Report - go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040

Report Overview

Visited public
2025-04-16 06:42:05
Tags
URL
go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040
Finishing URL
pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Title
AMERICA’S SECRET TRUST FUND

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.getblueshift.com	12716	2014-03-09	2016-09-19	2025-04-14	433 B	7.5 kB	54.240.174.71
www.ppj23t2rk.com	unknown	2025-01-02	2025-03-12	2025-04-09	524 B	30 kB	34.54.88.246
pipedream.wistia.com	6958	2007-03-18	2017-01-30	2025-04-10	2.2 kB	1.8 kB	143.204.55.3
fast.wistia.com	5153	2007-03-18	2012-07-04	2025-04-10	5.2 kB	1.8 MB	151.101.194.132
www.google.no	25607	2001-02-26	2012-06-26	2025-04-16	833 B	580 B	142.250.74.131
go.proinvestnews.com	unknown	2021-03-10	2023-10-26	2025-04-01	604 B	30 kB	104.21.112.1
www.google.com	7	1997-09-15	2015-05-10	2025-04-16	895 B	578 B	142.250.74.68
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2025-04-09	484 B	74 kB	151.101.130.217
d2z65klgtz99km.cloudfront.net	unknown	2008-04-25	2021-03-17	2025-04-11	3.9 kB	8.6 MB	54.230.245.165
api.getblueshift.com	9346	2014-03-09	2014-05-10	2025-04-12	749 B	341 B	54.244.96.25
verifiedlinks.org	unknown	2024-08-27	2024-09-05	2025-04-09	629 B	30 kB	104.18.24.96
embed-cloudfront.wistia.com	unknown	2007-03-18	2022-11-08	2025-04-10	1.1 kB	452 kB	143.204.55.78
pro.paradigmnewsletters.org	unknown	2018-12-12	2019-06-06	2025-04-09	2.0 kB	60 kB	161.129.26.18
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2025-04-16	7.6 kB	6.0 kB	216.239.34.36
distillery.wistia.com	6708	2007-03-18	2012-09-30	2025-04-10	513 B	412 B	54.240.174.25
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-04-16	457 B	98 kB	142.250.178.74
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-04-16	3.1 kB	2.8 MB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-15	medium	verifiedlinks.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (36)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtm.js?id=GTM-P95MDDF	ScriptElement	671 kB	2025-04-16	2025-04-16
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash 778ecf1a432369e693b89218d868e029 42b09280c3b1d2096a1b4e9dd00b7bbcf930db12 6e5c454cc8d330096c86556647eaa1ffc079d0c67df30cfc74409fa4017070c6 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-13
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-13 01:37 Times Seen352595 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	fast.wistia.com/assets/external/playPauseLoadingControl.js	ScriptElement	1.0 kB	2025-04-09	2025-04-18
Pretty URL fast.wistia.com/assets/external/playPauseLoadingControl.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 02:28 Last Seen2025-04-18 09:23 Times Seen30 Hash 69b99d399ddc72dab6d6d4e0a90a91eb 1a1f804811da0931472c4393b1de38799beb8e73 e867e070ef6ef0ce95db211347e3ebf8b9a493fcfe14390ebef49f6e99cfc480 Loading...

	www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950	ScriptElement	437 kB	2025-04-16	2025-04-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash 1ab7ef68be6723e3a6c62a554e9f82dd 6d6ff10a24648590a67c8d8fa9e6f86abecbaf60 3b1482522cb9bcce12505301569b92b6acdd751bb091e068e2a4b36e740f358a Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NKRVP76	ScriptElement	519 kB	2025-04-16	2025-04-16
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash e69f0cf8bbd528da1186a12034721375 ebd8f8232b617566291ee468bf88399589a63e0d cb401a3ee73161612d509e443c7927d9f3c081d9f9bbeac62d95561c78a0830a Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	39 B	2023-03-10	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:07 Last Seen2025-06-12 20:36 Times Seen3988 Hash af8745eef59c123e59cd4703ea4cc40e 8aab93d5d6e19c3430396e434f734df7699aeda0 419e6fe661d8187589ce9e3f1f2888d3bd1fc5f4af3dc1e6a0321a66c31e1191 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	326 B	2023-03-14	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 11:28 Last Seen2025-06-12 14:40 Times Seen2090 Hash aedcaf36e4ad85dbf51037318c8ab10c c6210e518ab8eeb0a496b966241caeb1c464516a 5a0af2eeee3dcb3f4e43e4533947d91a74f63d17a73691aac1ad46367989809f Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code		147 B	2023-04-11	2025-06-13
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-13 01:37 Times Seen353336 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	fast.wistia.com/assets/external/googleAnalytics4.js	ScriptElement	31 kB	2025-04-09	2025-04-30
Pretty URL fast.wistia.com/assets/external/googleAnalytics4.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 01:53 Last Seen2025-04-30 13:28 Times Seen281 Hash b4bb433743a52f545893f6d162f5dd9a 7862f1f7d5929c86163421135ad75b5c369c4f5f 44d02469376ce93c9ac03e653fea5bacd0fa865757669df3a66516f55ce2705a Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	341 B	2023-03-10	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:07 Last Seen2025-06-12 14:40 Times Seen2071 Hash 285bc9b441da8c1fbab42396acae2df3 833ac60111a789824e40a385d2e225c129751bbd 7849138d30558b224e5ccd5847d7ea5767630e220bf7d4e3496e99c5fa02974f Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	341 B	2023-09-13	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-13 02:02 Last Seen2025-06-12 14:40 Times Seen2064 Hash ce1c2dd4d39647e5c7e8a4ded7c7d48a 4f7b2f537cb1a05bd6a7f661fce09d2db271bb38 8a871b5034d221b1a98614580a9a998b0a63ad1bff46c93d65d0ed544c3638fc Loading...

	fast.wistia.com/assets/external/E-v1.js	ScriptElement	911 kB	2025-04-15	2025-04-16
Pretty URL fast.wistia.com/assets/external/E-v1.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-15 15:29 Last Seen2025-04-16 19:15 Times Seen119 Hash 3db349593bfc93a116f293027848ad43 b2551af498489bb558ce1e77cb782d5cde627152 72e4df347c64fafa89c4061ea3b286cbb8356534fbfe82c8c99061a11753e851 Loading...

	fast.wistia.com/assets/external/allIntegrations.js	ScriptElement	60 kB	2025-04-09	2025-04-22
Pretty URL fast.wistia.com/assets/external/allIntegrations.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 17:28 Last Seen2025-04-22 18:01 Times Seen282 Hash bad5365923cc4b31fbdc7650d05f6d42 d95dd64e5a78e9560b3e31735e902a2e189745d6 41b837c81f288b7b89604b1673487b0792d3a178b099b475f1c8d7011e078911 Loading...

