Report - go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040

Report Overview

Visitedpublic

2025-04-16 06:42:05

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.getblueshift.com	12716	2014-03-09	2016-09-19	2025-04-14	433 B	7.5 kB	54.240.174.71
www.ppj23t2rk.com	unknown	2025-01-02	2025-03-12	2025-04-09	524 B	30 kB	34.54.88.246
pipedream.wistia.com	6958	2007-03-18	2017-01-30	2025-04-10	2.2 kB	1.8 kB	143.204.55.3
fast.wistia.com	5153	2007-03-18	2012-07-04	2025-04-10	5.2 kB	1.8 MB	151.101.194.132
www.google.no	25607	2001-02-26	2012-06-26	2025-04-16	833 B	580 B	142.250.74.131
go.proinvestnews.com	unknown	2021-03-10	2023-10-26	2025-04-01	604 B	30 kB	104.21.112.1
www.google.com	7	1997-09-15	2015-05-10	2025-04-16	895 B	578 B	142.250.74.68
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2025-04-09	484 B	74 kB	151.101.130.217
d2z65klgtz99km.cloudfront.net	unknown	2008-04-25	2021-03-17	2025-04-11	3.9 kB	8.6 MB	54.230.245.165
api.getblueshift.com	9346	2014-03-09	2014-05-10	2025-04-12	749 B	341 B	54.244.96.25
verifiedlinks.org	unknown	2024-08-27	2024-09-05	2025-04-09	629 B	30 kB	104.18.24.96
embed-cloudfront.wistia.com	unknown	2007-03-18	2022-11-08	2025-04-10	1.1 kB	452 kB	143.204.55.78
pro.paradigmnewsletters.org	unknown	2018-12-12	2019-06-06	2025-04-09	2.0 kB	60 kB	161.129.26.18
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2025-04-16	7.6 kB	6.0 kB	216.239.34.36
distillery.wistia.com	6708	2007-03-18	2012-09-30	2025-04-10	513 B	412 B	54.240.174.25
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-04-16	457 B	98 kB	142.250.178.74
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-04-16	3.1 kB	2.8 MB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-15	medium	verifiedlinks.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (36)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtm.js?id=GTM-P95MDDF	ScriptElement	671 kB	2025-04-16	2025-04-16
URL www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 671 kB (671112 bytes) MD5 778ecf1a432369e693b89218d868e029 SHA1 42b09280c3b1d2096a1b4e9dd00b7bbcf930db12 SHA256 6e5c454cc8d330096c86556647eaa1ffc079d0c67df30cfc74409fa4017070c6 Format Code Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-08-02
URL www.google-analytics.com/analytics.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 419001 Size 4.7 kB (4691 bytes) MD5 f24128d0c9cba7be2916c693427a3483 SHA1 1b6397d496ea896ebc2018b01b995cee4f166029 SHA256 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Format Code Loading...

	fast.wistia.com/assets/external/playPauseLoadingControl.js	ScriptElement	1.0 kB	2025-04-09	2025-04-18
URL fast.wistia.com/assets/external/playPauseLoadingControl.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-09 Last Seen 2025-04-18 Times Seen 30 Size 1.0 kB (1000 bytes) MD5 69b99d399ddc72dab6d6d4e0a90a91eb SHA1 1a1f804811da0931472c4393b1de38799beb8e73 SHA256 e867e070ef6ef0ce95db211347e3ebf8b9a493fcfe14390ebef49f6e99cfc480 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950	ScriptElement	437 kB	2025-04-16	2025-04-16
URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 437 kB (436621 bytes) MD5 1ab7ef68be6723e3a6c62a554e9f82dd SHA1 6d6ff10a24648590a67c8d8fa9e6f86abecbaf60 SHA256 3b1482522cb9bcce12505301569b92b6acdd751bb091e068e2a4b36e740f358a Format Code Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NKRVP76	ScriptElement	519 kB	2025-04-16	2025-04-16
URL www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 519 kB (518631 bytes) MD5 e69f0cf8bbd528da1186a12034721375 SHA1 ebd8f8232b617566291ee468bf88399589a63e0d SHA256 cb401a3ee73161612d509e443c7927d9f3c081d9f9bbeac62d95561c78a0830a Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	39 B	2023-03-10	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-10 Last Seen 2025-08-02 Times Seen 6036 Size 39 B (39 bytes) MD5 af8745eef59c123e59cd4703ea4cc40e SHA1 8aab93d5d6e19c3430396e434f734df7699aeda0 SHA256 419e6fe661d8187589ce9e3f1f2888d3bd1fc5f4af3dc1e6a0321a66c31e1191 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	326 B	2023-03-14	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-14 Last Seen 2025-08-02 Times Seen 2843 Size 326 B (326 bytes) MD5 aedcaf36e4ad85dbf51037318c8ab10c SHA1 c6210e518ab8eeb0a496b966241caeb1c464516a SHA256 5a0af2eeee3dcb3f4e43e4533947d91a74f63d17a73691aac1ad46367989809f Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code		147 B	2023-04-11	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 419739 Size 147 B (147 bytes) MD5 92b651082ce234f66bb544e678befda3 SHA1 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 SHA256 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Format Code Loading...

	fast.wistia.com/assets/external/googleAnalytics4.js	ScriptElement	31 kB	2025-04-09	2025-04-30
URL fast.wistia.com/assets/external/googleAnalytics4.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-09 Last Seen 2025-04-30 Times Seen 281 Size 31 kB (31408 bytes) MD5 b4bb433743a52f545893f6d162f5dd9a SHA1 7862f1f7d5929c86163421135ad75b5c369c4f5f SHA256 44d02469376ce93c9ac03e653fea5bacd0fa865757669df3a66516f55ce2705a Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	341 B	2023-03-10	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-10 Last Seen 2025-08-02 Times Seen 2823 Size 341 B (341 bytes) MD5 285bc9b441da8c1fbab42396acae2df3 SHA1 833ac60111a789824e40a385d2e225c129751bbd SHA256 7849138d30558b224e5ccd5847d7ea5767630e220bf7d4e3496e99c5fa02974f Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	341 B	2023-09-13	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2023-09-13 Last Seen 2025-08-02 Times Seen 2816 Size 341 B (341 bytes) MD5 ce1c2dd4d39647e5c7e8a4ded7c7d48a SHA1 4f7b2f537cb1a05bd6a7f661fce09d2db271bb38 SHA256 8a871b5034d221b1a98614580a9a998b0a63ad1bff46c93d65d0ed544c3638fc Format Code Loading...

	fast.wistia.com/assets/external/E-v1.js	ScriptElement	911 kB	2025-04-15	2025-04-16
URL fast.wistia.com/assets/external/E-v1.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-15 Last Seen 2025-04-16 Times Seen 119 Size 911 kB (910759 bytes) MD5 3db349593bfc93a116f293027848ad43 SHA1 b2551af498489bb558ce1e77cb782d5cde627152 SHA256 72e4df347c64fafa89c4061ea3b286cbb8356534fbfe82c8c99061a11753e851 Format Code Loading...

