OK | 1.8 kB |
URL GET HTTP/2fast.wistia.com/embed/medias/8p6wbm2hqg.json IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hash6900fa5c7e64807331984918b72506ec 037620d16fbfdd81ff15dd6ca12c8265630543ce 93073173903941e0cb7588032923ff57e98a540ea31b83036e6bd295e53a1080
GET /embed/medias/8p6wbm2hqg.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"93073173903941e0cb7588032923ff57"
x-request-id: 06411d9b-c9c3-45e8-a917-c0f59e7dd5f5
x-runtime: 0.055726
content-encoding: br
x-envoy-upstream-service-time: 57
via: 1.1 309e9e958e8d35f7e17ae8ac267b7dea.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD12-P1
x-amz-cf-id: iAXk8pJnP-tXCEn74bz1u6qXxTeucyxastWQdai3CG1H1me6SwroVA==
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:32 GMT
age: 11019
x-served-by: cache-iad-kiad7000130-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 94, 1
x-timer: S1713999332.303960,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1761
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 100 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size100 kB (100099 bytes) Hashcc347b1e64e7eb43561efbca2043c062 7828a059810de1bc95d779aeab1560d3bd7db211 2682b2ee98c0657d33b9e53d89537c235abc71e94b6c64f3e90be300f96ddd0e
GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 22:55:32 GMT
expires: Wed, 24 Apr 2024 22:55:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100099
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/chaos-rally-bg.jpg | 54.230.241.121 | 200 OK | 324 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/chaos-rally-bg.jpg IP54.230.241.121:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x694, components 3 Size324 kB (324495 bytes) Hashde7f717bc2ce75a31c9cf8a0fef79560 33bfb9a3994d0ca0eef217bdabd4a10c72a988b8 4b1275cb5efd35bf56390140280792462f3d732418e70a7d97a4a6167bb0eadb
GET /AWN/awn_chaosrally_0324/chaos-rally-bg.jpg HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 324495
server: nginx
date: Fri, 15 Mar 2024 20:08:14 GMT
last-modified: Tue, 12 Mar 2024 13:59:34 GMT
cache-control: max-age=31536000
expires: Sat, 15 Mar 2025 20:08:14 GMT
etag: "65f05fc6-4f38f"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gGcvKc7pgagEtvShmEvkHw3_rjAFXQxc6VDajRZd-B5QXPNHkxvNLA==
age: 3466038
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 6GtTQ+CwnB3NlnFRQ9Xhq0Re2v0itwNGKiyFVPjMYOgvbwziZizLS0BvhDjcZ/ePM3BHWAEQS2I=
x-amz-request-id: T2HV0KRPZ7NM2E8X
date: Wed, 24 Apr 2024 22:08:38 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2815
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 6GtTQ+CwnB3NlnFRQ9Xhq0Re2v0itwNGKiyFVPjMYOgvbwziZizLS0BvhDjcZ/ePM3BHWAEQS2I=
x-amz-request-id: T2HV0KRPZ7NM2E8X
date: Wed, 24 Apr 2024 22:08:38 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2815
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 6GtTQ+CwnB3NlnFRQ9Xhq0Re2v0itwNGKiyFVPjMYOgvbwziZizLS0BvhDjcZ/ePM3BHWAEQS2I=
x-amz-request-id: T2HV0KRPZ7NM2E8X
date: Wed, 24 Apr 2024 22:08:38 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2815
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 6GtTQ+CwnB3NlnFRQ9Xhq0Re2v0itwNGKiyFVPjMYOgvbwziZizLS0BvhDjcZ/ePM3BHWAEQS2I=
x-amz-request-id: T2HV0KRPZ7NM2E8X
date: Wed, 24 Apr 2024 22:08:38 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2815
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=1246475965.1713999332>m=45je44o0v9122066590z878323495za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1991604154 | 172.217.21.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=1246475965.1713999332>m=45je44o0v9122066590z878323495za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1991604154 IP172.217.21.163:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=1246475965.1713999332>m=45je44o0v9122066590z878323495za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1991604154 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 24 Apr 2024 22:55:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/googleAnalytics4.js | 151.101.130.132 | 200 OK | 4.5 kB |
URL GET HTTP/2fast.wistia.com/assets/external/googleAnalytics4.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (17654) Hash125fa6aa86400029af6299aa435df040 216871e2474a3ee803e1c33629114ea5a37181b0 aad103f9dea1d7462e57569b46a915d35a702958c6071b86b867a780df5a91a8
GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "8f6950dab8a3f2d3cbcebfb350d07236"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:32 GMT
age: 2997
x-served-by: cache-iad-kiad7000047-IAD, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 67, 2