	www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C	ScriptElement	438 kB	2025-04-16	2025-04-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash 22a45083798154180e33ddf578000005 0fec3b19abdc73e8e94781c4c487597e8e77e09c aa5c6d8b9205163013c8b86386d46a421538b84adc61e3f38313d13fbe7962f1 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	836 B	2023-11-08	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 05:21 Last Seen2025-06-12 14:40 Times Seen2042 Hash 4e2e4cbe63ac644606cfa87e76452824 3936c2eb6588579868016076278ccd961760eda0 85c1ef4cc98021ecdbab4fb4016a5a3500c7c47f6a2dd042083947f32ab1fb05 Loading...

	www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950	ScriptElement	386 kB	2025-04-16	2025-04-16
Pretty URL www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash cacedad19ea2c4c1e29822f30806bc1f 4df8f186da9d1e3db6cc91440ebabec2739c3e1f ee5785af3dd74d9a6e38bac50619291d86d1431d82da1d425c990d6304489035 Loading...

	fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js	ScriptElement	1.0 kB	2025-04-09	2025-04-18
Pretty URL fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 02:24 Last Seen2025-04-18 09:25 Times Seen32 Hash 60e7a585de2872716a7819a568575382 196b697cec6c3c6d38b3464ce07565fa06b9bb83 948a2ddb038922a9301a6e9db2596999fe6024b5fa337b708ee22b19439b6d51 Loading...

	pro.paradigmnewsletters.org/p/Scripts/HideContent.js	ScriptElement	721 B	2023-03-09	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:56 Last Seen2025-06-12 20:36 Times Seen5067 Hash 624fa8179cc49ca9e80737453a6b3367 226693fb4119bc204e4dd3b8d36da8587fd00bb0 809a6bdcc35b316bf93316955e29816c41204f9bcc5fefb53d8a075bba2ee6ac Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	8.2 kB	2025-04-16	2025-04-16
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash 2b1434519c43e3a3a5800e28a1444799 bbc4591ac983ab645b66c90aaa8073e3f391c951 e9fd402f55461df35dbe90884803a194d1b8f97105ecfd09137f1d8ce68bafc5 Loading...

	cdn.getblueshift.com/blueshift.js	ScriptElement	6.9 kB	2024-12-10	2025-06-06
Pretty URL cdn.getblueshift.com/blueshift.js IP 54.240.174.71 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-10 17:38 Last Seen2025-06-06 05:22 Times Seen2683 Hash cef7c83a090a8a07f5c1d53872847afe e813804d783e72d1eb6f096ec956ebdaacff8e64 8cdf3a99ba41b4c937f27fcfd035be69585da981301c244c46cf026c57fba5f9 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	37 B	2024-09-04	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-04 16:05 Last Seen2025-06-12 14:40 Times Seen1261 Hash fb355132913d97759b331f759b62ee6f 92e5e438f4aa7c85b8d3af584887226e4826de4f 5a80219e7147df860800359a59b8bce03a12dcbca15fb3bebd9f119256107037 Loading...

	fast.wistia.com/assets/external/googleAnalytics.js	ScriptElement	1.0 kB	2025-04-10	2025-06-02
Pretty URL fast.wistia.com/assets/external/googleAnalytics.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-10 21:19 Last Seen2025-06-02 02:01 Times Seen58 Hash 808de1b80b7830d3587608a148465fb7 202c217e65877dd1e60a491dcedc7b9b09fdeb35 892c47068876e69a9173540c9cfe426a2eb95a6c4377483ba5faa28471e2eff6 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	2.7 kB	2025-03-29	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-29 16:41 Last Seen2025-06-12 20:36 Times Seen619 Hash 424e1d50695a146361996cf9304db012 faccea88abdec05641e80a25b83a76bf36ba8748 3b225757dfe2c64b405e18fa6cf90e7d38a7886f1a136e990091ffc7e7617f26 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	2.3 kB	2025-04-10	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-10 17:49 Last Seen2025-06-12 20:36 Times Seen1076 Hash 527a6ca018d2079f85f562f5a27812d0 0c6e27d74eb21a2a55818be7d354fdfceeb507fb 8ee2b301962b5b48b0d94256b7836d4ebe7e76f6bbeb51fb9a1d27076ab9a005 Loading...

	fast.wistia.com/assets/external/midrollLink-v2.js	ScriptElement	22 kB	2025-04-14	2025-04-16
Pretty URL fast.wistia.com/assets/external/midrollLink-v2.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-14 16:56 Last Seen2025-04-16 14:55 Times Seen110 Hash 2988a3d551f487c122ad57e49d910378 68913d3b2b3487e6f1190cdf512c8ceece43f64a 2489c9f2013ae0402d9449d1c367b41a48bb9a6bc2d5c6f812628cceab3e98a9 Loading...

	browser.sentry-cdn.com/9.6.1/bundle.min.js	ScriptElement	1.0 kB	2025-04-09	2025-06-12
Pretty URL browser.sentry-cdn.com/9.6.1/bundle.min.js IP 151.101.130.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 02:28 Last Seen2025-06-12 14:04 Times Seen128 Hash 1009c00908686f00e39305d5abb2c916 454df1964a06f2fd37774238fdff2bf984ebb3cd 99dad491dae6f41c6daa8c6b86f19fee3a1529e4e2a784a29b6b0bf6f2702bfd Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	ScriptElement	97 kB	2023-03-07	2025-06-13
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP 142.250.178.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-13 01:24 Times Seen31464 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code		147 B	2023-04-11	2025-06-13
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-13 01:37 Times Seen353336 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	1.3 kB	2025-04-07	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-07 17:54 Last Seen2025-06-12 20:36 Times Seen1110 Hash 9b7348e21cc1ba21b9046589d65f3ace 8d63e792e226a4a7f71e943f6fa5e95ace3d871f c3bf68cd2ace00a16ddc8ac76740e20ab3de6d1f56a91c741da6d08ed5a3aa24 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	2.2 kB	2023-03-10	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:07 Last Seen2025-06-12 20:36 Times Seen2479 Hash e4f3e2e42bacfb36a7847e627e7e8276 5492c5e58d3c3abd4a40f736078f546b450e8085 5b86639a656d86f430a56426ae9ac2c83fe1a5c11d91739037f8b1146f5677b8 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	1.3 kB	2023-03-10	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:07 Last Seen2025-06-12 14:40 Times Seen2067 Hash 94d29b65bf770b80ca20ff02e2ba5f41 a4c1ab460dbe34b9672c2745f50e0c792a64d932 2d59b45ab2c9e86e411bdd0f5f9d8bb84b383a197faf372ee4e91a0c9a651b87 Loading...

	pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true	ScriptElement	1.3 kB	2024-02-05	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-05 00:22 Last Seen2025-06-12 14:40 Times Seen1836 Hash c14d2737cadb3a0ca008bfa3669bd651 8288b4fcb69ee42fbfbaf0533ad239dd37a971a2 4224a6ccdb4870ef44685b1205c3e52feaa7f902f3a6ff3ee36746772bceedf1 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-13
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-13 01:37 Times Seen352595 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157	ScriptElement	338 kB	2025-04-16	2025-04-16
Pretty URL www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 06:42 Last Seen2025-04-16 06:42 Times Seen1 Hash 9cc533473ff887f498525dad9bf7bd29 cf3d1642bd83c0f30a847cf2cca4e5e7ed8f8269 9c3ce8ff4b331c7b91fc160e2eb88261d7ec330a71bbd7e12bb935d70be5569e Loading...

	fast.wistia.com/assets/external/engines/hls_video.js	ScriptElement	547 kB	2025-04-09	2025-04-22
Pretty URL fast.wistia.com/assets/external/engines/hls_video.js IP 151.101.194.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-09 17:28 Last Seen2025-04-22 18:01 Times Seen351 Hash d3ac46015ac85cdc35028b7b97a126d7 072e8ac2762b6e0d6f4dc2b09bfe7cf1db834f91 1830f316faf442c973216553ad90faee03310d78a5b58051be778f96247dfba1 Loading...

	pro.paradigmnewsletters.org/p/Scripts/Common.js	ScriptElement	2.4 kB	2023-03-09	2025-06-12
Pretty URL pro.paradigmnewsletters.org/p/Scripts/Common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:56 Last Seen2025-06-12 20:36 Times Seen5067 Hash ef9b6f612e89926fa10830ad89a7f3b6 faa8fbf56e4834534455c46ba2753118eb554c2e 86034bbe69eebb0c08660ff7f0128dd0bd1d852176489ca3a3da7b49bd647cbd Loading...

HTTP Transactions (51)

URL IP Response Size

pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true

161.129.26.18

200 OK

29 kB

URL User Request GET
pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
IP
161.129.26.18:443
ASN
#11372 14WEST-AS

Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint9D:62:1B:3D:92:D7:95:FA:39:D0:D1:43:F6:F2:DB:7D:92:09:30:09
ValidityWed, 26 Mar 2025 11:54:44 GMT - Tue, 24 Jun 2025 11:54:43 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2011), with CRLF, LF line terminators
Size
29 kB (29169 bytes)
Hash
a93d66c29801fb4be0f03a3ca83d3536
e6ddb26590d02041b7f6df685cc3691ee39d0f66
4e544eecddfd947bb9d0858dc052a47d94741d41778ad78c8f05bab72a9291d6

HTTP Headers

GET /p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 2428639=2888909; BIGipServerQEX662zAURJQLrqleAP1SA=!Bz07B6Cf9uBwEoRC6+h9tp1lrjN3ZZG8h6A5SQqSOFjO56Ke6lzkGjrxuC4V3GpckKMlnAh2t+ehr10=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: LAWN5432=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 16 Apr 2025 06:41:42 GMT
Content-Length: 11225
Strict-Transport-Security: max-age=63072000; includeSubDomains

pro.paradigmnewsletters.org/p/Scripts/HideContent.js

161.129.26.18

200 OK

724 B

URL GET
pro.paradigmnewsletters.org/p/Scripts/HideContent.js
IP
161.129.26.18:443
ASN
#11372 14WEST-AS

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint9D:62:1B:3D:92:D7:95:FA:39:D0:D1:43:F6:F2:DB:7D:92:09:30:09
ValidityWed, 26 Mar 2025 11:54:44 GMT - Tue, 24 Jun 2025 11:54:43 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
724 B (724 bytes)
Hash
624fa8179cc49ca9e80737453a6b3367
226693fb4119bc204e4dd3b8d36da8587fd00bb0
809a6bdcc35b316bf93316955e29816c41204f9bcc5fefb53d8a075bba2ee6ac

HTTP Headers

GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
DNT: 1
Connection: keep-alive
Cookie: 2428639=2888909; BIGipServerQEX662zAURJQLrqleAP1SA=!Bz07B6Cf9uBwEoRC6+h9tp1lrjN3ZZG8h6A5SQqSOFjO56Ke6lzkGjrxuC4V3GpckKMlnAh2t+ehr10=; LAWN5432=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 16 Apr 2025 06:41:43 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains

www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157

142.250.74.168

200 OK

338 kB

URL GET
www.googletagmanager.com/gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JavaScript source, ASCII text, with very long lines (5436)
Size
338 kB (338057 bytes)
Hash
9cc533473ff887f498525dad9bf7bd29
cf3d1642bd83c0f30a847cf2cca4e5e7ed8f8269
9c3ce8ff4b331c7b91fc160e2eb88261d7ec330a71bbd7e12bb935d70be5569e

HTTP Headers

GET /gtag/js?id=AW-11464267516&l=dataLayer&cx=c&gtm=45He54e1h1v78323495za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950~103103155~103103157 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:45 GMT
expires: Wed, 16 Apr 2025 06:41:45 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 114597
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

browser.sentry-cdn.com/9.6.1/bundle.min.js

151.101.130.217

200 OK

74 kB

URL GET
browser.sentry-cdn.com/9.6.1/bundle.min.js
IP
151.101.130.217:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
Fingerprint00:4D:2B:16:F6:29:29:D8:2F:20:48:BD:32:13:96:5D:37:EB:F8:25
ValidityMon, 07 Apr 2025 18:50:27 GMT - Sat, 09 May 2026 18:50:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65448)
Size
74 kB (73553 bytes)
Hash
ba2c607c01b95e9d2187276e3b22e0ee
f99b748f42b43af113dd1d051d8b1f65680669a1
d0cda1cf41f5e74dcefb718dedd1890eb9d4717a7bf6e9262715c958518b02af

HTTP Headers

GET /9.6.1/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Thu, 19 Mar 2026 10:42:19 GMT
last-modified: Wed, 19 Mar 2025 10:04:57 GMT
etag: "a2ce4ee15b70ec14c3c98b8f168a2ff4"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 684834
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 25178
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL POST
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.3:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68
ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 209
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:48 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 20ZTytlWUuQP5U4n6aDOw4dUmUdd9yDMZm02WqaMaHnpCxzCA7gt-A==
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/x923mlkxu2.json

151.101.194.132

200 OK

8.5 kB

URL GET
fast.wistia.com/embed/medias/x923mlkxu2.json
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JSON text data
Size
8.5 kB (8485 bytes)
Hash
92943836f2f5b5f5bd884b8d9ab3b3cb
d361cc36733159e932dd3415ed211bd8748989ac
b42cfa9b327be2714009f571606e898ff19f0cd02e37bd231254a3cb2a4a2646

HTTP Headers

GET /embed/medias/x923mlkxu2.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: br
x-envoy-upstream-service-time: 69
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"b42cfa9b327be2714009f571606e898f"
x-request-id: cd5a8923-a657-4295-ad1f-9c4860f8115b
x-runtime: 0.067157
via: 1.1 d0c7523233c2ce4a1a420cfda612235a.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P4
x-amz-cf-id: Ep_mZ-ireJ16_JUE_TFFOaYwxxfdcqWinsl4WW3umamnKyK8C3ZQaA==
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:44 GMT
age: 43166
x-served-by: cache-iad-kcgs7200071-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 25, 32
x-timer: S1744785705.996499,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 2122
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=93989633.1744785705&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&z=389701698