	fast.wistia.com/assets/external/allIntegrations.js	ScriptElement	60 kB	2025-04-09	2025-04-22
URL fast.wistia.com/assets/external/allIntegrations.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-09 Last Seen 2025-04-22 Times Seen 282 Size 60 kB (60243 bytes) MD5 bad5365923cc4b31fbdc7650d05f6d42 SHA1 d95dd64e5a78e9560b3e31735e902a2e189745d6 SHA256 41b837c81f288b7b89604b1673487b0792d3a178b099b475f1c8d7011e078911 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C	ScriptElement	438 kB	2025-04-16	2025-04-16
URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 438 kB (437972 bytes) MD5 22a45083798154180e33ddf578000005 SHA1 0fec3b19abdc73e8e94781c4c487597e8e77e09c SHA256 aa5c6d8b9205163013c8b86386d46a421538b84adc61e3f38313d13fbe7962f1 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	836 B	2023-11-08	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-08 Last Seen 2025-08-02 Times Seen 2794 Size 836 B (836 bytes) MD5 4e2e4cbe63ac644606cfa87e76452824 SHA1 3936c2eb6588579868016076278ccd961760eda0 SHA256 85c1ef4cc98021ecdbab4fb4016a5a3500c7c47f6a2dd042083947f32ab1fb05 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950	ScriptElement	386 kB	2025-04-16	2025-04-16
URL www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 386 kB (386414 bytes) MD5 cacedad19ea2c4c1e29822f30806bc1f SHA1 4df8f186da9d1e3db6cc91440ebabec2739c3e1f SHA256 ee5785af3dd74d9a6e38bac50619291d86d1431d82da1d425c990d6304489035 Format Code Loading...

	fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js	ScriptElement	1.0 kB	2025-04-09	2025-04-18
URL fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-09 Last Seen 2025-04-18 Times Seen 32 Size 1.0 kB (1000 bytes) MD5 60e7a585de2872716a7819a568575382 SHA1 196b697cec6c3c6d38b3464ce07565fa06b9bb83 SHA256 948a2ddb038922a9301a6e9db2596999fe6024b5fa337b708ee22b19439b6d51 Format Code Loading...

	pro.paradigmnewsletters.org/p/Scripts/HideContent.js	ScriptElement	721 B	2023-03-09	2025-08-02
URL pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-09 Last Seen 2025-08-02 Times Seen 7733 Size 721 B (721 bytes) MD5 624fa8179cc49ca9e80737453a6b3367 SHA1 226693fb4119bc204e4dd3b8d36da8587fd00bb0 SHA256 809a6bdcc35b316bf93316955e29816c41204f9bcc5fefb53d8a075bba2ee6ac Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	8.2 kB	2025-04-16	2025-04-16
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 8.2 kB (8171 bytes) MD5 2b1434519c43e3a3a5800e28a1444799 SHA1 bbc4591ac983ab645b66c90aaa8073e3f391c951 SHA256 e9fd402f55461df35dbe90884803a194d1b8f97105ecfd09137f1d8ce68bafc5 Format Code Loading...

	cdn.getblueshift.com/blueshift.js	ScriptElement	6.9 kB	2024-12-10	2025-06-06
URL cdn.getblueshift.com/blueshift.js IP / ASN 54.240.174.71 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-12-10 Last Seen 2025-06-06 Times Seen 2683 Size 6.9 kB (6936 bytes) MD5 cef7c83a090a8a07f5c1d53872847afe SHA1 e813804d783e72d1eb6f096ec956ebdaacff8e64 SHA256 8cdf3a99ba41b4c937f27fcfd035be69585da981301c244c46cf026c57fba5f9 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	37 B	2024-09-04	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded false Resource Info First Seen 2024-09-04 Last Seen 2025-08-02 Times Seen 2014 Size 37 B (37 bytes) MD5 fb355132913d97759b331f759b62ee6f SHA1 92e5e438f4aa7c85b8d3af584887226e4826de4f SHA256 5a80219e7147df860800359a59b8bce03a12dcbca15fb3bebd9f119256107037 Format Code Loading...

	fast.wistia.com/assets/external/googleAnalytics.js	ScriptElement	1.0 kB	2025-04-10	2025-06-02
URL fast.wistia.com/assets/external/googleAnalytics.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-10 Last Seen 2025-06-02 Times Seen 58 Size 1.0 kB (1000 bytes) MD5 808de1b80b7830d3587608a148465fb7 SHA1 202c217e65877dd1e60a491dcedc7b9b09fdeb35 SHA256 892c47068876e69a9173540c9cfe426a2eb95a6c4377483ba5faa28471e2eff6 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	2.7 kB	2025-03-29	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-29 Last Seen 2025-08-02 Times Seen 1043 Size 2.7 kB (2683 bytes) MD5 424e1d50695a146361996cf9304db012 SHA1 faccea88abdec05641e80a25b83a76bf36ba8748 SHA256 3b225757dfe2c64b405e18fa6cf90e7d38a7886f1a136e990091ffc7e7617f26 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	2.3 kB	2025-04-10	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-10 Last Seen 2025-08-02 Times Seen 2060 Size 2.3 kB (2310 bytes) MD5 527a6ca018d2079f85f562f5a27812d0 SHA1 0c6e27d74eb21a2a55818be7d354fdfceeb507fb SHA256 8ee2b301962b5b48b0d94256b7836d4ebe7e76f6bbeb51fb9a1d27076ab9a005 Format Code Loading...

	fast.wistia.com/assets/external/midrollLink-v2.js	ScriptElement	22 kB	2025-04-14	2025-04-16
URL fast.wistia.com/assets/external/midrollLink-v2.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-14 Last Seen 2025-04-16 Times Seen 110 Size 22 kB (21576 bytes) MD5 2988a3d551f487c122ad57e49d910378 SHA1 68913d3b2b3487e6f1190cdf512c8ceece43f64a SHA256 2489c9f2013ae0402d9449d1c367b41a48bb9a6bc2d5c6f812628cceab3e98a9 Format Code Loading...

	browser.sentry-cdn.com/9.6.1/bundle.min.js	ScriptElement	1.0 kB	2025-04-09	2025-08-02
URL browser.sentry-cdn.com/9.6.1/bundle.min.js IP / ASN 151.101.130.217 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-09 Last Seen 2025-08-02 Times Seen 262 Size 1.0 kB (1000 bytes) MD5 1009c00908686f00e39305d5abb2c916 SHA1 454df1964a06f2fd37774238fdff2bf984ebb3cd SHA256 99dad491dae6f41c6daa8c6b86f19fee3a1529e4e2a784a29b6b0bf6f2702bfd Format Code Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	ScriptElement	97 kB	2023-03-07	2025-08-02
URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP / ASN 142.250.178.74 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 36332 Size 97 kB (97163 bytes) MD5 4f252523d4af0b478c810c2547a63e19 SHA1 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb SHA256 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code		147 B	2023-04-11	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 419739 Size 147 B (147 bytes) MD5 92b651082ce234f66bb544e678befda3 SHA1 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 SHA256 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	1.3 kB	2025-04-07	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-07 Last Seen 2025-08-02 Times Seen 2094 Size 1.3 kB (1279 bytes) MD5 9b7348e21cc1ba21b9046589d65f3ace SHA1 8d63e792e226a4a7f71e943f6fa5e95ace3d871f SHA256 c3bf68cd2ace00a16ddc8ac76740e20ab3de6d1f56a91c741da6d08ed5a3aa24 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	2.2 kB	2023-03-10	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-10 Last Seen 2025-08-02 Times Seen 3561 Size 2.2 kB (2197 bytes) MD5 e4f3e2e42bacfb36a7847e627e7e8276 SHA1 5492c5e58d3c3abd4a40f736078f546b450e8085 SHA256 5b86639a656d86f430a56426ae9ac2c83fe1a5c11d91739037f8b1146f5677b8 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	1.3 kB	2023-03-10	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-10 Last Seen 2025-08-02 Times Seen 2819 Size 1.3 kB (1297 bytes) MD5 94d29b65bf770b80ca20ff02e2ba5f41 SHA1 a4c1ab460dbe34b9672c2745f50e0c792a64d932 SHA256 2d59b45ab2c9e86e411bdd0f5f9d8bb84b383a197faf372ee4e91a0c9a651b87 Format Code Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	1.3 kB	2024-02-05	2025-08-02
URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP / ASN 161.129.26.18 #11372 14WEST-AS Introduced by ScriptElement Embedded false Resource Info First Seen 2024-02-05 Last Seen 2025-08-02 Times Seen 2589 Size 1.3 kB (1306 bytes) MD5 c14d2737cadb3a0ca008bfa3669bd651 SHA1 8288b4fcb69ee42fbfbaf0533ad239dd37a971a2 SHA256 4224a6ccdb4870ef44685b1205c3e52feaa7f902f3a6ff3ee36746772bceedf1 Format Code Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-08-02
URL www.google-analytics.com/analytics.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 419001 Size 4.7 kB (4691 bytes) MD5 f24128d0c9cba7be2916c693427a3483 SHA1 1b6397d496ea896ebc2018b01b995cee4f166029 SHA256 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157	ScriptElement	338 kB	2025-04-16	2025-04-16
URL www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157 IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-16 Last Seen 2025-04-16 Times Seen 1 Size 338 kB (338057 bytes) MD5 9cc533473ff887f498525dad9bf7bd29 SHA1 cf3d1642bd83c0f30a847cf2cca4e5e7ed8f8269 SHA256 9c3ce8ff4b331c7b91fc160e2eb88261d7ec330a71bbd7e12bb935d70be5569e Format Code Loading...