x-timer: S1713999333.723975,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 4476
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10082412.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10082412.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10082412.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: YBXH1FGYR0CJ2XX2
x-amz-id-2: kF7lLeCk7+MXmAxYwqV49Z/iJ/r8AfjxS5CHYLNTOQhrBM4rWRJ6//LhsTITuALhB1Bi6ROX649YpfVXa+dsMzLicFAAxZ/HsrgnvyR+y8s=
content-type: application/json
date: Wed, 24 Apr 2024 22:12:54 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 2558
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10091245.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10091245.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10091245.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 5DACC8T2AG2QJYFA
x-amz-id-2: S1aaZsZAipvWEI9liFEUEhuEwvhh2dfHza9dtpKqgOgykla58HkNFi4GUerxaOjDmkzTFSO4v7A=
content-type: application/json
date: Wed, 24 Apr 2024 22:27:34 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 1678
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10114794.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10114794.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10114794.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 3QBMEDEYA3BFSK75
x-amz-id-2: qwlX/ejSDz0gb5V2i9PR0A6x4lhUcAnZ8HDi2iB4eMd76/aylM5jbhAhpf8ouVScPjUUyEa4puw=
content-type: application/json
date: Wed, 24 Apr 2024 22:00:11 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 3321
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10125189.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10125189.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10125189.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: DD3MQ6REF9GT4ZZH
x-amz-id-2: nLZN3gXDF/Ws/d8K9uV5a30Q4DC75z8mi2l5VfDtFOhYJGnpsNb2fvxjcWr2ztMSHm/aLP7tKxw=
content-type: application/json
date: Wed, 24 Apr 2024 22:11:51 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 2621
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/playPauseLoadingControl.js | 151.101.130.132 | 200 OK | 22 kB |
URL GET HTTP/2fast.wistia.com/assets/external/playPauseLoadingControl.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hash7845f53703880c301c91e55dacfb2730 a91923e2fe5f5a139f65a41682cee83637c636bf 441f641db8dc0a94620a07d59cfdad03e6fd3630fe3af81f82ce80d9d8ac3942
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "054f6647c2b3166c5479ecec2e1cdb23"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:32 GMT
age: 2998
x-served-by: cache-iad-kiad7000026-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 43
x-timer: S1713999333.793812,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 21596
X-Firefox-Spdy: h2
|
|
| paradigmpressgroup.com/favicons/favicon-16x16.png | 44.210.42.183 | 200 OK | 587 B |
URL GET HTTP/2paradigmpressgroup.com/favicons/favicon-16x16.png IP44.210.42.183:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerLet's Encrypt Subjectparadigmpressgroup.com Fingerprint9F:5E:5C:45:8B:D7:39:29:DA:7C:07:64:1E:F0:C5:D7:22:AE:AB:4D ValidityWed, 10 Apr 2024 16:51:00 GMT - Tue, 09 Jul 2024 16:50:59 GMT
File typePNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced Hash2bb2efaa073e4987ba1867aff02ab3ac ea05acee8f408e3f86830b5f2da0616ced013006 6b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6
GET /favicons/favicon-16x16.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 22:55:32 GMT
content-type: image/png
content-length: 587
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"24b-1823c06a3cc"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| paradigmpressgroup.com/favicons/apple-touch-icon.png | 44.210.42.183 | 200 OK | 3.0 kB |
URL GET HTTP/2paradigmpressgroup.com/favicons/apple-touch-icon.png IP44.210.42.183:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerLet's Encrypt Subjectparadigmpressgroup.com Fingerprint9F:5E:5C:45:8B:D7:39:29:DA:7C:07:64:1E:F0:C5:D7:22:AE:AB:4D ValidityWed, 10 Apr 2024 16:51:00 GMT - Tue, 09 Jul 2024 16:50:59 GMT
File typePNG image data, 180 x 180, 8-bit grayscale, non-interlaced Hashdd470648114adaceb47d36a18ad41d9d c93c69021ab4e381b4715938bed3732b132852b3 49dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4
GET /favicons/apple-touch-icon.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 22:55:32 GMT
content-type: image/png
content-length: 3017
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"bc9-1823c06a3cb"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C | 142.250.74.72 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash34180aeebb5f4ca732ad9408e1985cd9 19f2cf10c723e2106946f88c042698624f373443 8962ff4d94fbf7ff3255e03dac0b5dd8b991b05644cae11df9ca44ae48b6dc03
GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 22:55:32 GMT
expires: Wed, 24 Apr 2024 22:55:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93883
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash9cb822ab7a9f846d8c3bc203b2f670ef 0af721a41456e40abac059c743effcf1458626b5 f989a484f3286f365439dfb9c5bcaf61e257ac76cf3e68ed0beecf8438abb858
GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 22:55:32 GMT
expires: Wed, 24 Apr 2024 22:55:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94065
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/Jim-ctp-800px.webp | 54.230.241.121 | 200 OK | 4.0 MB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/Jim-ctp-800px.webp IP54.230.241.121:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size4.0 MB (3962480 bytes) Hashb2378a035ce925a3c216e683250858cd b5b240ea8cd23d37b557abfe5c18298876fff50f da221df132181d1e4b6a389bd024053d81208ad092f204fe7521e56c05052651
GET /AWN/awn_chaosrally_0324/Jim-ctp-800px.webp HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3962480
server: nginx
date: Tue, 23 Apr 2024 04:54:50 GMT
last-modified: Fri, 15 Mar 2024 20:20:19 GMT
cache-control: max-age=172800
expires: Thu, 25 Apr 2024 04:54:50 GMT
etag: "65f4ad83-3c7670"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Asy6KKFHiONYodjOrJBEYXxzeyAK6saVyjnNLOxfl6IBcgEGDp_DxQ==
age: 151242
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2010 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2010 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2010 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/engines/hls_video.js | 151.101.130.132 | 200 OK | 118 kB |
URL GET HTTP/2fast.wistia.com/assets/external/engines/hls_video.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size118 kB (118197 bytes) Hash0d0944584a2e0b7299c788dfbcc6224b dbafb5834a1553d168e2e61633d9dfb37d29a438 c6c26035fb90773bae20e3accc00fe4bf7368ac9eb802ce0ee066ffb3f89b738
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "eb7dd49fb6d9bc27920e7403bf0de676"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:33 GMT
age: 2999
x-served-by: cache-iad-kcgs7200058-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 13, 32
x-timer: S1713999333.294268,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 118197
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.98 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.98:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1105
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 24 Apr 2024 22:55:33 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Tp53xt0ucPg9wFv_9qnciX3WTY9h2qwjZcV5mS1oSDUkwB81HcE8qw==
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2035 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2035 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2035 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2028 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2028 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2028 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=awn_aware&_c=1&tfd=2036 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=awn_aware&_c=1&tfd=2036 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=awn_aware&_c=1&tfd=2036 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| distillery.wistia.com/x | 54.230.111.90 | 204 No Content | 0 B |
IP54.230.111.90:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subjectstats-tap-production-cloudfront-app-cname.wistia.com Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40 ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1668
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 24 Apr 2024 22:55:33 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EzFUdya1lpSibURWbZxQOB3Xg0fOkW5mtd9v-fKtBUn1aZZvzZEkBw==
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/8p6wbm2hqg.m3u8 | 151.101.130.132 | 200 OK | 943 B |
URL GET HTTP/2fast.wistia.com/embed/medias/8p6wbm2hqg.m3u8 IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hashdd99f9a372e8c1f775f677ec5900a7eb 300585086dd91474899cc861b76f799080202534 7554c26e53e85264650943faafd9cd1d2d0d3ff8f1e5a47f0290b682396ad923
GET /embed/medias/8p6wbm2hqg.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"7554c26e53e85264650943faafd9cd1d"
x-request-id: 98b640a9-461f-4ec5-b450-5fab6de42511
x-runtime: 0.033834
x-envoy-upstream-service-time: 37