142.250.74.131

200 OK

42 B

URL GET
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=93989633.1744785705&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&z=389701698
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google.no
Fingerprint9A:A1:61:22:E4:39:37:BB:8A:D5:7B:0F:F9:95:18:78:6A:FF:67:B0
ValidityThu, 20 Mar 2025 11:21:32 GMT - Thu, 12 Jun 2025 11:21:31 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=93989633.1744785705&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&z=389701698 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=2&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5207

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=2&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5207
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=2&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5207 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL POST
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.3:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68
ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 132
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:45 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qc5BuKRnHT3m09Yco8otfwD4uCpxYVs2wj5-e-Y80bN64AcX5_ypzQ==
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5153

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5153
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5153 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js

151.101.194.132

200 OK

98 kB

URL GET
fast.wistia.com/assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65462)
Size
98 kB (98062 bytes)
Hash
00dccfb2d30abca5cb09ca85f9169d3b
7e0c05a67eadb55154291a375aeac05964052340
ec198313c2e0785d3e4808ab6e51f70baddc94a299c0e7c3fe05b48ee2652a00

HTTP Headers

GET /assets/external/vulcanV2Player/behaviors/OverlaysBehavior.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "84867cc66831439b595e9622cd1cf0ca"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 2566
x-served-by: cache-iad-kiad7000049-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 15
x-timer: S1744785706.020440,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 24029
X-Firefox-Spdy: h2

distillery.wistia.com/x

54.240.174.25

204 No Content

0 B

URL POST
distillery.wistia.com/x
IP
54.240.174.25:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subjectstats-tap-production-cloudfront-app-cname.wistia.com
Fingerprint33:84:8E:BA:E0:87:C3:9E:A8:D7:D0:B5:50:73:A2:65:A9:A4:06:04
ValidityTue, 13 Aug 2024 00:00:00 GMT - Thu, 11 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1694
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 16 Apr 2025 06:41:47 GMT
x-envoy-upstream-service-time: 2
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eyj2jNXM60XbVahP1xthc0J4VCQS0moGbqUzMfKQY6K-5MzsaGjpTQ==
X-Firefox-Spdy: h2

pro.paradigmnewsletters.org/m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266

161.129.26.18

301 Moved Permanently

29 kB

URL User Request GET
pro.paradigmnewsletters.org/m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266
IP
161.129.26.18:443
ASN
#11372 14WEST-AS

Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint9D:62:1B:3D:92:D7:95:FA:39:D0:D1:43:F6:F2:DB:7D:92:09:30:09
ValidityWed, 26 Mar 2025 11:54:44 GMT - Tue, 24 Jun 2025 11:54:43 GMT

File type

Size
29 kB (29169 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266 HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Date: Wed, 16 Apr 2025 06:41:42 GMT
Content-Length: 264
Set-Cookie: 2428639=2888909; expires=Tue, 06-May-2025 06:41:42 GMT; path=/; HttpOnly
BIGipServerQEX662zAURJQLrqleAP1SA=!Bz07B6Cf9uBwEoRC6+h9tp1lrjN3ZZG8h6A5SQqSOFjO56Ke6lzkGjrxuC4V3GpckKMlnAh2t+ehr10=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains

d2z65klgtz99km.cloudfront.net/favicons/apple-touch-icon.png

54.230.245.165

200 OK

3.0 kB

URL GET
d2z65klgtz99km.cloudfront.net/favicons/apple-touch-icon.png
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit grayscale, non-interlaced
Size
3.0 kB (3017 bytes)
Hash
dd470648114adaceb47d36a18ad41d9d
c93c69021ab4e381b4715938bed3732b132852b3
49dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4

HTTP Headers

GET /favicons/apple-touch-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 3017
server: nginx
date: Tue, 17 Sep 2024 13:34:40 GMT
last-modified: Tue, 08 Aug 2023 13:35:51 GMT
cache-control: max-age=31536000
expires: Wed, 17 Sep 2025 13:34:40 GMT
etag: "64d244b7-bc9"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6GTpgmFI0PxB5cqSWiK8HALeiXRJ3OlmkzgIWd4q1IgrZMpucj83lg==
age: 18205624
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=3&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5234

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=3&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5234
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=3&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Click%20Report&tfd=5234 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=4&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=awn_aware&_c=1&tfd=5236

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=4&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=awn_aware&_c=1&tfd=5236
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=4&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=awn_aware&_c=1&tfd=5236 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

api.getblueshift.com/unity.gif?t=1744785707&e=pageload&r=&z=599395&x=59976d352f424c4b27d325518576b9b2&k=58e3572c-56a8-690a-7664-917b79985764&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue

54.244.96.25

200 OK

42 B

URL GET
api.getblueshift.com/unity.gif?t=1744785707&e=pageload&r=&z=599395&x=59976d352f424c4b27d325518576b9b2&k=58e3572c-56a8-690a-7664-917b79985764&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue
IP
54.244.96.25:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.getblueshift.com
FingerprintD4:66:05:EE:E7:3B:52:A2:0C:DA:14:A3:C0:6B:A5:9C:45:6C:29:17
ValidityTue, 07 Jan 2025 00:00:00 GMT - Thu, 05 Feb 2026 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /unity.gif?t=1744785707&e=pageload&r=&z=599395&x=59976d352f424c4b27d325518576b9b2&k=58e3572c-56a8-690a-7664-917b79985764&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Apr 2025 06:41:48 GMT
content-type: image/gif
content-length: 42
access-control-expose-headers: etag
access-control-allow-origin: https://pro.paradigmnewsletters.org
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=6&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=14915

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=6&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=14915
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z8811578897za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=6&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=14915 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-play-icon.png

54.230.245.165

200 OK

318 B

URL GET
d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-play-icon.png
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 31 x 39, 8-bit/color RGBA, non-interlaced
Size
318 B (318 bytes)
Hash
120ca7c31817e6e137e2a807ddcddbe0
254f6b23b9b2d4c040decf505eac8b6a9296a1c6
dd5f84c4b871b07d787fe2709d47cdc18eee536bb2560c6f889256dd59c61b48

HTTP Headers

GET /AWN/exit-pop/exitpop-play-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 318
server: nginx
date: Mon, 04 Nov 2024 00:17:44 GMT
x-frame-options: sameorigin
x-accel-version: 0.01
last-modified: Fri, 15 Sep 2023 16:23:24 GMT
etag: "13e-6056836372650"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Tue, 04 Nov 2025 00:17:44 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: SAMEORIGIN
x-powered-by: PleskLin
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ysj00Q5hmyuX9YimQNN1nmC1U3kE45jOEFzEibHlrbbZj72QhhpMKA==
age: 14106240
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_BIRTHRIGHT_CTP_DESKTOP_HANDWRITTENPRESSPLAY_FS_0325.gif