	fast.wistia.com/assets/external/engines/hls_video.js	ScriptElement	547 kB	2025-04-09	2025-04-22
URL fast.wistia.com/assets/external/engines/hls_video.js IP / ASN 151.101.194.132 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2025-04-09 Last Seen 2025-04-22 Times Seen 351 Size 547 kB (546819 bytes) MD5 d3ac46015ac85cdc35028b7b97a126d7 SHA1 072e8ac2762b6e0d6f4dc2b09bfe7cf1db834f91 SHA256 1830f316faf442c973216553ad90faee03310d78a5b58051be778f96247dfba1 Format Code Loading...

	pro.paradigmnewsletters.org/p/Scripts/Common.js	ScriptElement	2.4 kB	2023-03-09	2025-08-02
URL pro.paradigmnewsletters.org/p/Scripts/Common.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-09 Last Seen 2025-08-02 Times Seen 7733 Size 2.4 kB (2448 bytes) MD5 ef9b6f612e89926fa10830ad89a7f3b6 SHA1 faa8fbf56e4834534455c46ba2753118eb554c2e SHA256 86034bbe69eebb0c08660ff7f0128dd0bd1d852176489ca3a3da7b49bd647cbd Format Code Loading...

HTTP Transactions (51)

URL IP Response Size

GET pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

161.129.26.18

200 OK

29 kB

URL

pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

IP / ASN

161.129.26.18

#11372 14WEST-AS

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (2011), with CRLF, LF line terminators

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size29 kB (29169 bytes)

MD5a93d66c29801fb4be0f03a3ca83d3536

SHA1e6ddb26590d02041b7f6df685cc3691ee39d0f66

SHA2564e544eecddfd947bb9d0858dc052a47d94741d41778ad78c8f05bab72a9291d6

Certificate Info

IssuerLet's Encrypt

Subjectordertracking6.pubsvs.com

Fingerprint9D:62:1B:3D:92:D7:95:FA:39:D0:D1:43:F6:F2:DB:7D:92:09:30:09

ValidityWed, 26 Mar 2025 11:54:44 GMT - Tue, 24 Jun 2025 11:54:43 GMT

HTTP Headers

GET /p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 2428639=2888909; BIGipServerQEX662zAURJQLrqleAP1SA=!Bz07B6Cf9uBwEoRC6+h9tp1lrjN3ZZG8h6A5SQqSOFjO56Ke6lzkGjrxuC4V3GpckKMlnAh2t+ehr10=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: LAWN5432=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 16 Apr 2025 06:41:42 GMT
Content-Length: 11225
Strict-Transport-Security: max-age=63072000; includeSubDomains

GET pro.paradigmnewsletters.org/p/Scripts/HideContent.js

161.129.26.18

200 OK

724 B

URL

pro.paradigmnewsletters.org/p/Scripts/HideContent.js

IP / ASN

161.129.26.18

#11372 14WEST-AS

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with CRLF line terminators

First Seen2023-03-09

Last Seen2025-08-02

Times Seen7733

Size724 B (724 bytes)

MD5624fa8179cc49ca9e80737453a6b3367

SHA1226693fb4119bc204e4dd3b8d36da8587fd00bb0

SHA256809a6bdcc35b316bf93316955e29816c41204f9bcc5fefb53d8a075bba2ee6ac

Certificate Info

IssuerLet's Encrypt

Subjectordertracking6.pubsvs.com

Fingerprint9D:62:1B:3D:92:D7:95:FA:39:D0:D1:43:F6:F2:DB:7D:92:09:30:09

ValidityWed, 26 Mar 2025 11:54:44 GMT - Tue, 24 Jun 2025 11:54:43 GMT

HTTP Headers

GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
DNT: 1
Connection: keep-alive
Cookie: 2428639=2888909; BIGipServerQEX662zAURJQLrqleAP1SA=!Bz07B6Cf9uBwEoRC6+h9tp1lrjN3ZZG8h6A5SQqSOFjO56Ke6lzkGjrxuC4V3GpckKMlnAh2t+ehr10=; LAWN5432=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 16 Apr 2025 06:41:43 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains

GET www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157

142.250.74.168

200 OK

338 kB

URL

www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (5436)

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size338 kB (338057 bytes)

MD59cc533473ff887f498525dad9bf7bd29

SHA1cf3d1642bd83c0f30a847cf2cca4e5e7ed8f8269

SHA2569c3ce8ff4b331c7b91fc160e2eb88261d7ec330a71bbd7e12bb935d70be5569e

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

GET /gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:45 GMT
expires: Wed, 16 Apr 2025 06:41:45 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 114597
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET browser.sentry-cdn.com/9.6.1/bundle.min.js

151.101.130.217

200 OK

74 kB

URL

browser.sentry-cdn.com/9.6.1/bundle.min.js

IP / ASN

151.101.130.217

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65448)

First Seen2025-03-21

Last Seen2025-08-02

Times Seen6523

Size74 kB (73553 bytes)

MD5ba2c607c01b95e9d2187276e3b22e0ee

SHA1f99b748f42b43af113dd1d051d8b1f65680669a1

SHA256d0cda1cf41f5e74dcefb718dedd1890eb9d4717a7bf6e9262715c958518b02af

Certificate Info

IssuerGlobalSign nv-sa

Subject*.sentry-cdn.com

Fingerprint00:4D:2B:16:F6:29:29:D8:2F:20:48:BD:32:13:96:5D:37:EB:F8:25

ValidityMon, 07 Apr 2025 18:50:27 GMT - Sat, 09 May 2026 18:50:26 GMT

HTTP Headers

GET /9.6.1/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 19 Mar 2026 10:42:19 GMT
last-modified: Wed, 19 Mar 2025 10:04:57 GMT
etag: "a2ce4ee15b70ec14c3c98b8f168a2ff4"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 684834
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 25178
X-Firefox-Spdy: h2

POST pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL

pipedream.wistia.com/mput?topic=metrics

IP / ASN

143.204.55.3

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeASCII text, with no line terminators

First Seen2023-03-09

Last Seen2025-08-02

Times Seen108024

Size2 B (2 bytes)

