| go.goodlifestylenews.com/BidenChaos0324/ec55f96bdbee115719939c545d55f6bb/55/leadsource/2578/1610/4a9834ecac99f8a72a7e3bb0819f9019/mpmta | 104.21.30.61 | 302 Found | 3.9 kB |
URL User Request GET HTTP/2go.goodlifestylenews.com/BidenChaos0324/ec55f96bdbee115719939c545d55f6bb/55/leadsource/2578/1610/4a9834ecac99f8a72a7e3bb0819f9019/mpmta IP104.21.30.61:443
CertificateIssuerGoogle Trust Services LLC Subjectgoodlifestylenews.com FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40 ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash46824c4f6e295c60ae1a1f53c53891b7 791ffea66cea8fd8c024e313da16888e7050fc86 38afcd6e3d8f2a95de5bdd5a55e349fd3c4697907029321924e77424c2fe72ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /BidenChaos0324/ec55f96bdbee115719939c545d55f6bb/55/leadsource/2578/1610/4a9834ecac99f8a72a7e3bb0819f9019/mpmta HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 00:51:56 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedwebpage.com/go?ehash=ec55f96bdbee115719939c545d55f6bb&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8]
cache-control: max-age=600
expires: Thu, 25 Apr 2024 01:01:55 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jgbS48txyU5bOHK1jkikwzJenRQGtJmB3492oJchZRJxfyhoI66S17%2BzH5M2iYJIqNF2WadVa%2FpuD4Or3L6%2F1IZlyEk%2FQGpXfmsKtuhocJgPDW8vlyg5AAebz9kLJHL2XtY7rrH%2FJoVa30k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879a58ef6da156a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415447649292250047 | 18.217.134.101 | 301 Moved Permanently | 134 B |
URL User Request GET HTTP/1.1470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415447649292250047 IP18.217.134.101:80
File typeHTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /clk.trk?CID=468053&AFID=430135&SID=3415447649292250047 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Thu, 25 Apr 2024 00:51:57 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://470kwc1.com:443/clk.trk?CID=468053&AFID=430135&SID=3415447649292250047
|
|
| 470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415447649292250047 | 18.217.134.101 | 301 Moved Permanently | 216 B |
URL User Request GET HTTP/1.1470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415447649292250047 IP18.217.134.101:80
File typeHTML document, ASCII text, with CRLF line terminators Hash2d68a3167ad11e2c8434f7f516a29742 b5d35c40470a18c6068f9869a13fb0502aba87f6 834c1afa485c5c954e5ceea888b12039a436ebc653fbc3460081fd4e9ebdddaf
GET /clk.trk?CID=468053&AFID=430135&SID=3415447649292250047 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 00:51:57 GMT
content-type: text/html; charset=utf-8
content-length: 216
location: https://pro.paradigm-press.info/m/2307059?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed
cache-control: private
server: Microsoft-IIS/10.0
p3p: policyref="/p3p/P3P.470kwc1.com.xml", CP="NOI DSP COR NID ADM DEV OUR STP OTC"
x-aspnet-version: 4.0.30319
set-cookie: LTTC6_468053=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed; expires=Thu, 02-May-2024 00:51:57 GMT; path=/; secure; SameSite=None
x-powered-by: ASP.NET
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| pro.paradigm-press.info/m/2307059?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed | 192.135.136.169 | 301 Moved Permanently | 253 B |
URL User Request GET HTTP/1.1pro.paradigm-press.info/m/2307059?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed IP192.135.136.169:443
CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashedce9d3d50bc39e513c882d86222f722 b1a71a45dfe0f03d494f6264ae25b001ccdf4a6a 1a9adacf41b626c4ff454defb64b4af610f98bb7c63da3218e15966776a258cd
GET /m/2307059?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed HTTP/1.1
Host: pro.paradigm-press.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true
Date: Thu, 25 Apr 2024 00:51:57 GMT
Content-Length: 253
Set-Cookie: 2307059=2733285; expires=Wed, 15-May-2024 00:51:58 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!fG9iFKzm9/I2/aU0QCUGrw3uOK3bWT39la1fvEwhjqmLVmP9FAdNHjMAeAZQKBZGfMjhMdeYJ8uLefY=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| go.goodlifestylenews.com/ | 172.67.172.49 | | 143 B |
URL go.goodlifestylenews.com/ IP172.67.172.49:0
CertificateIssuerGoogle Trust Services LLC Subjectgoodlifestylenews.com FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40 ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
File typeHTML document, ASCII text Hashf1fb042c62910c34be16ad91cbbd71fa 5bc7aceba9a8704ef4b1d427d7d08b140afcd866 9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:51:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Nov 2023 15:41:05 GMT
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Vary: Accept-Encoding,User-Agent
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mq97i6NATHwo%2FhMz1KPUMDJju0O%2BwSWJt3TDl5sOVbFkBvJQmcf0%2FCNx8vNL%2FBgBRxmm53x93gnjO3bmnVPDjO6%2FGYx1ltDFqU9vB13fcNh%2FDt0xRv5n1M3WAzN07DNP9o5CnlraRVc%2FKn0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 879a5901acb8b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true | 161.129.26.18 | 302 Found | 253 B |