via: 1.1 1ac532da7db85d551ad10ca7bd9957b8.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: 41x8a2rtObq3uwYBsypOV5MesFGeQ9xCgqdYHxRCNIaRHofPd2_voA==
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:33 GMT
age: 1
x-served-by: cache-iad-kjyo7100170-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 1029, 1
x-timer: S1713999334.981082,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 943
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/images/blank.gif | 151.101.130.132 | 200 OK | 1.2 kB |
URL GET HTTP/2fast.wistia.com/assets/images/blank.gif IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeGIF image data, version 89a, 100 x 100 Hashfbdc4ed9a1e2ee4917a265306927bcf1 6d177725d8230df0457e72004080f712e26fe624 a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:33 GMT
age: 311
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 2
x-timer: S1713999334.983255,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1214
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/allIntegrations.js | 151.101.130.132 | 200 OK | 5.8 kB |
URL GET HTTP/2fast.wistia.com/assets/external/allIntegrations.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (23371) Hashd5dd13ae4e2cc9dbc4601c4d95143418 13405305698ad9cc7f44a86871fa1c0d057a9bf4 709f139528814cc9d5158ed469a578082a81607df49b40e41a6fb4b240567ecd
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "4d5cbf7cb285a542334e7de7bc37ed93"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 24 Apr 2024 22:55:33 GMT
age: 3000
x-served-by: cache-iad-kjyo7100122-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 78, 32
x-timer: S1713999334.988068,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 5773
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8 | 143.204.55.103 | 200 OK | 85 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8 IP143.204.55.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Hash2df3655f266cd6857212261db1c9805c e98546e62c5fbd7ce15d3cfd6b3ed18403e25131 35d5192dc478bf1208be64ef3a325d354b72b57684adc54a506ac705d811ca00
GET /deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 85168
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
surrogate-key: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 160
date: Wed, 24 Apr 2024 07:20:44 GMT
expires: Thu, 24 Apr 2025 07:20:44 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dgb2wcpzi-jYFW3u3oDh4ERGOUj3via4HgCQ7Pho_pWc2xv0iiw1xg==
age: 56090
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8/seg-1-v1-a1.ts | 143.204.55.103 | 200 OK | 761 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8/seg-1-v1-a1.ts IP143.204.55.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeMPEG transport stream data Size761 kB (761400 bytes) Hashd858f57241e8df950a0233e987373fec 5020e20f357916f705e11e566e7440ae47923311 a31a7b5a310e4ef6cf4e0e72dc3c893ebed914e852490758e30ec6e5687dbe54
GET /deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: video/MP2T
content-length: 761400
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
surrogate-key: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 86
date: Sat, 20 Apr 2024 03:07:22 GMT
expires: Sun, 20 Apr 2025 03:07:22 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: slIteQErJsdy7rrJ_-02-wM90mb7r0r8796YzYJNsudNFKw5plJKtw==
age: 416892
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/595d55c6f1b5e15feb22484f907926e0cf410a7d.m3u8 | 143.204.55.103 | 200 OK | 85 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/595d55c6f1b5e15feb22484f907926e0cf410a7d.m3u8 IP143.204.55.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Hash300beb02cba757784b4dc3268c3b1aea f3c0baa87ea569602aad0a61374340544b5c45bf 5691f76b88bb0a3caadd81904df1d9155beb1704ec3c76a7b54cbfedfeb99771
GET /deliveries/595d55c6f1b5e15feb22484f907926e0cf410a7d.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 85168
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 595d55c6f1b5e15feb22484f907926e0cf410a7d-hls-segment
surrogate-key: 595d55c6f1b5e15feb22484f907926e0cf410a7d-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 161
date: Wed, 24 Apr 2024 02:39:04 GMT
expires: Thu, 24 Apr 2025 02:39:04 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wT36v0UUlw6FYGDKM9oqmnrrE0T8rtW3OLR3hDjOprxyuWjBrlU4gg==
age: 72990
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| api.getblueshift.com/unity.gif?t=1713999334&e=pageload&r=&z=199265&x=59976d352f424c4b27d325518576b9b2&k=2e9dfb66-3c92-8e34-9147-1544d3ea4128&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue | 44.237.165.229 | 200 OK | 42 B |