MD5e0aa021e21dddbd6d8cecec71e9cf564

SHA19ce3bd4224c8c1780db56b4125ecf3f24bf748b7

SHA256565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

Certificate Info

IssuerAmazon

Subjectpipedream-production-cloudfront-app-cname.wistia.com

Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68

ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 209
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:48 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 20ZTytlWUuQP5U4n6aDOw4dUmUdd9yDMZm02WqaMaHnpCxzCA7gt-A==
X-Firefox-Spdy: h2

GET fast.wistia.com/embed/medias/x923mlkxu2.json

151.101.194.132

200 OK

8.5 kB

URL

fast.wistia.com/embed/medias/x923mlkxu2.json

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJSON text data

First Seen2025-04-15

Last Seen2025-04-16

Times Seen54

Size8.5 kB (8485 bytes)

MD592943836f2f5b5f5bd884b8d9ab3b3cb

SHA1d361cc36733159e932dd3415ed211bd8748989ac

SHA256b42cfa9b327be2714009f571606e898ff19f0cd02e37bd231254a3cb2a4a2646

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /embed/medias/x923mlkxu2.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: br
x-envoy-upstream-service-time: 69
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"b42cfa9b327be2714009f571606e898f"
x-request-id: cd5a8923-a657-4295-ad1f-9c4860f8115b
x-runtime: 0.067157
via: 1.1 d0c7523233c2ce4a1a420cfda612235a.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P4
x-amz-cf-id: Ep_mZ-ireJ16_JUE_TFFOaYwxxfdcqWinsl4WW3umamnKyK8C3ZQaA==
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:44 GMT
age: 43166
x-served-by: cache-iad-kcgs7200071-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 25, 32
x-timer: S1744785705.996499,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 2122
X-Firefox-Spdy: h2

GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=93989633.1744785705&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&z=389701698

142.250.74.131

200 OK

42 B

URL

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=93989633.1744785705&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&z=389701698

IP / ASN

142.250.74.131

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeGIF image data, version 89a, 1 x 1

First Seen2023-04-05

Last Seen2025-08-02

Times Seen319924

Size42 B (42 bytes)

MD5d89746888da2d9510b64a9f031eaecd5

SHA1d5fceb6532643d0d84ffe09c40c481ecdf59e15a

SHA256ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Certificate Info

IssuerGoogle Trust Services

Subject*.google.no

Fingerprint9A:A1:61:22:E4:39:37:BB:8A:D5:7B:0F:F9:95:18:78:6A:FF:67:B0

ValidityThu, 20 Mar 2025 11:21:32 GMT - Thu, 12 Jun 2025 11:21:31 GMT

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=93989633.1744785705&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&z=389701698 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=2&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5207

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=2&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5207

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=2&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5207 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL

pipedream.wistia.com/mput?topic=metrics

IP / ASN

143.204.55.3

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeASCII text, with no line terminators

First Seen2023-03-09

Last Seen2025-08-02

Times Seen108024

Size2 B (2 bytes)

MD5e0aa021e21dddbd6d8cecec71e9cf564

SHA19ce3bd4224c8c1780db56b4125ecf3f24bf748b7

SHA256565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

Certificate Info

IssuerAmazon

Subjectpipedream-production-cloudfront-app-cname.wistia.com

Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68

ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 132
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:45 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qc5BuKRnHT3m09Yco8otfwD4uCpxYVs2wj5-e-Y80bN64AcX5_ypzQ==
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5153

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5153

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5153 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js

151.101.194.132

200 OK

98 kB

URL

fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65462)

First Seen2025-04-14

Last Seen2025-04-16

Times Seen112

Size98 kB (98062 bytes)

MD500dccfb2d30abca5cb09ca85f9169d3b

SHA17e0c05a67eadb55154291a375aeac05964052340

SHA256ec198313c2e0785d3e4808ab6e51f70baddc94a299c0e7c3fe05b48ee2652a00

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "84867cc66831439b595e9622cd1cf0ca"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 2566
x-served-by: cache-iad-kiad7000049-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 15
x-timer: S1744785706.020440,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 24029
X-Firefox-Spdy: h2

POST distillery.wistia.com/x

54.240.174.25

204 No Content

0 B

URL

distillery.wistia.com/x

IP / ASN

54.240.174.25

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerAmazon

Subjectstats-tap-production-cloudfront-app-cname.wistia.com

Fingerprint33:84:8E:BA:E0:87:C3:9E:A8:D7:D0:B5:50:73:A2:65:A9:A4:06:04

ValidityTue, 13 Aug 2024 00:00:00 GMT - Thu, 11 Sep 2025 23:59:59 GMT

HTTP Headers

POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1694
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 16 Apr 2025 06:41:47 GMT
x-envoy-upstream-service-time: 2
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eyj2jNXM60XbVahP1xthc0J4VCQS0moGbqUzMfKQY6K-5MzsaGjpTQ==
X-Firefox-Spdy: h2

GET pro.paradigmnewsletters.org/m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266

161.129.26.18

301 Moved Permanently

29 kB

URL

pro.paradigmnewsletters.org/m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266

IP / ASN

161.129.26.18

#11372 14WEST-AS

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size29 kB (29169 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectordertracking6.pubsvs.com

Fingerprint9D:62:1B:3D:92:D7:95:FA:39:D0:D1:43:F6:F2:DB:7D:92:09:30:09

ValidityWed, 26 Mar 2025 11:54:44 GMT - Tue, 24 Jun 2025 11:54:43 GMT

HTTP Headers

GET /m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266 HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Date: Wed, 16 Apr 2025 06:41:42 GMT
Content-Length: 264
Set-Cookie: 2428639=2888909; expires=Tue, 06-May-2025 06:41:42 GMT; path=/; HttpOnly
BIGipServerQEX662zAURJQLrqleAP1SA=!Bz07B6Cf9uBwEoRC6+h9tp1lrjN3ZZG8h6A5SQqSOFjO56Ke6lzkGjrxuC4V3GpckKMlnAh2t+ehr10=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains

GET d2z65klgtz99km.cloudfront.net/favicons/apple-touch-icon.png

54.230.245.165

200 OK

3.0 kB

URL

d2z65klgtz99km.cloudfront.net/favicons/apple-touch-icon.png

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typePNG image data, 180 x 180, 8-bit grayscale, non-interlaced

First Seen2023-05-02

Last Seen2025-08-02

Times Seen3306

Size3.0 kB (3017 bytes)

MD5dd470648114adaceb47d36a18ad41d9d

SHA1c93c69021ab4e381b4715938bed3732b132852b3

SHA25649dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /favicons/apple-touch-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 3017
server: nginx
date: Tue, 17 Sep 2024 13:34:40 GMT
last-modified: Tue, 08 Aug 2023 13:35:51 GMT
cache-control: max-age=31536000
expires: Wed, 17 Sep 2025 13:34:40 GMT
etag: "64d244b7-bc9"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6GTpgmFI0PxB5cqSWiK8HALeiXRJ3OlmkzgIWd4q1IgrZMpucj83lg==
age: 18205624
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=3&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5234

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=3&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5234

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=3&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5234 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=4&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=awn_aware&_c=1&tfd=5236

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=4&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=awn_aware&_c=1&tfd=5236

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=4&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=awn_aware&_c=1&tfd=5236 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET api.getblueshift.com/unity.gif?t=1744785707&e=pageload&r=&z=599395&x=59976d352f424c4b27d325518576b9b2&k=58e3572c-56a8-690a-7664-917b79985764&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue

54.244.96.25

200 OK

42 B

URL

api.getblueshift.com/unity.gif?t=1744785707&e=pageload&r=&z=599395&x=59976d352f424c4b27d325518576b9b2&k=58e3572c-56a8-690a-7664-917b79985764&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue

IP / ASN

54.244.96.25

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeGIF image data, version 89a, 1 x 1

First Seen2023-04-05

Last Seen2025-08-02

Times Seen319924

Size42 B (42 bytes)

MD5d89746888da2d9510b64a9f031eaecd5

SHA1d5fceb6532643d0d84ffe09c40c481ecdf59e15a

SHA256ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

Certificate Info

IssuerAmazon

Subject*.getblueshift.com

FingerprintD4:66:05:EE:E7:3B:52:A2:0C:DA:14:A3:C0:6B:A5:9C:45:6C:29:17

ValidityTue, 07 Jan 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT

HTTP Headers

GET /unity.gif?t=1744785707&e=pageload&r=&z=599395&x=59976d352f424c4b27d325518576b9b2&k=58e3572c-56a8-690a-7664-917b79985764&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Apr 2025 06:41:48 GMT
content-type: image/gif
content-length: 42
access-control-expose-headers: etag
access-control-allow-origin: https://pro.paradigmnewsletters.org
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=6&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=14915

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=6&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=14915

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=6&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=14915 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-play-icon.png

54.230.245.165

200 OK

318 B

URL

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-play-icon.png

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typePNG image data, 31 x 39, 8-bit/color RGBA, non-interlaced

First Seen2023-09-21

Last Seen2025-08-02

Times Seen2625

Size318 B (318 bytes)

MD5120ca7c31817e6e137e2a807ddcddbe0

SHA1254f6b23b9b2d4c040decf505eac8b6a9296a1c6

SHA256dd5f84c4b871b07d787fe2709d47cdc18eee536bb2560c6f889256dd59c61b48

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /AWN/exit-pop/exitpop-play-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 318
server: nginx
date: Mon, 04 Nov 2024 00:17:44 GMT
x-frame-options: sameorigin
x-accel-version: 0.01
last-modified: Fri, 15 Sep 2023 16:23:24 GMT
etag: "13e-6056836372650"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Tue, 04 Nov 2025 00:17:44 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: SAMEORIGIN
x-powered-by: PleskLin
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ysj00Q5hmyuX9YimQNN1nmC1U3kE45jOEFzEibHlrbbZj72QhhpMKA==
age: 14106240
X-Firefox-Spdy: h2

GET d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_BIRTHRIGHT_CTP_DESKTOP_HANDWRITTENPRESSPLAY_FS_0325.gif

54.230.245.165

200 OK

8.6 MB

URL

d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_BIRTHRIGHT_CTP_DESKTOP_HANDWRITTENPRESSPLAY_FS_0325.gif

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeGIF image data, version 89a, 1366 x 768

First Seen2025-04-07

Last Seen2025-07-26

Times Seen470

Size8.6 MB (8608239 bytes)

MD5d32a1cfd822ea938170c65d8c3a7c080

SHA1bf4f69e796f65b4a9f70f22ad1ca3ac94c67d97c

SHA256ded0b1464cf48e44d71a6b983f7033ad9a2a2f4709c8eeef138a5daa30f50b9c

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /AWN/awn_birthright_0325/AWN_BIRTHRIGHT_CTP_DESKTOP_HANDWRITTENPRESSPLAY_FS_0325.gif HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 8608239
server: nginx
date: Fri, 21 Mar 2025 00:14:44 GMT
last-modified: Thu, 20 Mar 2025 18:34:51 GMT
cache-control: max-age=31536000
expires: Sat, 21 Mar 2026 00:14:44 GMT
etag: "67dc5fcb-8359ef"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dSd17JBvlmhKyKiYb5HDSbPPm1LqDL4c6uHedNChcxGagqu7avHHiw==
age: 2269622
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C

142.250.74.168

200 OK

438 kB

URL

www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (17055)

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size438 kB (437972 bytes)

MD522a45083798154180e33ddf578000005

SHA10fec3b19abdc73e8e94781c4c487597e8e77e09c

SHA256aa5c6d8b9205163013c8b86386d46a421538b84adc61e3f38313d13fbe7962f1

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:47 GMT
expires: Wed, 16 Apr 2025 06:41:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 142296
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fast.wistia.com/assets/external/allIntegrations.js

151.101.194.132

200 OK

60 kB

URL

fast.wistia.com/assets/external/allIntegrations.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (60199)

First Seen2025-04-09

Last Seen2025-04-22

Times Seen282

Size60 kB (60243 bytes)

MD5bad5365923cc4b31fbdc7650d05f6d42

SHA1d95dd64e5a78e9560b3e31735e902a2e189745d6

SHA25641b837c81f288b7b89604b1673487b0792d3a178b099b475f1c8d7011e078911

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "b9ff01eff92ca05a16f57c2d7d3bf61c"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 2696
x-served-by: cache-iad-kcgs7200023-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 59, 129
x-timer: S1744785707.424647,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 14774
X-Firefox-Spdy: h2

GET verifiedlinks.org/go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8]

104.18.24.96

302 Found

29 kB

URL

verifiedlinks.org/go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8]

IP / ASN

104.18.24.96

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size29 kB (29169 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectverifiedlinks.org

Fingerprint3B:DD:7F:E7:1B:15:74:6E:9A:DD:86:1D:77:58:03:C6:7C:D4:6B:4E

ValidityThu, 20 Feb 2025 17:32:01 GMT - Wed, 21 May 2025 18:31:45 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8] HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 16 Apr 2025 06:41:42 GMT
content-type: text/html; charset=UTF-8
location: https://www.ppj23t2rk.com/C5PWF/2J2CRS/?sub1=3415790118458890266
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=b37bf2982ce8838c2359a50b06ee3e15; path=/
pixel_session_hash_67111=3415790118458890266; expires=Fri, 16-May-2025 06:41:41 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_67111=c199e91c847e898a4b9dba5c69ed60cda86e06113b11a08aca3ab588ea53215c; expires=Fri, 18-Apr-2025 06:41:41 GMT; Max-Age=172800
__cf_bm=VqRD1c2k_1PZksL9W0A9zZ2y_XOtAKA7Q8eZTD4eo9M-1744785702-1.0.1.1-X8qLy6wrXMcMmylv364WgnpdV7oWlDOLzASzwU7ArDUzLSH0Kows2hQnVNwqDIc365ikg1eXs5FcK.gI3dFpiYDRwf4b1QjfsE7PwpdWPF0; path=/; expires=Wed, 16-Apr-25 07:11:42 GMT; domain=.verifiedlinks.org; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 9311b2c82af956a9-OSL
X-Firefox-Spdy: h2

GET d2z65klgtz99km.cloudfront.net/css/base-styles.css

54.230.245.165

200 OK

3.4 kB

URL

d2z65klgtz99km.cloudfront.net/css/base-styles.css

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeASCII text, with very long lines (3414), with no line terminators

First Seen2024-06-21

Last Seen2025-08-02

Times Seen2093

Size3.4 kB (3414 bytes)

MD59e4a1d2d2f9bca964cd2761bf8620614

SHA184b8ff5912473339ca2823119e3fdcaea4b4e2d0

SHA2563e7990de78c9650cba88b426f8a124f3a6ec3e74431a66573aa3178e232ba5cc

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /css/base-styles.css HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Fri, 28 Jul 2023 14:10:52 GMT
x-powered-by: PleskLin
content-encoding: gzip
date: Thu, 27 Mar 2025 02:57:36 GMT
cache-control: max-age=2592000
expires: Sat, 26 Apr 2025 02:57:36 GMT
etag: W/"64c3cc6c-d56"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DOAHzmalojuW5gZeMKU192YlrPP7sNBwMaaagvd9y7ZwHpd0JJCzsg==
age: 1741447
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&_s=5&tfd=10521

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&_s=5&tfd=10521

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&_s=5&tfd=10521 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 138
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fast.wistia.com/assets/external/E-v1.js

151.101.194.132

200 OK

911 kB

URL

fast.wistia.com/assets/external/E-v1.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65474)

First Seen2025-04-15

Last Seen2025-04-16

Times Seen119

Size911 kB (910759 bytes)

MD53db349593bfc93a116f293027848ad43

SHA1b2551af498489bb558ce1e77cb782d5cde627152

SHA25672e4df347c64fafa89c4061ea3b286cbb8356534fbfe82c8c99061a11753e851

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "9089240dff7e5d848e0b6e786db357c0"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:43 GMT
age: 2692
x-served-by: cache-iad-kiad7000142-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 10, 427
x-timer: S1744785704.870127,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 152699
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtm.js?id=GTM-P95MDDF

142.250.74.168

200 OK

671 kB

URL

www.googletagmanager.com/gtm.js?id=GTM-P95MDDF

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (57829)

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size671 kB (671112 bytes)

MD5778ecf1a432369e693b89218d868e029

SHA142b09280c3b1d2096a1b4e9dd00b7bbcf930db12

SHA2566e5c454cc8d330096c86556647eaa1ffc079d0c67df30cfc74409fa4017070c6

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:44 GMT
expires: Wed, 16 Apr 2025 06:41:44 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1294:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1294:0
report-to: {"group":"ascgcycc:1294:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1294:0"}],}
server: Google Tag Manager
content-length: 158665
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/external/googleAnalytics4.js

151.101.194.132

200 OK

31 kB

URL

fast.wistia.com/assets/external/googleAnalytics4.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (31289)

First Seen2025-04-09

Last Seen2025-04-30

Times Seen281

Size31 kB (31408 bytes)

MD5b4bb433743a52f545893f6d162f5dd9a

SHA17862f1f7d5929c86163421135ad75b5c369c4f5f

SHA25644d02469376ce93c9ac03e653fea5bacd0fa865757669df3a66516f55ce2705a

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "a2bea9b950a23109fc3e9c5cf953da6c"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:45 GMT
age: 2558
x-served-by: cache-iad-kjyo7100037-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 6, 16
x-timer: S1744785706.944079,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 8423
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/images/blank.gif

151.101.194.132

200 OK

1.2 kB

URL

fast.wistia.com/assets/images/blank.gif

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeGIF image data, version 89a, 100 x 100

First Seen2023-04-05

Last Seen2025-08-02

Times Seen13515

Size1.2 kB (1214 bytes)

MD5fbdc4ed9a1e2ee4917a265306927bcf1

SHA16d177725d8230df0457e72004080f712e26fe624

SHA256a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 290
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 6376561, 17
x-timer: S1744785708.717027,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 1214
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/external/playPauseLoadingControl.js

151.101.194.132

200 OK

86 kB

URL

fast.wistia.com/assets/external/playPauseLoadingControl.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65455)

First Seen2025-04-14

Last Seen2025-04-16

Times Seen149

Size86 kB (85968 bytes)

MD50b6100f4b7ee00ff0424310fea9a5f15

SHA1bd5b28af162654d33a7ea3badd98c15a6f3ecf43

SHA2567809498eb86f358d5aeb9d6b3a5c252f6cdd63dd545a2a6dcc2845b777e41d4e

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "954fbce07f2c314a5a0f0d6c9a812f71"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 2696
x-served-by: cache-iad-kcgs7200154-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 182
x-timer: S1744785706.003896,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 22648
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950

142.250.74.168

200 OK

437 kB

URL

www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (17055)

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size437 kB (436621 bytes)

MD51ab7ef68be6723e3a6c62a554e9f82dd

SHA16d6ff10a24648590a67c8d8fa9e6f86abecbaf60

SHA2563b1482522cb9bcce12505301569b92b6acdd751bb091e068e2a4b36e740f358a

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:47 GMT
expires: Wed, 16 Apr 2025 06:41:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 141859
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8

143.204.55.78

200 OK

86 kB

URL

embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8

IP / ASN

143.204.55.78

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeM3U playlist, ASCII text

First Seen2025-04-09

Last Seen2025-08-02

Times Seen474

Size86 kB (85888 bytes)

MD57abb18375bd3ef71dcfd65dd859aa133

SHA1cbe02e509e09353d2ffccf613df44e936e04b645

SHA256a704563ff8eb99f8ec533b562f464203feaa5e2753e11f837ba493137d2c99a7

Certificate Info

IssuerAmazon

Subject*.wistia.com

FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA

ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT

HTTP Headers

GET /deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 85888
server: envoy
date: Wed, 09 Apr 2025 15:06:59 GMT
expires: Thu, 09 Apr 2026 15:06:59 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
surrogate-key: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 112
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ga7Yy0K--5PROrl85L3VOTTD_3e31V0o29dHAEgEYR0rzgHszILJgw==
age: 574488
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/external/engines/hls_video.js

151.101.194.132

200 OK

547 kB

URL

fast.wistia.com/assets/external/engines/hls_video.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65469)

First Seen2025-04-09

Last Seen2025-04-22

Times Seen351

Size547 kB (546819 bytes)

MD5d3ac46015ac85cdc35028b7b97a126d7

SHA1072e8ac2762b6e0d6f4dc2b09bfe7cf1db834f91

SHA2561830f316faf442c973216553ad90faee03310d78a5b58051be778f96247dfba1

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "4c0797b8e5c3b7d73893767d6cf5af51"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 2694
x-served-by: cache-iad-kiad7000054-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 147
x-timer: S1744785707.424909,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 132539
X-Firefox-Spdy: h2

GET fast.wistia.com/embed/medias/x923mlkxu2.m3u8

151.101.194.132

200 OK

764 B

URL

fast.wistia.com/embed/medias/x923mlkxu2.m3u8

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeM3U playlist, ASCII text

First Seen2025-04-09

Last Seen2025-08-02

Times Seen474

Size764 B (764 bytes)

MD5b93c6b1d43ae97430c6999d2626dbb9b

SHA1687082b32128b7be60c59e47d34218163c7c8511

SHA256104134267ba07dee4103188743db46947b0bb0846264ac6de8cbd83fe3173535

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /embed/medias/x923mlkxu2.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-mpegURL
x-envoy-upstream-service-time: 30
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"104134267ba07dee4103188743db4694"
x-request-id: c53f4e3f-b80e-49f9-acb8-cebaf08bfb91
x-runtime: 0.028683
via: 1.1 caaddf8ce46d2bfa1216d6fdd9c0393c.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P4
x-amz-cf-id: TVx861VdTir4HAAomlgmJtRc9uulTsJq0iJ061oN8bUEhOmVTfko3w==
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 43168
x-served-by: cache-iad-kjyo7100124-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 23, 33
x-timer: S1744785708.721278,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 764
X-Firefox-Spdy: h2

GET go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040

104.21.112.1

302 Found

29 kB

URL

go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size29 kB (29169 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectproinvestnews.com

Fingerprint9F:A1:5B:A9:64:14:5D:0A:AD:1E:5A:6E:67:07:7F:ED:93:DA:34:2F

ValidityMon, 03 Mar 2025 23:58:12 GMT - Mon, 02 Jun 2025 00:56:47 GMT

HTTP Headers

GET /americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040 HTTP/1.1
Host: go.proinvestnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 16 Apr 2025 06:41:41 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedlinks.org/go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8]
server: cloudflare
cache-control: max-age=600
expires: Wed, 16 Apr 2025 06:51:39 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
cf-ray: 9311b2c33bb6712b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET d2z65klgtz99km.cloudfront.net/favicons/favicon-16x16.png