54.230.245.165

200 OK

8.6 MB

URL GET
d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_BIRTHRIGHT_CTP_DESKTOP_HANDWRITTENPRESSPLAY_FS_0325.gif
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
GIF image data, version 89a, 1366 x 768
Size
8.6 MB (8608239 bytes)
Hash
d32a1cfd822ea938170c65d8c3a7c080
bf4f69e796f65b4a9f70f22ad1ca3ac94c67d97c
ded0b1464cf48e44d71a6b983f7033ad9a2a2f4709c8eeef138a5daa30f50b9c

HTTP Headers

GET /AWN/awn_birthright_0325/AWN_BIRTHRIGHT_CTP_DESKTOP_HANDWRITTENPRESSPLAY_FS_0325.gif HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/gif
content-length: 8608239
server: nginx
date: Fri, 21 Mar 2025 00:14:44 GMT
last-modified: Thu, 20 Mar 2025 18:34:51 GMT
cache-control: max-age=31536000
expires: Sat, 21 Mar 2026 00:14:44 GMT
etag: "67dc5fcb-8359ef"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dSd17JBvlmhKyKiYb5HDSbPPm1LqDL4c6uHedNChcxGagqu7avHHiw==
age: 2269622
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C

142.250.74.168

200 OK

438 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JavaScript source, ASCII text, with very long lines (17055)
Size
438 kB (437972 bytes)
Hash
22a45083798154180e33ddf578000005
0fec3b19abdc73e8e94781c4c487597e8e77e09c
aa5c6d8b9205163013c8b86386d46a421538b84adc61e3f38313d13fbe7962f1

HTTP Headers

GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:47 GMT
expires: Wed, 16 Apr 2025 06:41:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 142296
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fast.wistia.com/assets/external/allIntegrations.js

151.101.194.132

200 OK

60 kB

URL GET
fast.wistia.com/assets/external/allIntegrations.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (60199)
Size
60 kB (60243 bytes)
Hash
bad5365923cc4b31fbdc7650d05f6d42
d95dd64e5a78e9560b3e31735e902a2e189745d6
41b837c81f288b7b89604b1673487b0792d3a178b099b475f1c8d7011e078911

HTTP Headers

GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "b9ff01eff92ca05a16f57c2d7d3bf61c"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 2696
x-served-by: cache-iad-kcgs7200023-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 59, 129
x-timer: S1744785707.424647,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 14774
X-Firefox-Spdy: h2

verifiedlinks.org/go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8]

104.18.24.96

302 Found

29 kB

URL User Request GET
verifiedlinks.org/go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8]
IP
104.18.24.96:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectverifiedlinks.org
Fingerprint3B:DD:7F:E7:1B:15:74:6E:9A:DD:86:1D:77:58:03:C6:7C:D4:6B:4E
ValidityThu, 20 Feb 2025 17:32:01 GMT - Wed, 21 May 2025 18:31:45 GMT

File type

Size
29 kB (29169 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8] HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 16 Apr 2025 06:41:42 GMT
content-type: text/html; charset=UTF-8
location: https://www.ppj23t2rk.com/C5PWF/2J2CRS/?sub1=3415790118458890266
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=b37bf2982ce8838c2359a50b06ee3e15; path=/
pixel_session_hash_67111=3415790118458890266; expires=Fri, 16-May-2025 06:41:41 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_67111=c199e91c847e898a4b9dba5c69ed60cda86e06113b11a08aca3ab588ea53215c; expires=Fri, 18-Apr-2025 06:41:41 GMT; Max-Age=172800
__cf_bm=VqRD1c2k_1PZksL9W0A9zZ2y_XOtAKA7Q8eZTD4eo9M-1744785702-1.0.1.1-X8qLy6wrXMcMmylv364WgnpdV7oWlDOLzASzwU7ArDUzLSH0Kows2hQnVNwqDIc365ikg1eXs5FcK.gI3dFpiYDRwf4b1QjfsE7PwpdWPF0; path=/; expires=Wed, 16-Apr-25 07:11:42 GMT; domain=.verifiedlinks.org; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 9311b2c82af956a9-OSL
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/css/base-styles.css

54.230.245.165

200 OK

3.4 kB

URL GET
d2z65klgtz99km.cloudfront.net/css/base-styles.css
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
ASCII text, with very long lines (3414), with no line terminators
Size
3.4 kB (3414 bytes)
Hash
9e4a1d2d2f9bca964cd2761bf8620614
84b8ff5912473339ca2823119e3fdcaea4b4e2d0
3e7990de78c9650cba88b426f8a124f3a6ec3e74431a66573aa3178e232ba5cc

HTTP Headers

GET /css/base-styles.css HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Fri, 28 Jul 2023 14:10:52 GMT
x-powered-by: PleskLin
content-encoding: gzip
date: Thu, 27 Mar 2025 02:57:36 GMT
cache-control: max-age=2592000
expires: Sat, 26 Apr 2025 02:57:36 GMT
etag: W/"64c3cc6c-d56"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DOAHzmalojuW5gZeMKU192YlrPP7sNBwMaaagvd9y7ZwHpd0JJCzsg==
age: 1741447
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&_s=5&tfd=10521

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&_s=5&tfd=10521
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&_s=5&tfd=10521 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 138
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:41:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fast.wistia.com/assets/external/E-v1.js

151.101.194.132

200 OK

911 kB

URL GET
fast.wistia.com/assets/external/E-v1.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65474)
Size
911 kB (910759 bytes)
Hash
3db349593bfc93a116f293027848ad43
b2551af498489bb558ce1e77cb782d5cde627152
72e4df347c64fafa89c4061ea3b286cbb8356534fbfe82c8c99061a11753e851

HTTP Headers

GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "9089240dff7e5d848e0b6e786db357c0"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:43 GMT
age: 2692
x-served-by: cache-iad-kiad7000142-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 10, 427
x-timer: S1744785704.870127,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 152699
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-P95MDDF

142.250.74.168

200 OK

671 kB

URL GET
www.googletagmanager.com/gtm.js?id=GTM-P95MDDF
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JavaScript source, ASCII text, with very long lines (57829)
Size
671 kB (671112 bytes)
Hash
778ecf1a432369e693b89218d868e029
42b09280c3b1d2096a1b4e9dd00b7bbcf930db12
6e5c454cc8d330096c86556647eaa1ffc079d0c67df30cfc74409fa4017070c6

HTTP Headers

GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:44 GMT
expires: Wed, 16 Apr 2025 06:41:44 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1294:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1294:0
report-to: {"group":"ascgcycc:1294:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1294:0"}],}
server: Google Tag Manager
content-length: 158665
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/googleAnalytics4.js