URL GET HTTP/2api.getblueshift.com/unity.gif?t=1713999334&e=pageload&r=&z=199265&x=59976d352f424c4b27d325518576b9b2&k=2e9dfb66-3c92-8e34-9147-1544d3ea4128&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue IP44.237.165.229:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.getblueshift.com FingerprintD1:61:A7:FF:D0:FD:A2:46:9B:FE:0C:A8:F1:8A:A9:24:9B:70:04:65 ValidityWed, 07 Feb 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /unity.gif?t=1713999334&e=pageload&r=&z=199265&x=59976d352f424c4b27d325518576b9b2&k=2e9dfb66-3c92-8e34-9147-1544d3ea4128&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 22:55:34 GMT
content-type: image/gif
content-length: 42
access-control-expose-headers: etag
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pro.paradigmnewsletters.org
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.98 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.98:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2213
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 24 Apr 2024 22:55:34 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
server: envoy
x-cache: Miss from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DeMwX2FlfsHUjTlwJAeMIICZ70686sc88p5qnBv2GFlHLT99f5z5Pg==
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&_s=5&tfd=7483 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&_s=5&tfd=7483 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&_s=5&tfd=7483 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=11900 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=11900 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=11900 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=PsbBNc-VHZcuMt_Kxxizy7UUnzxU-axLQZqVTfm6AjCHqGNKfk-Oww5bp2ofQNzVkE3np52ov8H34UHVBAFEuLT_SFhq9i44_-TJFB7rLxskzTmpp6rVPRyyZIzJzW8u
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 24 Apr 2024 22:55:04 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 42
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=16902 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=16902 IP216.239.34.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1713999331916&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1246475965.1713999332&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1713999332&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=16902 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 24 Apr 2024 22:55:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| d2z65klgtz99km.cloudfront.net/css/base-styles.css | 54.230.241.121 | 200 OK | 3.4 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/css/base-styles.css IP54.230.241.121:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153027649_bcd0ded8-aba8-4c6d-823e-d3707b725f58&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (3424), with no line terminators Hash51f40e7db924251b27b19054b4593625 3984c3e46770d3434ca14e02435d4f4a1d3d51f8 881e23c64e57d67d436f55f470840633ad3b819b03e427d830f79bc942a87228
GET /css/base-styles.css HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 29 Mar 2024 13:32:42 GMT
last-modified: Fri, 28 Jul 2023 14:10:52 GMT
cache-control: max-age=2592000
expires: Sun, 28 Apr 2024 13:32:42 GMT
etag: W/"64c3cc6c-d56"
x-powered-by: PleskLin
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Emh3xxMavdOb5UU3yCev3foRtVVtZ7HJVU5FIfGvnFoawUu6C6g0sg==
age: 2280169
X-Firefox-Spdy: h2
|
|
| go.goodlifestylenews.com/BidenChaos0324/e7a4f668f2a04f481820e416d45b7a60/55/leadsource/2578/1610/4a9834ecac99f8a72a7e3bb0819f9019/mpmta | 104.21.30.61 | 302 Found | 0 B |
URL User Request GET HTTP/2go.goodlifestylenews.com/BidenChaos0324/e7a4f668f2a04f481820e416d45b7a60/55/leadsource/2578/1610/4a9834ecac99f8a72a7e3bb0819f9019/mpmta IP104.21.30.61:443
CertificateIssuerGoogle Trust Services LLC Subjectgoodlifestylenews.com FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40 ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /BidenChaos0324/e7a4f668f2a04f481820e416d45b7a60/55/leadsource/2578/1610/4a9834ecac99f8a72a7e3bb0819f9019/mpmta HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 22:55:28 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedwebpage.com/go?ehash=e7a4f668f2a04f481820e416d45b7a60&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8]
cache-control: max-age=600
expires: Wed, 24 Apr 2024 23:05:27 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XITAhHM%2Bz3UTIqPigIUmR%2BxdBPp7PSSXWsLsHh5QgtDYvQFM6H%2FerUW3FjqOgpWASXj2%2FIBEY3fsnxFSfYq5qvyH5sMVuB6yRlr69ThPbmJKAsSsX2vPtFovpr8NHJ3zA2RtKYGDuJ7bXKg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799ae53bc7656b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|