54.230.245.165

200 OK

587 B

URL

d2z65klgtz99km.cloudfront.net/favicons/favicon-16x16.png

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typePNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced

First Seen2023-05-02

Last Seen2025-08-02

Times Seen3308

Size587 B (587 bytes)

MD52bb2efaa073e4987ba1867aff02ab3ac

SHA1ea05acee8f408e3f86830b5f2da0616ced013006

SHA2566b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /favicons/favicon-16x16.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 587
server: nginx
date: Thu, 05 Sep 2024 08:18:26 GMT
x-frame-options: sameorigin
x-accel-version: 0.01
last-modified: Tue, 08 Aug 2023 13:35:51 GMT
etag: "24b-602697103be95"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Fri, 05 Sep 2025 08:18:26 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: SAMEORIGIN
x-powered-by: PleskLin
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: os6yMaAjE7j4ggLYprKCeU608adVWdp5Aom0_VXecmGRmRvmVhxoig==
age: 19261398
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950

142.250.74.168

200 OK

386 kB

URL

www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (6129)

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size386 kB (386414 bytes)

MD5cacedad19ea2c4c1e29822f30806bc1f

SHA14df8f186da9d1e3db6cc91440ebabec2739c3e1f

SHA256ee5785af3dd74d9a6e38bac50619291d86d1431d82da1d425c990d6304489035

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:44 GMT
expires: Wed, 16 Apr 2025 06:41:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 127823
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.178.74

200 OK

97 kB

URL

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

IP / ASN

142.250.178.74

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (32077)

First Seen2023-03-07

Last Seen2025-08-02

Times Seen36332

Size97 kB (97163 bytes)

MD54f252523d4af0b478c810c2547a63e19

SHA15a9dcfbef655a2668e78baebeaa8dc6f41d8dabb

SHA256668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

Fingerprint3C:2E:67:30:A6:95:F3:D3:61:49:AB:AC:BC:D1:CF:77:3E:33:8F:B7

ValidityThu, 20 Mar 2025 11:19:46 GMT - Thu, 12 Jun 2025 11:19:45 GMT

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 18:17:07 GMT
expires: Fri, 10 Apr 2026 18:17:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 476676
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_AmericanBirthright_Trump_250x362.webp

54.230.245.165

200 OK

26 kB

URL

d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_AmericanBirthright_Trump_250x362.webp

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeRIFF (little-endian) data, Web/P image

First Seen2025-03-29

Last Seen2025-08-02

Times Seen1402

Size26 kB (26456 bytes)

MD54f00df15b2d2bc0e4722b1aea9b7be2d

SHA1b4709be0d83caeed45f9f5e7a4523b2fa33ba470

SHA256d0c223fb1d5d68685faa822c438860f8e3f6416d799bb8f414e27bdf2fef0bee

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /AWN/awn_birthright_0325/AWN_AmericanBirthright_Trump_250x362.webp HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 26456
server: nginx
last-modified: Tue, 25 Mar 2025 16:49:34 GMT
x-powered-by: PleskLin
accept-ranges: bytes
date: Tue, 15 Apr 2025 18:04:06 GMT
cache-control: max-age=172800
expires: Thu, 17 Apr 2025 18:04:06 GMT
etag: "67e2de9e-6758"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3S2P16qm0aoHYs2dZCxpYAlOYFUjl1W_AZx9QXicLBdGd1YWeyuuhg==
age: 45458
X-Firefox-Spdy: h2

GET www.ppj23t2rk.com/C5PWF/2J2CRS/?sub1=3415790118458890266

34.54.88.246

302 Found

29 kB

URL

www.ppj23t2rk.com/C5PWF/2J2CRS/?sub1=3415790118458890266

IP / ASN

34.54.88.246

#396982 GOOGLE-CLOUD-PLATFORM

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size29 kB (29169 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectwww.ppj23t2rk.com

FingerprintA9:29:25:47:4D:30:19:AF:92:F4:19:D4:38:8B:8F:0C:96:2F:BD:C5

ValidityFri, 28 Feb 2025 04:32:50 GMT - Thu, 29 May 2025 05:28:45 GMT

HTTP Headers

GET /C5PWF/2J2CRS/?sub1=3415790118458890266 HTTP/1.1
Host: www.ppj23t2rk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Wed, 16 Apr 2025 06:41:42 GMT
content-type: text/html; charset=utf-8
content-length: 137
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
location: https://pro.paradigmnewsletters.org/m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266
set-cookie: uniqueClick_2J2CRS=4f059163-83ee-4f5f-80d0-8708693ebaa9:1744785702; Path=/; Expires=Wed, 14 May 2025 06:41:42 GMT; Secure; SameSite=None
transaction_id=740c0877d1e143b594d91c3ca86a216c; Path=/; Expires=Tue, 15 Jul 2025 06:41:42 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 5f13640d-9417-4384-8a45-b414397041c1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdn.getblueshift.com/blueshift.js

54.240.174.71

200 OK

6.9 kB

URL

cdn.getblueshift.com/blueshift.js

IP / ASN

54.240.174.71

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (6936), with no line terminators

First Seen2024-12-10

Last Seen2025-06-06

Times Seen2683

Size6.9 kB (6936 bytes)

MD5cef7c83a090a8a07f5c1d53872847afe

SHA1e813804d783e72d1eb6f096ec956ebdaacff8e64

SHA2568cdf3a99ba41b4c937f27fcfd035be69585da981301c244c46cf026c57fba5f9

Certificate Info

IssuerAmazon

Subject*.getblueshift.com

FingerprintDC:03:F0:B3:98:3C:48:D2:6E:04:8C:63:1A:D8:02:FD:D9:FF:40:80

ValiditySat, 08 Jun 2024 00:00:00 GMT - Sun, 06 Jul 2025 23:59:59 GMT

HTTP Headers

GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2918
Connection: keep-alive
Last-Modified: Tue, 10 Dec 2024 03:10:07 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 16 Apr 2025 05:42:37 GMT
Cache-Control: max-age=3600
ETag: "df70762b11c1a126e073a1dce085540f"
Vary: accept-encoding
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b8j11Rlf06_08-ynsTrml-tYFCWapVnUtLA3cWY9kT8N3wj9nmmT9A==
Age: 3548

GET www.googletagmanager.com/gtm.js?id=GTM-NKRVP76

142.250.74.168

200 OK

519 kB

URL

www.googletagmanager.com/gtm.js?id=GTM-NKRVP76

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (56012)

First Seen2025-04-16

Last Seen2025-04-16

Times Seen1

Size519 kB (518631 bytes)

MD5e69f0cf8bbd528da1186a12034721375

SHA1ebd8f8232b617566291ee468bf88399589a63e0d

SHA256cb401a3ee73161612d509e443c7927d9f3c081d9f9bbeac62d95561c78a0830a

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:44 GMT
expires: Wed, 16 Apr 2025 06:41:44 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1294:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1294:0
report-to: {"group":"ascgcycc:1294:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1294:0"}],}
server: Google Tag Manager
content-length: 147169
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL

pipedream.wistia.com/mput?topic=metrics

IP / ASN

143.204.55.3

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeASCII text, with no line terminators

First Seen2023-03-09

Last Seen2025-08-02

Times Seen108024

Size2 B (2 bytes)

MD5e0aa021e21dddbd6d8cecec71e9cf564

SHA19ce3bd4224c8c1780db56b4125ecf3f24bf748b7

SHA256565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

Certificate Info

IssuerAmazon

Subjectpipedream-production-cloudfront-app-cname.wistia.com

Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68

ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1427
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:47 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fv0hUEGQEFbmEiNxkHhUfFxINAQfjGrKZcGzwJgY2IenQmhvyGwshg==
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/external/googleAnalytics.js

151.101.194.132

200 OK

31 kB

URL

fast.wistia.com/assets/external/googleAnalytics.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (30891)

First Seen2025-04-10

Last Seen2025-04-24

Times Seen239

Size31 kB (30935 bytes)

MD5bc9fea59e51871129cc71d1f3f011efb

SHA15d37d0fd7097a2aa61a74bb326338a470c65e23e

SHA256f2b1f56249a95f4d96bf432f6e1d40ab486495ba67f25123d5ca2549c0c16a6b

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/googleAnalytics.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "9e6dfc578f11bcadc61762528a2bfea2"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 2594
x-served-by: cache-iad-kiad7000153-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 6, 7
x-timer: S1744785706.002486,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 7099
X-Firefox-Spdy: h2

POST pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL

pipedream.wistia.com/mput?topic=metrics

IP / ASN

143.204.55.3

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeASCII text, with no line terminators

First Seen2023-03-09

Last Seen2025-08-02

Times Seen108024

Size2 B (2 bytes)

MD5e0aa021e21dddbd6d8cecec71e9cf564

SHA19ce3bd4224c8c1780db56b4125ecf3f24bf748b7

SHA256565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

Certificate Info

IssuerAmazon

Subjectpipedream-production-cloudfront-app-cname.wistia.com

Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68

ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2252
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:48 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DTTZIWb4RYiJH_zXEB80AzPH9BvyY62W5gnrZNzv1ccIuedVLUIdyg==
X-Firefox-Spdy: h2

GET d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-warning-icon.png

54.230.245.165

200 OK

1.7 kB

URL

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-warning-icon.png

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typePNG image data, 73 x 75, 8-bit/color RGBA, non-interlaced

First Seen2023-09-21

Last Seen2025-08-02

Times Seen2588

Size1.7 kB (1716 bytes)

MD540a8475cba41b161c3b142acc36b79e5

SHA10da3639ed848b44a4efd71189e742a94b29280d4

SHA256186053f58f065437b88bc7ab02d4d48d7f203c61d615f81aa457b5f755d5a061

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /AWN/exit-pop/exitpop-warning-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1716
server: nginx
date: Fri, 09 Aug 2024 20:42:14 GMT
last-modified: Fri, 15 Sep 2023 16:23:26 GMT
cache-control: max-age=31536000
expires: Sat, 09 Aug 2025 20:42:14 GMT
etag: "650484fe-6b4"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0-0pDWVGs9RWiWeIN-4mF_FvDULm43Bza2dyLsBIN1PuRHvUdQRVHQ==
age: 21549570
X-Firefox-Spdy: h2

GET d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-transcript-icon.png

54.230.245.165

200 OK

1.5 kB

URL

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-transcript-icon.png

IP / ASN

54.230.245.165

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typePNG image data, 50 x 53, 8-bit/color RGBA, non-interlaced

First Seen2023-09-21

Last Seen2025-08-02

Times Seen2628

Size1.5 kB (1484 bytes)

MD5c94eaaf8ec2941b35a23421f193b8c2e

SHA1156681cbd7cf2836598e47d3eec86f7a9772bde8

SHA2565fea6317f0aeb6da5271e9a104032ab162521148ec32b93df3c77129fa39fe97

Certificate Info

IssuerAmazon

Subject*.cloudfront.net

Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62

ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

HTTP Headers

GET /AWN/exit-pop/exitpop-transcript-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1484
server: nginx
date: Thu, 19 Sep 2024 00:51:57 GMT
last-modified: Fri, 15 Sep 2023 16:23:23 GMT
cache-control: max-age=31536000
expires: Fri, 19 Sep 2025 00:51:57 GMT
etag: "650484fb-5cc"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _Fv5uR0_0P6N-bP1b7QrownfiLfpcoNeamU__6VtJLequk4IPGZfxw==
age: 18078587
X-Firefox-Spdy: h2

POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1554169118.1744785705&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&auid=1886516409.1744785705&navt=n&npa=1&gtm=45He54f0h2v811578897za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tft=1744785704867&tfd=4670&apve=1

142.250.74.68

200 OK

0 B

URL

www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1554169118.1744785705&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&auid=1886516409.1744785705&navt=n&npa=1&gtm=45He54f0h2v811578897za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tft=1744785704867&tfd=4670&apve=1

IP / ASN

142.250.74.68

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectwww.google.com

Fingerprint40:5C:81:99:DA:01:36:FE:E4:60:2B:67:51:3D:C2:62:8D:9A:38:47

ValidityThu, 20 Mar 2025 11:20:31 GMT - Thu, 12 Jun 2025 11:20:30 GMT

HTTP Headers

POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1554169118.1744785705&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&auid=1886516409.1744785705&navt=n&npa=1&gtm=45He54f0h2v811578897za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tft=1744785704867&tfd=4670&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 06:41:45 GMT
content-type: text/plain
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://pro.paradigmnewsletters.org
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fast.wistia.com/assets/external/midrollLink-v2.js

151.101.194.132

200 OK

22 kB

URL

fast.wistia.com/assets/external/midrollLink-v2.js

IP / ASN

151.101.194.132

#54113 FASTLY

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeJavaScript source, ASCII text, with very long lines (21533)

First Seen2025-04-14

Last Seen2025-04-16

Times Seen110

Size22 kB (21576 bytes)

MD52988a3d551f487c122ad57e49d910378

SHA168913d3b2b3487e6f1190cdf512c8ceece43f64a

SHA2562489c9f2013ae0402d9449d1c367b41a48bb9a6bc2d5c6f812628cceab3e98a9

Certificate Info

IssuerGlobalSign nv-sa

Subjectfast.wistia.com

Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99

ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

HTTP Headers

GET /assets/external/midrollLink-v2.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "c8b9b774b047f3526f823f59734fc07f"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:45 GMT
age: 2615
x-served-by: cache-iad-kcgs7200073-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 7
x-timer: S1744785706.902562,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 6677
X-Firefox-Spdy: h2

GET embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8/seg-1-v1-a1.ts

143.204.55.78

200 OK

364 kB

URL

embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8/seg-1-v1-a1.ts

IP / ASN

143.204.55.78

#16509 AMAZON-02

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeMPEG transport stream data

First Seen2025-04-09

Last Seen2025-08-02

Times Seen474

Size364 kB (364344 bytes)

MD5624d92eee9879d10e1206edffb6750d5

SHA1cc44f8aa00dd9b3376eb1a546c98de661163ca4f

SHA256c9d35979f1cff99e4833e8fc162376d108df414900a123f7b2b98f5f94062ede

Certificate Info

IssuerAmazon

Subject*.wistia.com

FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA

ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT

HTTP Headers

GET /deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: video/MP2T
content-length: 364344
server: envoy
date: Wed, 09 Apr 2025 14:43:35 GMT
expires: Thu, 09 Apr 2026 14:43:35 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
surrogate-key: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 146
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BnLk2Jxp2WcvFRbuN-yRQ6ZH_WcItPYeFQ_ciB2MI5y8oFZdZAaiTQ==
age: 575893
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=7&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=19917

216.239.34.36

204 No Content

0 B

URL

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=7&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=19917

IP / ASN

216.239.34.36

#15169 GOOGLE

Requested byhttps://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606674

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9

ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=7&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=19917 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:42:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000