151.101.194.132

200 OK

31 kB

URL GET
fast.wistia.com/assets/external/googleAnalytics4.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (31289)
Size
31 kB (31408 bytes)
Hash
b4bb433743a52f545893f6d162f5dd9a
7862f1f7d5929c86163421135ad75b5c369c4f5f
44d02469376ce93c9ac03e653fea5bacd0fa865757669df3a66516f55ce2705a

HTTP Headers

GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "a2bea9b950a23109fc3e9c5cf953da6c"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:45 GMT
age: 2558
x-served-by: cache-iad-kjyo7100037-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 6, 16
x-timer: S1744785706.944079,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 8423
X-Firefox-Spdy: h2

fast.wistia.com/assets/images/blank.gif

151.101.194.132

200 OK

1.2 kB

URL GET
fast.wistia.com/assets/images/blank.gif
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
GIF image data, version 89a, 100 x 100
Size
1.2 kB (1214 bytes)
Hash
fbdc4ed9a1e2ee4917a265306927bcf1
6d177725d8230df0457e72004080f712e26fe624
a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2

HTTP Headers

GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 290
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 6376561, 17
x-timer: S1744785708.717027,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 1214
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/playPauseLoadingControl.js

151.101.194.132

200 OK

86 kB

URL GET
fast.wistia.com/assets/external/playPauseLoadingControl.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65455)
Size
86 kB (85968 bytes)
Hash
0b6100f4b7ee00ff0424310fea9a5f15
bd5b28af162654d33a7ea3badd98c15a6f3ecf43
7809498eb86f358d5aeb9d6b3a5c252f6cdd63dd545a2a6dcc2845b777e41d4e

HTTP Headers

GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "954fbce07f2c314a5a0f0d6c9a812f71"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 2696
x-served-by: cache-iad-kcgs7200154-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 182
x-timer: S1744785706.003896,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 22648
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950

142.250.74.168

200 OK

437 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JavaScript source, ASCII text, with very long lines (17055)
Size
437 kB (436621 bytes)
Hash
1ab7ef68be6723e3a6c62a554e9f82dd
6d6ff10a24648590a67c8d8fa9e6f86abecbaf60
3b1482522cb9bcce12505301569b92b6acdd751bb091e068e2a4b36e740f358a

HTTP Headers

GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:47 GMT
expires: Wed, 16 Apr 2025 06:41:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 141859
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8

143.204.55.78

200 OK

86 kB

URL GET
embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8
IP
143.204.55.78:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA
ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
86 kB (85888 bytes)
Hash
7abb18375bd3ef71dcfd65dd859aa133
cbe02e509e09353d2ffccf613df44e936e04b645
a704563ff8eb99f8ec533b562f464203feaa5e2753e11f837ba493137d2c99a7

HTTP Headers

GET /deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 85888
server: envoy
date: Wed, 09 Apr 2025 15:06:59 GMT
expires: Thu, 09 Apr 2026 15:06:59 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
surrogate-key: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 112
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ga7Yy0K--5PROrl85L3VOTTD_3e31V0o29dHAEgEYR0rzgHszILJgw==
age: 574488
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/engines/hls_video.js

151.101.194.132

200 OK

547 kB

URL GET
fast.wistia.com/assets/external/engines/hls_video.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65469)
Size
547 kB (546819 bytes)
Hash
d3ac46015ac85cdc35028b7b97a126d7
072e8ac2762b6e0d6f4dc2b09bfe7cf1db834f91
1830f316faf442c973216553ad90faee03310d78a5b58051be778f96247dfba1

HTTP Headers

GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "4c0797b8e5c3b7d73893767d6cf5af51"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 2694
x-served-by: cache-iad-kiad7000054-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 147
x-timer: S1744785707.424909,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 132539
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/x923mlkxu2.m3u8

151.101.194.132

200 OK

764 B

URL GET
fast.wistia.com/embed/medias/x923mlkxu2.m3u8
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
M3U playlist, ASCII text
Size
764 B (764 bytes)
Hash
b93c6b1d43ae97430c6999d2626dbb9b
687082b32128b7be60c59e47d34218163c7c8511
104134267ba07dee4103188743db46947b0bb0846264ac6de8cbd83fe3173535

HTTP Headers

GET /embed/medias/x923mlkxu2.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-mpegURL
x-envoy-upstream-service-time: 30
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"104134267ba07dee4103188743db4694"
x-request-id: c53f4e3f-b80e-49f9-acb8-cebaf08bfb91
x-runtime: 0.028683
via: 1.1 caaddf8ce46d2bfa1216d6fdd9c0393c.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P4
x-amz-cf-id: TVx861VdTir4HAAomlgmJtRc9uulTsJq0iJ061oN8bUEhOmVTfko3w==
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:47 GMT
age: 43168
x-served-by: cache-iad-kjyo7100124-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 23, 33
x-timer: S1744785708.721278,VS0,VE0
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
content-length: 764
X-Firefox-Spdy: h2

go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040

104.21.112.1

302 Found

29 kB

URL User Request GET
go.proinvestnews.com/americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectproinvestnews.com
Fingerprint9F:A1:5B:A9:64:14:5D:0A:AD:1E:5A:6E:67:07:7F:ED:93:DA:34:2F
ValidityMon, 03 Mar 2025 23:58:12 GMT - Mon, 02 Jun 2025 00:56:47 GMT

File type

Size
29 kB (29169 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /americanbirthright0325/203680f246833bf6d8ad97a5a85a49fd/48/2775927961/149350/af4ae17d18c83140c078482332a0f15b/71040 HTTP/1.1
Host: go.proinvestnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 16 Apr 2025 06:41:41 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedlinks.org/go?ehash=203680f246833bf6d8ad97a5a85a49fd&product=67111&ar=48&cid=149350&lid=af4ae17d18c83140c078482332a0f15b&slhash=71040&mtaid=[s7]&cid2=[s8]
server: cloudflare
cache-control: max-age=600
expires: Wed, 16 Apr 2025 06:51:39 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
cf-ray: 9311b2c33bb6712b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/favicons/favicon-16x16.png

54.230.245.165

200 OK

587 B

URL GET
d2z65klgtz99km.cloudfront.net/favicons/favicon-16x16.png
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced
Size
587 B (587 bytes)
Hash
2bb2efaa073e4987ba1867aff02ab3ac
ea05acee8f408e3f86830b5f2da0616ced013006
6b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6

HTTP Headers

GET /favicons/favicon-16x16.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 587
server: nginx
date: Thu, 05 Sep 2024 08:18:26 GMT
x-frame-options: sameorigin
x-accel-version: 0.01
last-modified: Tue, 08 Aug 2023 13:35:51 GMT
etag: "24b-602697103be95"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Fri, 05 Sep 2025 08:18:26 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: SAMEORIGIN
x-powered-by: PleskLin
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: os6yMaAjE7j4ggLYprKCeU608adVWdp5Aom0_VXecmGRmRvmVhxoig==
age: 19261398
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950