URL User Request GET HTTP/1.1pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true IP161.129.26.18:80
File typeHTML document, ASCII text, with CRLF line terminators Hashedce9d3d50bc39e513c882d86222f722 b1a71a45dfe0f03d494f6264ae25b001ccdf4a6a 1a9adacf41b626c4ff454defb64b4af610f98bb7c63da3218e15966776a258cd
GET /p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true
Referrer-Policy: no-referrer-when-downgrade
Date: Thu, 25 Apr 2024 00:51:58 GMT
Content-Length: 253
Set-Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!IVw4+0EOdAGE/E40QCUGrw3uOK3bWbSDUiMpBPUimMq8bzMb6bJfXGo82F2/zovFQb4G6kZXvKs8Q5U=; path=/; Httponly
|
|
| pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true | 161.129.26.18 | 302 Found | 9.2 kB |
URL User Request GET HTTP/1.1pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true IP161.129.26.18:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1672), with CRLF, LF line terminators Hash19cf4bd7e85a5f0cc4d41ffc10f24277 f78b58ba8d155e865049244e7303ed0d72d7df35 8ba6b8cd695c4467888ba5783bc074c1d8eb742bcd1e75fe010828ea6112c04c
GET /p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!IVw4+0EOdAGE/E40QCUGrw3uOK3bWbSDUiMpBPUimMq8bzMb6bJfXGo82F2/zovFQb4G6kZXvKs8Q5U=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Thu, 25 Apr 2024 00:51:59 GMT
Content-Length: 9244
Set-Cookie: LAWN4392=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!OWCbNDPR0zmaCfg0QCUGrw3uOK3bWZq5xeJXRDXQ+gZH36K15AFyuXTDy5utEyHag9nZl7QK+gybVbk=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js | 142.250.74.42 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP142.250.74.42:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32077) Hash4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:54:39 GMT
expires: Fri, 18 Apr 2025 17:54:39 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 543440
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/Common.js | 161.129.26.18 | 200 OK | 1.1 kB |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/Common.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash2fa1e7a35bfa376eff7f1426fc4a8afa 008b48dbd95a158542969743c18d0bc33e0a9384 857d94bd23b6437baa66255e1d507ad4a23d75ef9a271fb3e1303dc7dd0aced9
GET /p/Scripts/Common.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!IVw4+0EOdAGE/E40QCUGrw3uOK3bWbSDUiMpBPUimMq8bzMb6bJfXGo82F2/zovFQb4G6kZXvKs8Q5U=; LAWN4392=; BIGipServerIRIS_PROD_HTTPS_POOL=!OWCbNDPR0zmaCfg0QCUGrw3uOK3bWZq5xeJXRDXQ+gZH36K15AFyuXTDy5utEyHag9nZl7QK+gybVbk=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 01 Feb 2024 06:42:24 GMT
Accept-Ranges: bytes
ETag: "c49cbad0d954da1:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Thu, 25 Apr 2024 00:51:59 GMT
Content-Length: 1140
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.130.132 | 200 OK | 137 kB |
URL GET HTTP/2fast.wistia.com/assets/external/E-v1.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65474) Size137 kB (136866 bytes) Hash20fe967bcd5ac28ca99ac2438b0f970a b7550a74f89acbaa601247749d6365c0e953cdaf 1fd3853e40997fffe6b88365e074f065dd452a6dc1af13213172460043411aec
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "6ad6c78daadc4c58258c9d89dea74c96"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:51:59 GMT
age: 2793
x-served-by: cache-iad-kcgs7200088-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 534
x-timer: S1714006320.940163,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 136866
X-Firefox-Spdy: h2
|
|
| use.typekit.net/cbv5qfb.css | 23.36.76.122 | 200 OK | 809 B |
URL GET HTTP/2use.typekit.net/cbv5qfb.css IP23.36.76.122:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (516) Hash42c09d1852d82478d323b53c0f50a529 7ae2bd107e50fcc475ab888c67659610ac495279 319fbfbb7f86c701bc2e4a24b3abe3f31dfde38a45a3ef2019d1c41af5029528
GET /cbv5qfb.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 809
date: Thu, 25 Apr 2024 00:52:00 GMT
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/HideContent.js | 161.129.26.18 | 200 OK | 466 B |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeJavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashcc54a637e514fddfe0be2e7c2d062e5b a0f97813508d22d71f015b93cc8dfdcee65acdfd 580942b09dd77a53c0501f35a1d6c61cbcff1d504a6efb0dfa5d77cbdb1af741
GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!IVw4+0EOdAGE/E40QCUGrw3uOK3bWbSDUiMpBPUimMq8bzMb6bJfXGo82F2/zovFQb4G6kZXvKs8Q5U=; LAWN4392=; BIGipServerIRIS_PROD_HTTPS_POOL=!OWCbNDPR0zmaCfg0QCUGrw3uOK3bWZq5xeJXRDXQ+gZH36K15AFyuXTDy5utEyHag9nZl7QK+gybVbk=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 01 Feb 2024 06:42:24 GMT
Accept-Ranges: bytes
ETag: "c49cbad0d954da1:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Thu, 25 Apr 2024 00:52:00 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| p.typekit.net/p.css?s=1&k=cbv5qfb&ht=tk&f=26034.26052.26053.26054.26056.26062&a=135983404&app=typekit&e=css | 23.36.76.96 | 200 OK | 5 B |
URL GET HTTP/2p.typekit.net/p.css?s=1&k=cbv5qfb&ht=tk&f=26034.26052.26053.26054.26056.26062&a=135983404&app=typekit&e=css IP23.36.76.96:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
Hash83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=cbv5qfb&ht=tk&f=26034.26052.26053.26054.26056.26062&a=135983404&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Tue, 07 Mar 2023 19:56:00 GMT
etag: "640796d0-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:00 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/6d4bb2/00000000000000003b9acafc/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 | 23.36.76.122 | 200 OK | 26 kB |
URL GET HTTP/2use.typekit.net/af/6d4bb2/00000000000000003b9acafc/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 IP23.36.76.122:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26392, version 1.0 Hash83aff1d23eb8e137c5e38ed45348a1ec 7663cb96dac6f3a68ad9036899e3611d33cdf1de da03f140d305f2abdf496bdd3fad9cfed87a237cf09f6a2edcec58bc5a1f044d
GET /af/6d4bb2/00000000000000003b9acafc/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26392
etag: "7d4a321fb4284bed9856c33aee6c065aba0855a7"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 00:52:00 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/6ce26b/00000000000000003b9acafd/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 | 23.36.76.122 | 200 OK | 27 kB |
URL GET HTTP/2use.typekit.net/af/6ce26b/00000000000000003b9acafd/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 IP23.36.76.122:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27408, version 1.0 Hashca6f1d9e7730169261dd9f29c7b4cc3f 01d08d23e222dee5fee50a5d7d8bc6bcd7ec0e41 3426ba6d12629295e6905fc2df1fbe0accb038122fb3858949a78ff75fdc96fd
GET /af/6ce26b/00000000000000003b9acafd/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27408
etag: "664c33910513fbd670a2ab47b2c8c1f8b02d68b6"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 00:52:00 GMT
X-Firefox-Spdy: h2
|
|
| use.typekit.net/af/46da36/00000000000000003b9acaf6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 | 23.36.76.122 | 200 OK | 27 kB |
URL GET HTTP/2use.typekit.net/af/46da36/00000000000000003b9acaf6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 IP23.36.76.122:443 ASN#20940 Akamai International B.V.
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subjectuse.typekit.net Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56 ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26812, version 1.0 Hashfd6b32c4721c8c5b477a367a2a60cf38 5e35ed38b7e9ab6857be9f891f87ef5b00578efc 464b561ee00c86db1cddb80f2c9d6febbc2c1aa95f422fa73a4fb8ef7d5d5028
GET /af/46da36/00000000000000003b9acaf6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26812
etag: "de29fb2e3e401b15877c6b3a0953702fe7fa1105"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Thu, 25 Apr 2024 00:52:00 GMT
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 | 142.250.74.168 | 200 OK | 117 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP142.250.74.168:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (56012) Size117 kB (117402 bytes) Hash2f1da28a849b8274b467542926541615 3d1c9879766ce07dfde1bed9120f95818c284b68 028fbef0956692a8e0f00e5fa68f20f1e575b2ef762bbe9b77faba0cdfa11a5e
GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 00:52:00 GMT
expires: Thu, 25 Apr 2024 00:52:00 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 00:05:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 117402
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.getblueshift.com/blueshift.js | 54.230.111.92 | 200 OK | 2.8 kB |
URL GET HTTP/1.1cdn.getblueshift.com/blueshift.js IP54.230.111.92:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.getblueshift.com Fingerprint29:49:01:4C:AB:3A:C5:E4:F6:F2:67:75:BE:5B:FF:4B:F3:5C:EC:47 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 06 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashe70a08bd9e7ef156c1673f55ed87aa85 9dfa4cf582654332eb4e1ada9843594ca64bb0d2 a97c4e09767a155128f03c8a72efccc7d8e38e2e8e78daf14c8e5beaf72ff1a5
GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2826
Connection: keep-alive
Last-Modified: Wed, 24 Jan 2024 03:44:50 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 25 Apr 2024 00:22:00 GMT
Cache-Control: max-age=3600
ETag: "bd39fba69cd2745738daf44e0e350f6e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RL8lH9etuCvkqGNzf2I9g-84bz8b5y7eIfXa45xw96ZtohKJOfrPaQ==
Age: 1801
|
|
| www.googletagmanager.com/gtm.js?id=GTM-P95MDDF | 142.250.74.168 | 200 OK | 120 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP142.250.74.168:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (58328) Size120 kB (119559 bytes) Hash386058f935bc1854187b352d4ef545ad 6263dbaf96b11f957fe8bd3e56e73b8bc7f8c6b9 b7ea589bc8d6caca72eebb5502a2a220b362471da0af2e81fcf19f9b2ea96077
GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 00:52:00 GMT
expires: Thu, 25 Apr 2024 00:52:00 GMT
cache-control: private, max-age=900
last-modified: Thu, 25 Apr 2024 00:05:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 119559
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2 | 216.58.207.227 | 200 OK | 14 kB |
URL GET HTTP/2fonts.gstatic.com/s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2 IP216.58.207.227:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13820, version 1.0 Hash2dd698f2699a5ef991625825011bff90 523ff9357131751e57dd78cb92b218a49a130d1d 02f5dfc0c21e92f3c724260f035833e627513a1b91230cc490a1ea756c95e5e5
GET /s/bebasneue/v14/JTUSjIg69CK48gW7PXoo9Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:36 GMT
expires: Fri, 18 Apr 2025 02:34:36 GMT
cache-control: public, max-age=31536000
age: 598644
last-modified: Thu, 24 Aug 2023 21:28:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/8p6wbm2hqg.json | 151.101.130.132 | 200 OK | 1.8 kB |
URL GET HTTP/2fast.wistia.com/embed/medias/8p6wbm2hqg.json IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hash6900fa5c7e64807331984918b72506ec 037620d16fbfdd81ff15dd6ca12c8265630543ce 93073173903941e0cb7588032923ff57e98a540ea31b83036e6bd295e53a1080
GET /embed/medias/8p6wbm2hqg.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"93073173903941e0cb7588032923ff57"
x-request-id: 06411d9b-c9c3-45e8-a917-c0f59e7dd5f5
x-runtime: 0.055726
content-encoding: br
x-envoy-upstream-service-time: 57
via: 1.1 309e9e958e8d35f7e17ae8ac267b7dea.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD12-P1
x-amz-cf-id: iAXk8pJnP-tXCEn74bz1u6qXxTeucyxastWQdai3CG1H1me6SwroVA==
accept-ranges: bytes
age: 18007
date: Thu, 25 Apr 2024 00:52:00 GMT
x-served-by: cache-iad-kiad7000130-IAD, cache-hel1410026-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 94, 0
x-timer: S1714006321.885520,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1761
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size100 kB (100096 bytes) Hash9fc7a25c6e37efbe6c8b6141ee198415 21581775e30fd9b7357c83efe36d7f464b65df72 804b7d6a4fc0d75a2f49cc1dd1de3f584a4b0acc2be3d89b9c38b3ae611c7e23
GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 00:52:00 GMT
expires: Thu, 25 Apr 2024 00:52:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100096
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/chaos-rally-bg.jpg | 54.230.241.180 | 200 OK | 324 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/chaos-rally-bg.jpg IP54.230.241.180:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x694, components 3 Size324 kB (324495 bytes) Hashde7f717bc2ce75a31c9cf8a0fef79560 33bfb9a3994d0ca0eef217bdabd4a10c72a988b8 4b1275cb5efd35bf56390140280792462f3d732418e70a7d97a4a6167bb0eadb
GET /AWN/awn_chaosrally_0324/chaos-rally-bg.jpg HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 324495
server: nginx
date: Fri, 15 Mar 2024 20:08:14 GMT
last-modified: Tue, 12 Mar 2024 13:59:34 GMT
cache-control: max-age=31536000
expires: Sat, 15 Mar 2025 20:08:14 GMT
etag: "65f05fc6-4f38f"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tTWMQqlBSa5hG5bCB7czOa5wEsl2OH600l471VAoPtFaJAlEhGdzRw==
age: 3473026
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 188.125.94.204 | 200 OK | 6.3 kB |
IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 7Q4EBQ5A3PWJ/fPpqhlj5oSrGxnQKVIndUBi5/gfyB74x+eDZy4kHCrc0zHU4YcXD4Y4kOc40sg=
x-amz-request-id: SPGQMZF85H0A9V3V
date: Thu, 25 Apr 2024 00:33:07 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1135
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 188.125.94.204 | 200 OK | 6.3 kB |
IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 7Q4EBQ5A3PWJ/fPpqhlj5oSrGxnQKVIndUBi5/gfyB74x+eDZy4kHCrc0zHU4YcXD4Y4kOc40sg=
x-amz-request-id: SPGQMZF85H0A9V3V
date: Thu, 25 Apr 2024 00:33:07 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1135
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 188.125.94.204 | 200 OK | 6.3 kB |
IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 7Q4EBQ5A3PWJ/fPpqhlj5oSrGxnQKVIndUBi5/gfyB74x+eDZy4kHCrc0zHU4YcXD4Y4kOc40sg=
x-amz-request-id: SPGQMZF85H0A9V3V
date: Thu, 25 Apr 2024 00:33:07 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1135
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 188.125.94.204 | 200 OK | 6.3 kB |
IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 7Q4EBQ5A3PWJ/fPpqhlj5oSrGxnQKVIndUBi5/gfyB74x+eDZy4kHCrc0zHU4YcXD4Y4kOc40sg=
x-amz-request-id: SPGQMZF85H0A9V3V
date: Thu, 25 Apr 2024 00:33:07 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1135
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/googleAnalytics4.js | 151.101.130.132 | 200 OK | 4.5 kB |
URL GET HTTP/2fast.wistia.com/assets/external/googleAnalytics4.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (17654) Hash125fa6aa86400029af6299aa435df040 216871e2474a3ee803e1c33629114ea5a37181b0 aad103f9dea1d7462e57569b46a915d35a702958c6071b86b867a780df5a91a8
GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "8f6950dab8a3f2d3cbcebfb350d07236"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:01 GMT
age: 2644
x-served-by: cache-iad-kiad7000047-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 67, 53
x-timer: S1714006321.340153,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 4476
X-Firefox-Spdy: h2
|
|
| paradigmpressgroup.com/favicons/favicon-16x16.png | 44.210.42.183 | 200 OK | 587 B |
URL GET HTTP/2paradigmpressgroup.com/favicons/favicon-16x16.png IP44.210.42.183:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerLet's Encrypt Subjectparadigmpressgroup.com Fingerprint9F:5E:5C:45:8B:D7:39:29:DA:7C:07:64:1E:F0:C5:D7:22:AE:AB:4D ValidityWed, 10 Apr 2024 16:51:00 GMT - Tue, 09 Jul 2024 16:50:59 GMT
File typePNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced Hash2bb2efaa073e4987ba1867aff02ab3ac ea05acee8f408e3f86830b5f2da0616ced013006 6b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6
GET /favicons/favicon-16x16.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 00:52:01 GMT
content-type: image/png
content-length: 587
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"24b-1823c06a3cc"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=790364257.1714006321>m=45je44o0v9122066590z8811578897za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1940934955 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=790364257.1714006321>m=45je44o0v9122066590z8811578897za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1940934955 IP142.250.74.163:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=790364257.1714006321>m=45je44o0v9122066590z8811578897za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1940934955 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 25 Apr 2024 00:52:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| paradigmpressgroup.com/favicons/apple-touch-icon.png | 44.210.42.183 | 200 OK | 3.0 kB |
URL GET HTTP/2paradigmpressgroup.com/favicons/apple-touch-icon.png IP44.210.42.183:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerLet's Encrypt Subjectparadigmpressgroup.com Fingerprint9F:5E:5C:45:8B:D7:39:29:DA:7C:07:64:1E:F0:C5:D7:22:AE:AB:4D ValidityWed, 10 Apr 2024 16:51:00 GMT - Tue, 09 Jul 2024 16:50:59 GMT
File typePNG image data, 180 x 180, 8-bit grayscale, non-interlaced Hashdd470648114adaceb47d36a18ad41d9d c93c69021ab4e381b4715938bed3732b132852b3 49dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4
GET /favicons/apple-touch-icon.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 25 Apr 2024 00:52:01 GMT
content-type: image/png
content-length: 3017
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"bc9-1823c06a3cb"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10082412.json | 188.125.94.204 | 200 OK | 22 B |
URL GET HTTP/2s.yimg.com/wi/config/10082412.json IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10082412.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: STVJFDKTWN5QJTQ2
x-amz-id-2: Fb2AS3hokaoDH3OlLjwueovd5h+33+qZL9OurwGl/BgAxFnDLos6aVRJRUNj+VtxXemc6NLZDiw=
content-type: application/json
date: Thu, 25 Apr 2024 00:52:00 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
age: 1
content-encoding: gzip
content-length: 22
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10125189.json | 188.125.94.204 | 200 OK | 22 B |
URL GET HTTP/2s.yimg.com/wi/config/10125189.json IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10125189.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: STVP8P0B74HSATK3
x-amz-id-2: OJmjShLKcomX2DpL6Bl8KPN8nr354cO1Hpu48JPUOpP0GTJxJNFCLf2JemJdCSR7X6dL7TQ1pX8=
content-type: application/json
date: Thu, 25 Apr 2024 00:52:01 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10114794.json | 188.125.94.204 | 200 OK | 22 B |
URL GET HTTP/2s.yimg.com/wi/config/10114794.json IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10114794.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: STVNK1ST9PRC37SM
x-amz-id-2: CAmT+ELhTZ+pVgt+pIWCGO+3o9gRdsOXvKO9LJpI2fwjoOYFjI8EQjROce8LahkfskmcJjqOaM70hOlI1+mwA6fyPq6zufPf
content-type: application/json
date: Thu, 25 Apr 2024 00:52:01 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
age: 0
content-encoding: gzip
content-length: 22
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/Jim-ctp-800px.webp | 54.230.241.180 | 200 OK | 4.0 MB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/AWN/awn_chaosrally_0324/Jim-ctp-800px.webp IP54.230.241.180:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size4.0 MB (3962480 bytes) Hashb2378a035ce925a3c216e683250858cd b5b240ea8cd23d37b557abfe5c18298876fff50f da221df132181d1e4b6a389bd024053d81208ad092f204fe7521e56c05052651
GET /AWN/awn_chaosrally_0324/Jim-ctp-800px.webp HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3962480
server: nginx
date: Tue, 23 Apr 2024 04:54:50 GMT
last-modified: Fri, 15 Mar 2024 20:20:19 GMT
cache-control: max-age=172800
expires: Thu, 25 Apr 2024 04:54:50 GMT
etag: "65f4ad83-3c7670"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VNLOS97J5zewJUkI9-iQZIJ742AINCWvup4_boWE9yZ4vrV7R-rSmA==
age: 158231
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP142.250.74.168:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash6f65c90e5451485f076a402227f4d22a e1d70ba8d556a77f82ff90430932ab44a1f6003e a8cc3aaea04655ad8ed5a8ffc67eb96a38873885f01b319b3eecfa934f7286d5
GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 00:52:01 GMT
expires: Thu, 25 Apr 2024 00:52:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94110
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash90b7dd8daac318d8af71b3860840e492 5b353ce19cec466f4caa3af9e693373831c9160a 81cf08e8f992ae3db6214398c04429b3436a4357c8304168453a44e3f7e2cb82
GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 00:52:01 GMT
expires: Thu, 25 Apr 2024 00:52:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94112
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.yimg.com/wi/config/10091245.json | 188.125.94.204 | 200 OK | 22 B |
URL GET HTTP/2s.yimg.com/wi/config/10091245.json IP188.125.94.204:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10091245.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: STVNBMRVHT5JP37N
x-amz-id-2: ABMOWRkoaNdLCymzjzN+hXtyp4MfD+ZrImoGSycVFx7e7E98nFz2xc7YxgyJL0ifv5pGg5hS+Nw=
content-type: application/json
date: Thu, 25 Apr 2024 00:52:01 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
age: 0
content-encoding: gzip
content-length: 22
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2346 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2346 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2346 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2377 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2377 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2377 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2368 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2368 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Click%20Report&tfd=2368 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=awn_aware&_c=1&tfd=2377 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=awn_aware&_c=1&tfd=2377 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=awn_aware&_c=1&tfd=2377 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/playPauseLoadingControl.js | 151.101.130.132 | 200 OK | 22 kB |
URL GET HTTP/2fast.wistia.com/assets/external/playPauseLoadingControl.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hash7845f53703880c301c91e55dacfb2730 a91923e2fe5f5a139f65a41682cee83637c636bf 441f641db8dc0a94620a07d59cfdad03e6fd3630fe3af81f82ce80d9d8ac3942
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "054f6647c2b3166c5479ecec2e1cdb23"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:02 GMT
age: 2788
x-served-by: cache-iad-kiad7000026-IAD, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 32
x-timer: S1714006322.386727,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 21596
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/engines/hls_video.js | 151.101.130.132 | 200 OK | 118 kB |
URL GET HTTP/2fast.wistia.com/assets/external/engines/hls_video.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size118 kB (118197 bytes) Hash0d0944584a2e0b7299c788dfbcc6224b dbafb5834a1553d168e2e61633d9dfb37d29a438 c6c26035fb90773bae20e3accc00fe4bf7368ac9eb802ce0ee066ffb3f89b738
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "eb7dd49fb6d9bc27920e7403bf0de676"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:02 GMT
age: 2788
x-served-by: cache-iad-kcgs7200058-IAD, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 13, 31
x-timer: S1714006322.401683,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 118197
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/images/blank.gif | 151.101.130.132 | 200 OK | 1.2 kB |
URL GET HTTP/2fast.wistia.com/assets/images/blank.gif IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeGIF image data, version 89a, 100 x 100 Hashfbdc4ed9a1e2ee4917a265306927bcf1 6d177725d8230df0457e72004080f712e26fe624 a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:02 GMT
age: 213
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 2
x-timer: S1714006323.731942,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1214
X-Firefox-Spdy: h2
|
|
| distillery.wistia.com/x | 54.230.111.67 | 204 No Content | 0 B |
IP54.230.111.67:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subjectstats-tap-production-cloudfront-app-cname.wistia.com Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40 ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1668
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Thu, 25 Apr 2024 00:52:02 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 2
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nr8kqoTUiDPTpaoKiAw4_Skycb4qGyzPfCeBfHrgatyzPK-HM9Omjw==
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.98 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.98:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1107
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Thu, 25 Apr 2024 00:52:02 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 0
server: envoy
x-cache: Miss from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NsO2kRtI4ITzsEkmj4fbsJe7nk0HtHKnZLbsmjI0sEtWhQwb7FShgw==
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/8p6wbm2hqg.m3u8 | 151.101.130.132 | 200 OK | 943 B |
URL GET HTTP/2fast.wistia.com/embed/medias/8p6wbm2hqg.m3u8 IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hashdd99f9a372e8c1f775f677ec5900a7eb 300585086dd91474899cc861b76f799080202534 7554c26e53e85264650943faafd9cd1d2d0d3ff8f1e5a47f0290b682396ad923
GET /embed/medias/8p6wbm2hqg.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"7554c26e53e85264650943faafd9cd1d"
x-request-id: 98b640a9-461f-4ec5-b450-5fab6de42511
x-runtime: 0.033834
x-envoy-upstream-service-time: 37
via: 1.1 1ac532da7db85d551ad10ca7bd9957b8.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: 41x8a2rtObq3uwYBsypOV5MesFGeQ9xCgqdYHxRCNIaRHofPd2_voA==
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:02 GMT
age: 0
x-served-by: cache-iad-kjyo7100170-IAD, cache-hel1410026-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 1029, 148
x-timer: S1714006323.711386,VS0,VE108
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 943
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8 | 143.204.55.103 | 200 OK | 85 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8 IP143.204.55.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Hash2df3655f266cd6857212261db1c9805c e98546e62c5fbd7ce15d3cfd6b3ed18403e25131 35d5192dc478bf1208be64ef3a325d354b72b57684adc54a506ac705d811ca00
GET /deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 85168
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
surrogate-key: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 160
date: Wed, 24 Apr 2024 07:20:44 GMT
expires: Thu, 24 Apr 2025 07:20:44 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8GobNLP4Rxp_RodBukFR4SwNwMzvJOos8vghJ_gBXQ2kJQrEpEEx0Q==
age: 63078
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8/seg-1-v1-a1.ts | 143.204.55.103 | 200 OK | 761 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8/seg-1-v1-a1.ts IP143.204.55.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeMPEG transport stream data Size761 kB (761400 bytes) Hashd858f57241e8df950a0233e987373fec 5020e20f357916f705e11e566e7440ae47923311 a31a7b5a310e4ef6cf4e0e72dc3c893ebed914e852490758e30ec6e5687dbe54
GET /deliveries/a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: video/MP2T
content-length: 761400
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
surrogate-key: a076b6fb1aa42a87bb1c3021a3038d632dd9bbe2-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 86
date: Sat, 20 Apr 2024 03:07:22 GMT
expires: Sun, 20 Apr 2025 03:07:22 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -vyVkBs69ZTkL7QWoAMdFaAbExylNNn24-a7rcd4qfIH10s8tPiMlQ==
age: 423880
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/595d55c6f1b5e15feb22484f907926e0cf410a7d.m3u8 | 143.204.55.103 | 200 OK | 85 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/595d55c6f1b5e15feb22484f907926e0cf410a7d.m3u8 IP143.204.55.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Hash300beb02cba757784b4dc3268c3b1aea f3c0baa87ea569602aad0a61374340544b5c45bf 5691f76b88bb0a3caadd81904df1d9155beb1704ec3c76a7b54cbfedfeb99771
GET /deliveries/595d55c6f1b5e15feb22484f907926e0cf410a7d.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 85168
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 595d55c6f1b5e15feb22484f907926e0cf410a7d-hls-segment
surrogate-key: 595d55c6f1b5e15feb22484f907926e0cf410a7d-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 161
date: Wed, 24 Apr 2024 02:39:04 GMT
expires: Thu, 24 Apr 2025 02:39:04 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q0kiiNubIdtFoJozwfiTHCv6hhQmCG8ls4sUrPo0z7qKSynPrZDMBw==
age: 79979
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/allIntegrations.js | 151.101.130.132 | 200 OK | 5.8 kB |
URL GET HTTP/2fast.wistia.com/assets/external/allIntegrations.js IP151.101.130.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (23371) Hashd5dd13ae4e2cc9dbc4601c4d95143418 13405305698ad9cc7f44a86871fa1c0d057a9bf4 709f139528814cc9d5158ed469a578082a81607df49b40e41a6fb4b240567ecd
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 24 Apr 2024 20:03:57 GMT
etag: "4d5cbf7cb285a542334e7de7bc37ed93"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:52:03 GMT
age: 2790
x-served-by: cache-iad-kjyo7100122-IAD, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 78, 19
x-timer: S1714006323.385155,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 4c28c160e6e9b44cd0508d30268df2ca31ca7dc8
content-length: 5773
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.98 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.98:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2216
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Thu, 25 Apr 2024 00:52:03 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l2w002RAyRBNQxI9KVWOGGBZrOdQaXE7DmCL4KwZ_CP2ACAndOec2A==
X-Firefox-Spdy: h2
|
|
| api.getblueshift.com/unity.gif?t=1714006323&e=pageload&r=&z=41299&x=59976d352f424c4b27d325518576b9b2&k=bdae2171-c256-495b-c95f-48755f6842dd&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue | 34.214.112.154 | 200 OK | 42 B |
URL GET HTTP/2api.getblueshift.com/unity.gif?t=1714006323&e=pageload&r=&z=41299&x=59976d352f424c4b27d325518576b9b2&k=bdae2171-c256-495b-c95f-48755f6842dd&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue IP34.214.112.154:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.getblueshift.com FingerprintD1:61:A7:FF:D0:FD:A2:46:9B:FE:0C:A8:F1:8A:A9:24:9B:70:04:65 ValidityWed, 07 Feb 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /unity.gif?t=1714006323&e=pageload&r=&z=41299&x=59976d352f424c4b27d325518576b9b2&k=bdae2171-c256-495b-c95f-48755f6842dd&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 00:52:04 GMT
content-type: image/gif
content-length: 42
access-control-expose-headers: etag
access-control-allow-origin: https://pro.paradigmnewsletters.org
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&_s=5&tfd=8713 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&_s=5&tfd=8713 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&_s=5&tfd=8713 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=12269 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=12269 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z8811578897za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=12269 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=17270 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=17270 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44o0v9122066590z878323495za200&_p=1714006320511&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=790364257.1714006321&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1714006321&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_chaosrally_0324%2FLAWN4392%2F%3Fcake_s1%3D04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed%26h%3Dtrue&dt=BIDEN%20OUT%20JUNE%2013&en=Engagement&tfd=17270 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Thu, 25 Apr 2024 00:52:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| verifiedwebpage.com/go?ehash=ec55f96bdbee115719939c545d55f6bb&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8] | 104.18.20.187 | 302 Found | 0 B |
URL User Request GET HTTP/2verifiedwebpage.com/go?ehash=ec55f96bdbee115719939c545d55f6bb&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8] IP104.18.20.187:443
CertificateIssuerGoogle Trust Services LLC Subjectverifiedwebpage.com FingerprintB6:7C:0D:93:CD:D6:56:A3:74:B9:46:38:F0:C7:A5:31:BC:5F:AF:56 ValidityWed, 10 Apr 2024 21:43:08 GMT - Tue, 09 Jul 2024 21:43:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go?ehash=ec55f96bdbee115719939c545d55f6bb&product=44769&ar=55&cid=2578&lid=1610&slhash=4a9834ecac99f8a72a7e3bb0819f9019&mtaid=mpmta&cid2=[s8] HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 00:51:57 GMT
content-type: text/html; charset=UTF-8
location: http://470kwc1.com/clk.trk?CID=468053&AFID=430135&SID=3415447649292250047
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=a55943dba6a87a2529cf76cf5f82a097; path=/
pixel_session_hash_44769=3415447649292250047; expires=Sat, 25-May-2024 00:51:55 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_44769=847affbe1514c079eef35fc2c17ebae9694c41aacc775b926f82ddcf689a523e; expires=Sat, 27-Apr-2024 00:51:55 GMT; Max-Age=172800
__cf_bm=SKHqVqw57qeLW4Rsl6zVlJArmt.rGF932RHv.YcA8GA-1714006317-1.0.1.1-9_sfhQoM3bVhdvDlKKkSQW38ufwLH91oLTnTMCd9bkMOg836ACpUYxhvoblj4rHpURLesVuD4LhlFGld0PIiYg; path=/; expires=Thu, 25-Apr-24 01:21:57 GMT; domain=.verifiedwebpage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 879a58f40e9a7127-OSL
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Bebas+Neue&display=swap | 142.250.74.106 | 200 OK | 799 B |
URL GET HTTP/2fonts.googleapis.com/css2?family=Bebas+Neue&display=swap IP142.250.74.106:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (817), with no line terminators Hashc493231efba2219e3348f16e938d7380 95b2c3d6221a58cbd7e96f2c05c40d03f53fb16c ff65de3252fffb1650fca0c23a1a87351bf5b2385dc11e35e19b94c3495e4cf0
GET /css2?family=Bebas+Neue&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 00:51:59 GMT
date: Thu, 25 Apr 2024 00:51:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| d2z65klgtz99km.cloudfront.net/css/base-styles.css | 54.230.241.180 | 200 OK | 3.4 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/css/base-styles.css IP54.230.241.180:443
Requested byhttps://pro.paradigmnewsletters.org/p/awn_chaosrally_0324/LAWN4392/?cake_s1=04_153137778_c3fc3f68-a868-4d5e-98f2-05e573f4f9ed&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (3424), with no line terminators Hash51f40e7db924251b27b19054b4593625 3984c3e46770d3434ca14e02435d4f4a1d3d51f8 881e23c64e57d67d436f55f470840633ad3b819b03e427d830f79bc942a87228
GET /css/base-styles.css HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 29 Mar 2024 13:32:42 GMT
last-modified: Fri, 28 Jul 2023 14:10:52 GMT
cache-control: max-age=2592000
expires: Sun, 28 Apr 2024 13:32:42 GMT
etag: W/"64c3cc6c-d56"
x-powered-by: PleskLin
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L8CYNcHXTkXvBYlXM0vqOMSGslbsf4YskB0kbTxZ-MCYDwF5P31uuA==
age: 2287157
X-Firefox-Spdy: h2
|
|