142.250.74.168

200 OK

386 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JavaScript source, ASCII text, with very long lines (6129)
Size
386 kB (386414 bytes)
Hash
cacedad19ea2c4c1e29822f30806bc1f
4df8f186da9d1e3db6cc91440ebabec2739c3e1f
ee5785af3dd74d9a6e38bac50619291d86d1431d82da1d425c990d6304489035

HTTP Headers

GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c&gtm=45He54f0h2v811578897za200&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:44 GMT
expires: Wed, 16 Apr 2025 06:41:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1052:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1052:0
report-to: {"group":"ascgcycc:1052:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1052:0"}],}
server: Google Tag Manager
content-length: 127823
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.178.74

200 OK

97 kB

URL GET
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
142.250.178.74:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint3C:2E:67:30:A6:95:F3:D3:61:49:AB:AC:BC:D1:CF:77:3E:33:8F:B7
ValidityThu, 20 Mar 2025 11:19:46 GMT - Thu, 12 Jun 2025 11:19:45 GMT

File type
JavaScript source, ASCII text, with very long lines (32077)
Size
97 kB (97163 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Apr 2025 18:17:07 GMT
expires: Fri, 10 Apr 2026 18:17:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 476676
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_AmericanBirthright_Trump_250x362.webp

54.230.245.165

200 OK

26 kB

URL GET
d2z65klgtz99km.cloudfront.net/AWN/awn_birthright_0325/AWN_AmericanBirthright_Trump_250x362.webp
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
26 kB (26456 bytes)
Hash
4f00df15b2d2bc0e4722b1aea9b7be2d
b4709be0d83caeed45f9f5e7a4523b2fa33ba470
d0c223fb1d5d68685faa822c438860f8e3f6416d799bb8f414e27bdf2fef0bee

HTTP Headers

GET /AWN/awn_birthright_0325/AWN_AmericanBirthright_Trump_250x362.webp HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 26456
server: nginx
last-modified: Tue, 25 Mar 2025 16:49:34 GMT
x-powered-by: PleskLin
accept-ranges: bytes
date: Tue, 15 Apr 2025 18:04:06 GMT
cache-control: max-age=172800
expires: Thu, 17 Apr 2025 18:04:06 GMT
etag: "67e2de9e-6758"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3S2P16qm0aoHYs2dZCxpYAlOYFUjl1W_AZx9QXicLBdGd1YWeyuuhg==
age: 45458
X-Firefox-Spdy: h2

www.ppj23t2rk.com/C5PWF/2J2CRS/?sub1=3415790118458890266

34.54.88.246

302 Found

29 kB

URL User Request GET
www.ppj23t2rk.com/C5PWF/2J2CRS/?sub1=3415790118458890266
IP
34.54.88.246:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Certificate
IssuerGoogle Trust Services
Subjectwww.ppj23t2rk.com
FingerprintA9:29:25:47:4D:30:19:AF:92:F4:19:D4:38:8B:8F:0C:96:2F:BD:C5
ValidityFri, 28 Feb 2025 04:32:50 GMT - Thu, 29 May 2025 05:28:45 GMT

File type

Size
29 kB (29169 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /C5PWF/2J2CRS/?sub1=3415790118458890266 HTTP/1.1
Host: www.ppj23t2rk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Wed, 16 Apr 2025 06:41:42 GMT
content-type: text/html; charset=utf-8
content-length: 137
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
location: https://pro.paradigmnewsletters.org/m/2428639?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266
set-cookie: uniqueClick_2J2CRS=4f059163-83ee-4f5f-80d0-8708693ebaa9:1744785702; Path=/; Expires=Wed, 14 May 2025 06:41:42 GMT; Secure; SameSite=None
transaction_id=740c0877d1e143b594d91c3ca86a216c; Path=/; Expires=Tue, 15 Jul 2025 06:41:42 GMT; Secure; SameSite=None
vary: Origin
x-eflow-request-id: 5f13640d-9417-4384-8a45-b414397041c1
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.getblueshift.com/blueshift.js

54.240.174.71

200 OK

6.9 kB

URL GET
cdn.getblueshift.com/blueshift.js
IP
54.240.174.71:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.getblueshift.com
FingerprintDC:03:F0:B3:98:3C:48:D2:6E:04:8C:63:1A:D8:02:FD:D9:FF:40:80
ValiditySat, 08 Jun 2024 00:00:00 GMT - Sun, 06 Jul 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6936), with no line terminators
Size
6.9 kB (6936 bytes)
Hash
cef7c83a090a8a07f5c1d53872847afe
e813804d783e72d1eb6f096ec956ebdaacff8e64
8cdf3a99ba41b4c937f27fcfd035be69585da981301c244c46cf026c57fba5f9

HTTP Headers

GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2918
Connection: keep-alive
Last-Modified: Tue, 10 Dec 2024 03:10:07 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 16 Apr 2025 05:42:37 GMT
Cache-Control: max-age=3600
ETag: "df70762b11c1a126e073a1dce085540f"
Vary: accept-encoding
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b8j11Rlf06_08-ynsTrml-tYFCWapVnUtLA3cWY9kT8N3wj9nmmT9A==
Age: 3548

www.googletagmanager.com/gtm.js?id=GTM-NKRVP76

142.250.74.168

200 OK

519 kB

URL GET
www.googletagmanager.com/gtm.js?id=GTM-NKRVP76
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type
JavaScript source, ASCII text, with very long lines (56012)
Size
519 kB (518631 bytes)
Hash
e69f0cf8bbd528da1186a12034721375
ebd8f8232b617566291ee468bf88399589a63e0d
cb401a3ee73161612d509e443c7927d9f3c081d9f9bbeac62d95561c78a0830a

HTTP Headers

GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Apr 2025 06:41:44 GMT
expires: Wed, 16 Apr 2025 06:41:44 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Apr 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1294:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1294:0
report-to: {"group":"ascgcycc:1294:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1294:0"}],}
server: Google Tag Manager
content-length: 147169
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL POST
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.3:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68
ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1427
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:47 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fv0hUEGQEFbmEiNxkHhUfFxINAQfjGrKZcGzwJgY2IenQmhvyGwshg==
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/googleAnalytics.js

151.101.194.132

200 OK

31 kB

URL GET
fast.wistia.com/assets/external/googleAnalytics.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (30891)
Size
31 kB (30935 bytes)
Hash
bc9fea59e51871129cc71d1f3f011efb
5d37d0fd7097a2aa61a74bb326338a470c65e23e
f2b1f56249a95f4d96bf432f6e1d40ab486495ba67f25123d5ca2549c0c16a6b

HTTP Headers

GET /assets/external/googleAnalytics.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "9e6dfc578f11bcadc61762528a2bfea2"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:46 GMT
age: 2594
x-served-by: cache-iad-kiad7000153-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 6, 7
x-timer: S1744785706.002486,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 7099
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.3

200 OK

2 B

URL POST
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.3:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint84:37:78:5C:F1:DB:9E:23:64:62:0A:29:ED:CC:50:61:C3:3D:80:68
ValiditySun, 11 Aug 2024 00:00:00 GMT - Tue, 09 Sep 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2252
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 16 Apr 2025 06:41:48 GMT
server: envoy
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DTTZIWb4RYiJH_zXEB80AzPH9BvyY62W5gnrZNzv1ccIuedVLUIdyg==
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-warning-icon.png

54.230.245.165

200 OK

1.7 kB

URL GET
d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-warning-icon.png
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 73 x 75, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1716 bytes)
Hash
40a8475cba41b161c3b142acc36b79e5
0da3639ed848b44a4efd71189e742a94b29280d4
186053f58f065437b88bc7ab02d4d48d7f203c61d615f81aa457b5f755d5a061

HTTP Headers

GET /AWN/exit-pop/exitpop-warning-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1716
server: nginx
date: Fri, 09 Aug 2024 20:42:14 GMT
last-modified: Fri, 15 Sep 2023 16:23:26 GMT
cache-control: max-age=31536000
expires: Sat, 09 Aug 2025 20:42:14 GMT
etag: "650484fe-6b4"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0-0pDWVGs9RWiWeIN-4mF_FvDULm43Bza2dyLsBIN1PuRHvUdQRVHQ==
age: 21549570
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-transcript-icon.png

54.230.245.165

200 OK

1.5 kB

URL GET
d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-transcript-icon.png
IP
54.230.245.165:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT

File type
PNG image data, 50 x 53, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1484 bytes)
Hash
c94eaaf8ec2941b35a23421f193b8c2e
156681cbd7cf2836598e47d3eec86f7a9772bde8
5fea6317f0aeb6da5271e9a104032ab162521148ec32b93df3c77129fa39fe97

HTTP Headers

GET /AWN/exit-pop/exitpop-transcript-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1484
server: nginx
date: Thu, 19 Sep 2024 00:51:57 GMT
last-modified: Fri, 15 Sep 2023 16:23:23 GMT
cache-control: max-age=31536000
expires: Fri, 19 Sep 2025 00:51:57 GMT
etag: "650484fb-5cc"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _Fv5uR0_0P6N-bP1b7QrownfiLfpcoNeamU__6VtJLequk4IPGZfxw==
age: 18078587
X-Firefox-Spdy: h2

www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1554169118.1744785705&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&auid=1886516409.1744785705&navt=n&npa=1&gtm=45He54f0h2v811578897za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tft=1744785704867&tfd=4670&apve=1

142.250.74.68

200 OK

0 B

URL POST
www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1554169118.1744785705&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&auid=1886516409.1744785705&navt=n&npa=1&gtm=45He54f0h2v811578897za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tft=1744785704867&tfd=4670&apve=1
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint40:5C:81:99:DA:01:36:FE:E4:60:2B:67:51:3D:C2:62:8D:9A:38:47
ValidityThu, 20 Mar 2025 11:20:31 GMT - Thu, 12 Jun 2025 11:20:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=1554169118.1744785705&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&auid=1886516409.1744785705&navt=n&npa=1&gtm=45He54f0h2v811578897za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&tft=1744785704867&tfd=4670&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
date: Wed, 16 Apr 2025 06:41:45 GMT
content-type: text/plain
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://pro.paradigmnewsletters.org
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/midrollLink-v2.js

151.101.194.132

200 OK

22 kB

URL GET
fast.wistia.com/assets/external/midrollLink-v2.js
IP
151.101.194.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
Fingerprint49:64:2D:A7:16:17:0D:24:35:33:3A:F2:CA:FE:6A:A4:27:49:EF:99
ValidityWed, 05 Feb 2025 00:56:22 GMT - Mon, 09 Mar 2026 00:56:21 GMT

File type
JavaScript source, ASCII text, with very long lines (21533)
Size
22 kB (21576 bytes)
Hash
2988a3d551f487c122ad57e49d910378
68913d3b2b3487e6f1190cdf512c8ceece43f64a
2489c9f2013ae0402d9449d1c367b41a48bb9a6bc2d5c6f812628cceab3e98a9

HTTP Headers

GET /assets/external/midrollLink-v2.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 15 Apr 2025 13:56:24 GMT
etag: "c8b9b774b047f3526f823f59734fc07f"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 16 Apr 2025 06:41:45 GMT
age: 2615
x-served-by: cache-iad-kcgs7200073-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 7
x-timer: S1744785706.902562,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 134
asset-version: 7fbd61892d59f9f38adda300d1ffc1e6da8935b3
content-length: 6677
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8/seg-1-v1-a1.ts

143.204.55.78

200 OK

364 kB

URL GET
embed-cloudfront.wistia.com/deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8/seg-1-v1-a1.ts
IP
143.204.55.78:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintC8:77:67:66:9E:3C:31:F7:1C:8E:9A:18:6E:53:3A:44:CD:C7:4F:EA
ValiditySat, 30 Nov 2024 00:00:00 GMT - Sun, 28 Dec 2025 23:59:59 GMT

File type
MPEG transport stream data
Size
364 kB (364344 bytes)
Hash
624d92eee9879d10e1206edffb6750d5
cc44f8aa00dd9b3376eb1a546c98de661163ca4f
c9d35979f1cff99e4833e8fc162376d108df414900a123f7b2b98f5f94062ede

HTTP Headers

GET /deliveries/7596bf46faf01e6114c845e2ecb3c544e3b1c199.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: video/MP2T
content-length: 364344
server: envoy
date: Wed, 09 Apr 2025 14:43:35 GMT
expires: Thu, 09 Apr 2026 14:43:35 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
surrogate-key: 7596bf46faf01e6114c845e2ecb3c544e3b1c199-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 146
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BnLk2Jxp2WcvFRbuN-yRQ6ZH_WcItPYeFQ_ciB2MI5y8oFZdZAaiTQ==
age: 575893
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=7&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=19917

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=7&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=19917
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_birthright_0325/LAWN5432/?cake_s1=740c0877d1e143b594d91c3ca86a216c&SID=3415790118458890266&h=true
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint88:85:26:A3:0A:0B:44:C6:92:DD:7B:0B:D1:14:38:BA:26:B9:EF:D9
ValidityThu, 20 Mar 2025 11:18:39 GMT - Thu, 12 Jun 2025 11:18:38 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je54f0h2v9122066590z878323495za200zb811578897&_p=1744785704100&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102509683~102803279~102813109~102887800~102926062~103027016~103051953~103055465~103077950&cid=93989633.1744785705&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AAAAAAI&_s=7&sid=1744785705&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_birthright_0325%2FLAWN5432%2F%3Fcake_s1%3D740c0877d1e143b594d91c3ca86a216c%26SID%3D3415790118458890266%26h%3Dtrue&dt=AMERICA%E2%80%99S%20SECRET%20TRUST%20FUND&en=Engagement&tfd=19917 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 16 Apr 2025 06:42:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:153:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:153:0
report-to: {"group":"ascnsrsggc:153:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:153:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML