Report - trk.thedailymoneytips.com/?xtl=1ujoyrwz1lfcr4yjune84xtfwfmmgo76prb42i54ae6tgyaaexg1uhrb3z6otltplnykmmloet88elemounh8phgywstgpnfz8gegsmaaxfmplqvef34ov8my6trwgvqsnegye12i65fiefezs0dg4jxynzy8yvjchsyjj77kxsx14qdllvrk4a84rxd9gr5agpmvw2f8ffjytcc1k0j4w6ijffbqnmwu05hox6nrqpjbv68pqdcascz651w9f6sxtszk9hlnpu2qcp22wzs5djyo4ovzekoq1xfg8xq86zjppiea8abnsgipp&ei=zack_craft@slurpmail.net&ocx_custom_hash=a2b365ee3f54ea9c08c746889506f31a&lead

Report Overview

Visited public
2023-12-08 23:58:12
Tags
URL
trk.thedailymoneytips.com/?xtl=1ujoyrwz1lfcr4yjune84xtfwfmmgo76prb42i54ae6tgyaaexg1uhrb3z6otltplnykmmloet88elemounh8phgywstgpnfz8gegsmaaxfmplqvef34ov8my6trwgvqsnegye12i65fiefezs0dg4jxynzy8yvjchsyjj77kxsx14qdllvrk4a84rxd9gr5agpmvw2f8ffjytcc1k0j4w6ijffbqnmwu05hox6nrqpjbv68pqdcascz651w9f6sxtszk9hlnpu2qcp22wzs5djyo4ovzekoq1xfg8xq86zjppiea8abnsgipp&ei=zack_craft@slurpmail.net&ocx_custom_hash=a2b365ee3f54ea9c08c746889506f31a&lead_source=
Finishing URL
pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
IP / ASN
3.94.176.246
#14618 AMAZON-AES
Title
Saudi Arabia Planning A New Attack On America

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.getblueshift.com	12716	2014-03-09	2016-09-19 05:21:38	2023-12-07 16:58:30	431 B	3.4 kB	54.230.111.60
paradigmpressgroup.com	unknown	2022-05-20	2022-07-18 18:25:53	2023-12-08 06:28:06	939 B	4.2 kB	18.214.111.198
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-12-08 07:38:21	603 B	578 B	142.250.74.163
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-12-08 05:12:42	5.4 kB	2.7 kB	216.239.34.36
470kwc1.com	unknown	2019-05-03	2020-04-29 23:06:05	2023-12-08 05:27:02	534 B	27 kB	18.190.20.10
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-08 07:43:19	534 B	1.1 MB	142.250.74.106
distillery.wistia.com	6708	2007-03-18	2012-09-30 04:46:15	2023-12-08 10:19:02	511 B	410 B	54.230.111.90
trk.thedailymoneytips.com	unknown	2019-06-27	2023-03-10 21:57:38	2023-11-22 14:40:14	817 B	511 B	18.214.171.162
pro.paradigm-press.info	unknown	2019-02-19	2019-03-28 14:40:12	2023-12-08 06:28:02	557 B	837 B	192.135.136.169
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-08 07:46:22	1.7 kB	112 kB	216.58.207.227
d2z65klgtz99km.cloudfront.net	unknown	2008-04-25	2021-03-17 02:03:23	2023-12-07 15:43:02	2.5 kB	2.9 MB	54.230.241.121
embed-cloudfront.wistia.com	unknown	2007-03-18	2022-11-08 05:17:21	2023-12-08 01:54:38	1.6 kB	1.3 MB	143.204.55.103
verifiedwebpage.com	unknown	2022-03-23	2022-03-23 19:03:14	2023-12-08 05:51:23	637 B	27 kB	188.114.96.1
fast.wistia.com	5153	2007-03-18	2012-07-04 02:34:57	2023-12-07 20:03:18	3.8 kB	288 kB	151.101.130.132
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-12-08 08:34:59	455 B	35 kB	142.250.74.170
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-08 05:47:56	2.3 kB	481 kB	142.250.74.168
s.yimg.com	375	1997-05-14	2012-05-21 00:45:00	2023-12-08 18:36:52	3.6 kB	32 kB	188.125.94.206
api.getblueshift.com	9346	2014-03-09	2014-05-10 00:20:22	2023-12-08 19:24:24	734 B	339 B	44.232.199.155
click.thedailymoneytips.com	unknown	2019-06-27	2023-03-10 21:57:35	2023-12-08 06:39:49	605 B	1.1 kB	188.114.96.1
pro.paradigmnewsletters.org	unknown	2018-12-12	2019-06-06 21:52:38	2023-12-08 06:28:03	1.9 kB	14 kB	161.129.26.18
pipedream.wistia.com	6958	2007-03-18	2017-01-30 05:30:40	2023-12-08 17:50:40	1.1 kB	914 B	143.204.55.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-08	medium	thedailymoneytips.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (31)

	URL	From	Size	First Seen	Last Seen
	unknown	ScriptElement	469 B	2023-03-10	2024-12-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:07 Last Seen2024-12-11 19:47 Times Seen886 Hash deeaa7c0af6a3a2abc4f6232e0726eaa 82dff020198b4ca13a2e26a4ebc0ad661a66712d e1d46eadd939d65337b58355bbd09d26261a5b2bd05b4802e8d448ee0a937d26 Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 09:30 Times Seen341406 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C	ScriptElement	243 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:58 Last Seen2023-12-09 00:58 Times Seen3 Hash 20caf67f813ce2cb042f7bd315280454 a97758b20540c8dd28e0d3cfc270df853c52ee44 163b279a6182ee746b03abb52b997232be779b8f8133e8d58c12c7d33b4b0881 Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	39 B	2023-03-10	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:07 Last Seen2025-04-26 09:06 Times Seen3027 Hash af8745eef59c123e59cd4703ea4cc40e 8aab93d5d6e19c3430396e434f734df7699aeda0 419e6fe661d8187589ce9e3f1f2888d3bd1fc5f4af3dc1e6a0321a66c31e1191 Loading...

	unknown	ScriptElement	469 B	2023-03-10	2024-12-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:07 Last Seen2024-12-11 19:47 Times Seen886 Hash 6bfa85325d17bdaf99d6c48c4539b496 dcab4590a8eeae34b0e63df480f24c1e901800bc 0d293b59ef3ca7a501f575c64a240bc9dbaad8c1c637806793a4a2d8c334a6b9 Loading...

	s.yimg.com/wi/ytc.js	ScriptElement	18 kB	2023-06-26	2024-08-29
Pretty URL s.yimg.com/wi/ytc.js IP 188.125.94.206 ASN #10310 YAHOO-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 11:33 Last Seen2024-08-29 17:29 Times Seen6264 Hash 5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-P95MDDF	ScriptElement	395 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:58 Last Seen2023-12-09 01:02 Times Seen4 Hash 33b2345b9fc0829d4c9793107153a535 3cdd0fad11854e16f241829d66a5611380e7723a 9ba883061491695580356a715c7dc3aef73afcb3dd6102a3c1aa245a7c32be12 Loading...

	unknown	ScriptElement	1.3 kB	2023-03-10	2025-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:07 Last Seen2025-04-26 09:06 Times Seen1426 Hash 94d29b65bf770b80ca20ff02e2ba5f41 a4c1ab460dbe34b9672c2745f50e0c792a64d932 2d59b45ab2c9e86e411bdd0f5f9d8bb84b383a197faf372ee4e91a0c9a651b87 Loading...

	unknown	ScriptElement	469 B	2023-03-10	2024-12-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:07 Last Seen2024-12-11 19:47 Times Seen886 Hash 1b942598e5ebe0432ae014b008148c5b 63d79dd6f78b6fa3d330d9f70ed48048f2cb9dd8 f91cdf301758a9d6e20bc3455aa0ad44dd54cf784f593aceb2283318c2117f94 Loading...

	fast.wistia.com/assets/external/playPauseLoadingControl.js	ScriptElement	81 kB	2023-11-29	2023-12-12
Pretty URL fast.wistia.com/assets/external/playPauseLoadingControl.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 23:01 Last Seen2023-12-12 14:56 Times Seen192 Hash 31f0b908fbd5fc16bf6737c637b83178 26f5effe6525ca16ceb9815cb26776a8ac36f81c 863614886d87b0fbc5b99b2c002a8e382ab9161cacc1290006ea02e428e09747 Loading...

	pro.paradigmnewsletters.org/p/Scripts/Common.js	ScriptElement	2.4 kB	2023-03-09	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/Scripts/Common.js IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:56 Last Seen2025-04-26 09:06 Times Seen3875 Hash ef9b6f612e89926fa10830ad89a7f3b6 faa8fbf56e4834534455c46ba2753118eb554c2e 86034bbe69eebb0c08660ff7f0128dd0bd1d852176489ca3a3da7b49bd647cbd Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	341 B	2023-03-10	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:07 Last Seen2025-04-26 09:06 Times Seen1430 Hash 285bc9b441da8c1fbab42396acae2df3 833ac60111a789824e40a385d2e225c129751bbd 7849138d30558b224e5ccd5847d7ea5767630e220bf7d4e3496e99c5fa02974f Loading...

	cdn.getblueshift.com/blueshift.js	ScriptElement	6.6 kB	2023-11-22	2024-08-20
Pretty URL cdn.getblueshift.com/blueshift.js IP 54.230.111.60 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-22 06:19 Last Seen2024-08-20 18:22 Times Seen312 Hash 859d16b4786a243736a9b219445eae43 e6dd4c8dcac4df40615338f1e7ecfe50c54aa0d5 393483170bc4a2319e51ea073f4e13b85185948301acce471b482094d11af7c7 Loading...

	www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c	ScriptElement	279 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:58 Last Seen2023-12-09 01:00 Times Seen3 Hash 9737f749fba552451e66bfc9b41108fc 56304cd9bcc560c56663cbbd2c244829b9eba9b8 2b21587ef471c25e18a2f6ca08c51f9876f24b6c5efc801ffd7beb4611ce5128 Loading...

	fast.wistia.com/assets/external/engines/hls_video.js	ScriptElement	484 kB	2023-12-04	2023-12-12
Pretty URL fast.wistia.com/assets/external/engines/hls_video.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 21:23 Last Seen2023-12-12 14:56 Times Seen117 Hash 6e1e307293f078c95c07db8660ce607a 2a08bcf1166c9707485e568102f7c96e1f933b36 f0150171f993137d09210b10e0629ea4d57a465046ba791adb4bf4a2da978357 Loading...

	unknown	ScriptElement	1.2 kB	2023-03-14	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 11:28 Last Seen2024-08-21 06:59 Times Seen257 Hash 596005034249bdf75aca818504b579e8 ff04da238930839575b0b2709aadbdce5785bf12 110cf442650b6702dfbfa992c3537aca60014285e093faa411bb1f3ee45f2d4e Loading...

	unknown	ScriptElement	469 B	2023-03-10	2024-12-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:07 Last Seen2024-12-11 19:47 Times Seen887 Hash 525d0b8417e918e828c73233e2e7b437 98cce5ccb75b57d7a47822a88b159d54bdf05fdd 9dc28f8d48c697f48911cc3ce9ae64edfae072127840572164c90548695e82ca Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	ScriptElement	97 kB	2023-03-07	2025-05-09
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:38 Times Seen28952 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	341 B	2023-09-13	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-13 02:02 Last Seen2025-04-26 09:06 Times Seen1423 Hash ce1c2dd4d39647e5c7e8a4ded7c7d48a 4f7b2f537cb1a05bd6a7f661fce09d2db271bb38 8a871b5034d221b1a98614580a9a998b0a63ad1bff46c93d65d0ed544c3638fc Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	836 B	2023-11-08	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 05:21 Last Seen2025-04-26 09:06 Times Seen1401 Hash 4e2e4cbe63ac644606cfa87e76452824 3936c2eb6588579868016076278ccd961760eda0 85c1ef4cc98021ecdbab4fb4016a5a3500c7c47f6a2dd042083947f32ab1fb05 Loading...

	fast.wistia.com/assets/external/googleAnalytics4.js	ScriptElement	17 kB	2023-11-30	2023-12-12
Pretty URL fast.wistia.com/assets/external/googleAnalytics4.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 19:49 Last Seen2023-12-12 14:56 Times Seen77 Hash 9bbbdbdad3d0da00881800f39ed6ad8b 03563b32521b2a04dc6e7ba8b5f1fe21181be7f0 f47b95dbf3f004a7305cfe6c6b107d76dac597a4c50a52e3f33240f76e4598d5 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 09:30 Times Seen340605 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	fast.wistia.com/assets/external/allIntegrations.js	ScriptElement	23 kB	2023-11-29	2023-12-12
Pretty URL fast.wistia.com/assets/external/allIntegrations.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 23:01 Last Seen2023-12-12 14:56 Times Seen129 Hash 9a9248fb8178a9640de37511b065850f 086459b7f718251f753b82cee05f51c6ca2d3a84 fb7f597f64e9b0c17f7f99fb577f164c36f93f13ffda2ccb736b786e4e705d12 Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	3.2 kB	2023-09-21	2024-08-21
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-21 23:36 Last Seen2024-08-21 06:08 Times Seen87 Hash e77e3a0549c86a862738a20c1101537c 070fdaec1157bf15386e7e2e82a1cade68a60bd7 9a78ac45364e07700fbbcd6f9e3059afabaa736087db8733cacaa25d96d9ff38 Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	2.3 kB	2023-09-13	2024-08-21
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-13 02:02 Last Seen2024-08-21 06:59 Times Seen338 Hash 3d013cb0fd283e7527d6262873f50105 3d9da52452e8a90890f0d9d09ac8d8e6229e9e5b d22ae161cd5b68410950c730064c07aa23aefbb494e3f35770c376cd7858909f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NKRVP76	ScriptElement	398 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:58 Last Seen2023-12-09 01:00 Times Seen4 Hash d27fa50ad65a4aa1387c6073fbab7bea 7370fa3fcb18c5aae67c9c7f616f64470dd6fc5e 402aaa9347b9d98b06ffbd5db67120ac540145ad6cf21965ce476eef600858f5 Loading...

	unknown	ScriptElement	326 B	2023-03-14	2025-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 11:28 Last Seen2025-04-26 09:06 Times Seen1449 Hash aedcaf36e4ad85dbf51037318c8ab10c c6210e518ab8eeb0a496b966241caeb1c464516a 5a0af2eeee3dcb3f4e43e4533947d91a74f63d17a73691aac1ad46367989809f Loading...

	www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c	ScriptElement	243 kB	2023-12-09	2023-12-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-09 00:58 Last Seen2023-12-09 01:02 Times Seen2 Hash 0420e4af3b2157f327af7968f5f87fb6 656dcccfe70bba45cecf6e0e37689beb6339ddf4 d6eab95412101f35217a34a7da21f755bb6fb7b30beb2cb4d21158402d3e2b1b Loading...

	fast.wistia.com/assets/external/E-v1.js	ScriptElement	761 kB	2023-12-07	2023-12-11
Pretty URL fast.wistia.com/assets/external/E-v1.js IP 151.101.130.132 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 20:39 Last Seen2023-12-11 15:44 Times Seen73 Hash 126858c9f3376ca1bc419aa2a2d0af28 51e06cde2e8cc415d06c63e144e6c36d2c95270d 78cf6679aa583fd97b9700d6dafa7e791d7861b72d173df807b5f8f27d246877 Loading...

	pro.paradigmnewsletters.org/p/Scripts/HideContent.js	ScriptElement	721 B	2023-03-09	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:56 Last Seen2025-04-26 09:06 Times Seen3875 Hash 624fa8179cc49ca9e80737453a6b3367 226693fb4119bc204e4dd3b8d36da8587fd00bb0 809a6bdcc35b316bf93316955e29816c41204f9bcc5fefb53d8a075bba2ee6ac Loading...

	pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true	ScriptElement	2.2 kB	2023-03-10	2025-04-26
Pretty URL pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true IP 161.129.26.18 ASN #11372 14WEST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:07 Last Seen2025-04-26 09:06 Times Seen1614 Hash e4f3e2e42bacfb36a7847e627e7e8276 5492c5e58d3c3abd4a40f736078f546b450e8085 5b86639a656d86f430a56426ae9ac2c83fe1a5c11d91739037f8b1146f5677b8 Loading...

HTTP Transactions (56)

URL IP Response Size

trk.thedailymoneytips.com/?xtl=1ujoyrwz1lfcr4yjune84xtfwfmmgo76prb42i54ae6tgyaaexg1uhrb3z6otltplnykmmloet88elemounh8phgywstgpnfz8gegsmaaxfmplqvef34ov8my6trwgvqsnegye12i65fiefezs0dg4jxynzy8yvjchsyjj77kxsx14qdllvrk4a84rxd9gr5agpmvw2f8ffjytcc1k0j4w6ijffbqnmwu05hox6nrqpjbv68pqdcascz651w9f6sxtszk9hlnpu2qcp22wzs5djyo4ovzekoq1xfg8xq86zjppiea8abnsgipp&ei=zack_craft@slurpmail.net&ocx_custom_hash=a2b365ee3f54ea9c08c746889506f31a&lead_source=

18.214.171.162

302 Moved Temporarily

0 B

URL User Request GET HTTP/1.1
trk.thedailymoneytips.com/?xtl=1ujoyrwz1lfcr4yjune84xtfwfmmgo76prb42i54ae6tgyaaexg1uhrb3z6otltplnykmmloet88elemounh8phgywstgpnfz8gegsmaaxfmplqvef34ov8my6trwgvqsnegye12i65fiefezs0dg4jxynzy8yvjchsyjj77kxsx14qdllvrk4a84rxd9gr5agpmvw2f8ffjytcc1k0j4w6ijffbqnmwu05hox6nrqpjbv68pqdcascz651w9f6sxtszk9hlnpu2qcp22wzs5djyo4ovzekoq1xfg8xq86zjppiea8abnsgipp&ei=zack_craft@slurpmail.net&ocx_custom_hash=a2b365ee3f54ea9c08c746889506f31a&lead_source=
IP
18.214.171.162:80
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?xtl=1ujoyrwz1lfcr4yjune84xtfwfmmgo76prb42i54ae6tgyaaexg1uhrb3z6otltplnykmmloet88elemounh8phgywstgpnfz8gegsmaaxfmplqvef34ov8my6trwgvqsnegye12i65fiefezs0dg4jxynzy8yvjchsyjj77kxsx14qdllvrk4a84rxd9gr5agpmvw2f8ffjytcc1k0j4w6ijffbqnmwu05hox6nrqpjbv68pqdcascz651w9f6sxtszk9hlnpu2qcp22wzs5djyo4ovzekoq1xfg8xq86zjppiea8abnsgipp&ei=zack_craft@slurpmail.net&ocx_custom_hash=a2b365ee3f54ea9c08c746889506f31a&lead_source= HTTP/1.1
Host: trk.thedailymoneytips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Date: Fri, 08 Dec 2023 23:57:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-Powered-By: PHP/5.6.40
Location: https://click.thedailymoneytips.com/sadoomsday6mf1023/a2b365ee3f54ea9c08c746889506f31a/48//1990834045/139350/6957ba18feb5c33b553f6ad514ca900e/63293
X-Permitted-Cross-Domain-Policies: None
Strict-Transport-Security: max-age=86400
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;

click.thedailymoneytips.com/sadoomsday6mf1023/a2b365ee3f54ea9c08c746889506f31a/48//1990834045/139350/6957ba18feb5c33b553f6ad514ca900e/63293

188.114.96.1

302 Found

216 B

URL User Request GET HTTP/2
click.thedailymoneytips.com/sadoomsday6mf1023/a2b365ee3f54ea9c08c746889506f31a/48//1990834045/139350/6957ba18feb5c33b553f6ad514ca900e/63293
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectthedailymoneytips.com
Fingerprint79:EC:85:19:05:49:AD:6B:8A:A1:90:4E:B9:8D:91:79:4B:F6:6C:79
ValidityWed, 25 Oct 2023 16:41:13 GMT - Tue, 23 Jan 2024 16:41:12 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
216 B (216 bytes)
Hash
11b7cd43b97da317094fc2edfa8970c5
edd7bf523d23075cdfab5f4fcec4383e58fcc16c
761c225d44dc9680bbc794a42d3df062a258cd90f1f3427894fa5209c2795ebb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sadoomsday6mf1023/a2b365ee3f54ea9c08c746889506f31a/48//1990834045/139350/6957ba18feb5c33b553f6ad514ca900e/63293 HTTP/1.1
Host: click.thedailymoneytips.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 08 Dec 2023 23:57:53 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedwebpage.com/go?ehash=a2b365ee3f54ea9c08c746889506f31a&product=32827&ar=48&cid=1990834045&lid=139350&slhash=6957ba18feb5c33b553f6ad514ca900e&mtaid=63293&cid2=[s8]
cache-control: max-age=600
expires: Sat, 09 Dec 2023 00:07:52 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g6GYGsKL3o1rd7K4pVeUoir6qrF0zz4VMsPiUnJ0dJMSj%2BM4Hn%2BX5oWwbUYL%2FAGh7XouGtm19PzRJPZIbyVOaGKS8AlAG5GT9lJWkIXASLC%2Bid8gkmHD8CtYAln3gjww7pHl8JTY2Ffkp82Tsj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8328f403bf560b51-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pro.paradigm-press.info/m/2246202?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec

192.135.136.169

301 Moved Permanently

251 B

URL User Request GET HTTP/1.1
pro.paradigm-press.info/m/2246202?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec
IP
192.135.136.169:443
ASN
#11372 14WEST-AS

Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint5D:9B:A2:DC:1F:DA:F9:4F:9E:55:AD:AA:D5:50:57:BB:B7:C3:50:39
ValidityFri, 17 Nov 2023 17:49:52 GMT - Thu, 15 Feb 2024 17:49:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
251 B (251 bytes)
Hash
c221ef2652b26c7ec1e18b3fb888f07c
9722fc30d27f2c3dfea3b00e7aa73d8d2319b093
b55d9410e0781a6d791c7818b8628053a7db71f12a4b4a80158a7b208ab61e83

HTTP Headers

GET /m/2246202?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec HTTP/1.1
Host: pro.paradigm-press.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Date: Fri, 08 Dec 2023 23:57:55 GMT
Content-Length: 251
Set-Cookie: 2246202=2658339; expires=Thu, 28-Dec-2023 23:57:55 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!VRMreJhKMEMlGYQ0QCUGrw3uOK3bWYE+4eh92RqM+dPeknd5bU6xXxHihHNHzdUfavekmY/wwKpQRx0=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains

pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true

161.129.26.18

200 OK

11 kB

URL User Request GET HTTP/1.1
pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
IP
161.129.26.18:443
ASN
#11372 14WEST-AS

Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint5D:9B:A2:DC:1F:DA:F9:4F:9E:55:AD:AA:D5:50:57:BB:B7:C3:50:39
ValidityFri, 17 Nov 2023 17:49:52 GMT - Thu, 15 Feb 2024 17:49:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1672), with CRLF, LF line terminators
Size
11 kB (10662 bytes)
Hash
a2a696d140f8cc1fdad95b154d799683
b7cea797d488904036054861073f615d6180c567
1f147dc149db385df360e46c73b8ed7a78f5640d8fe5c71aa55ac9893e8ec0ab

HTTP Headers

GET /p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Fri, 08 Dec 2023 23:57:55 GMT
Content-Length: 10662
Set-Cookie: LAWNZ984=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!mmm5iRVScKBC2Cs0QCUGrw3uOK3bWeiy50FJqfS4cjFMx47n+PKguCKGelRWbN/5s1JwtoC9w0Be2SI=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains

fast.wistia.com/assets/external/E-v1.js

151.101.130.132

200 OK

129 kB

URL GET HTTP/2
fast.wistia.com/assets/external/E-v1.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
ASCII text, with very long lines (65474)
Size
129 kB (129063 bytes)
Hash
126858c9f3376ca1bc419aa2a2d0af28
51e06cde2e8cc415d06c63e144e6c36d2c95270d
78cf6679aa583fd97b9700d6dafa7e791d7861b72d173df807b5f8f27d246877

HTTP Headers

GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Thu, 07 Dec 2023 18:55:59 GMT
etag: "2dfa35fa3c2d63da5bfe8edd5f3cb8df"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:56 GMT
age: 67
x-served-by: cache-iad-kiad7000039-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 75, 1
x-timer: S1702079876.454583,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
asset-version: cc9ded0077d16f0d56c3b38f358a76e310b0eefb
content-length: 129063
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.74.170

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:44:29 GMT
expires: Fri, 06 Dec 2024 15:44:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 116007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pro.paradigmnewsletters.org/p/Scripts/Common.js

161.129.26.18

200 OK

1.1 kB

URL GET HTTP/1.1
pro.paradigmnewsletters.org/p/Scripts/Common.js
IP
161.129.26.18:443
ASN
#11372 14WEST-AS

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint5D:9B:A2:DC:1F:DA:F9:4F:9E:55:AD:AA:D5:50:57:BB:B7:C3:50:39
ValidityFri, 17 Nov 2023 17:49:52 GMT - Thu, 15 Feb 2024 17:49:51 GMT

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.1 kB (1140 bytes)
Hash
2fa1e7a35bfa376eff7f1426fc4a8afa
008b48dbd95a158542969743c18d0bc33e0a9384
857d94bd23b6437baa66255e1d507ad4a23d75ef9a271fb3e1303dc7dd0aced9

HTTP Headers

GET /p/Scripts/Common.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
DNT: 1
Connection: keep-alive
Cookie: LAWNZ984=; BIGipServerIRIS_PROD_HTTPS_POOL=!mmm5iRVScKBC2Cs0QCUGrw3uOK3bWeiy50FJqfS4cjFMx47n+PKguCKGelRWbN/5s1JwtoC9w0Be2SI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "a37f814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Fri, 08 Dec 2023 23:57:56 GMT
Content-Length: 1140
Strict-Transport-Security: max-age=63072000; includeSubDomains

pro.paradigmnewsletters.org/p/Scripts/HideContent.js

161.129.26.18

200 OK

466 B

URL GET HTTP/1.1
pro.paradigmnewsletters.org/p/Scripts/HideContent.js
IP
161.129.26.18:443
ASN
#11372 14WEST-AS

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerLet's Encrypt
Subjectordertracking6.pubsvs.com
Fingerprint5D:9B:A2:DC:1F:DA:F9:4F:9E:55:AD:AA:D5:50:57:BB:B7:C3:50:39
ValidityFri, 17 Nov 2023 17:49:52 GMT - Thu, 15 Feb 2024 17:49:51 GMT

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
466 B (466 bytes)
Hash
cc54a637e514fddfe0be2e7c2d062e5b
a0f97813508d22d71f015b93cc8dfdcee65acdfd
580942b09dd77a53c0501f35a1d6c61cbcff1d504a6efb0dfa5d77cbdb1af741

HTTP Headers

GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
DNT: 1
Connection: keep-alive
Cookie: LAWNZ984=; BIGipServerIRIS_PROD_HTTPS_POOL=!mmm5iRVScKBC2Cs0QCUGrw3uOK3bWeiy50FJqfS4cjFMx47n+PKguCKGelRWbN/5s1JwtoC9w0Be2SI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Fri, 08 Dec 2023 23:57:56 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains

cdn.getblueshift.com/blueshift.js

54.230.111.60

200 OK

2.8 kB

URL GET HTTP/1.1
cdn.getblueshift.com/blueshift.js
IP
54.230.111.60:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.getblueshift.com
Fingerprint29:49:01:4C:AB:3A:C5:E4:F6:F2:67:75:BE:5B:FF:4B:F3:5C:EC:47
ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 06 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6564), with no line terminators
Size
2.8 kB (2805 bytes)
Hash
859d16b4786a243736a9b219445eae43
e6dd4c8dcac4df40615338f1e7ecfe50c54aa0d5
393483170bc4a2319e51ea073f4e13b85185948301acce471b482094d11af7c7

HTTP Headers

GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2805
Connection: keep-alive
Last-Modified: Tue, 21 Nov 2023 12:16:06 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Fri, 08 Dec 2023 23:33:27 GMT
Cache-Control: max-age=3600
ETag: "e7a548f293fa4dad39c906cae250b1ed"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1oVBCI96Q2vVFjjS9CTkXzUzq7W6xgpTtIeHHT9OH36_pjbzv_oCiw==
Age: 1469

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:00:58 GMT
expires: Fri, 06 Dec 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 154619
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Size
48 kB (48432 bytes)
Hash
e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5

HTTP Headers

GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:00:58 GMT
expires: Fri, 06 Dec 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 154619
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12648, version 1.0\012- data
Size
13 kB (12648 bytes)
Hash
5e79fc3b5fbdec47c02942523ae2bdbd
fdb96db25dc07b7c0573bf5a66966d12dfbb41bd
6ecd2a103a7260474c3239da5f32a2f7cb999765d9ab12161f3e4abe3906316f

HTTP Headers

GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12648
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 08 Dec 2023 14:46:39 GMT
expires: Sat, 07 Dec 2024 14:46:39 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:38:40 GMT
content-type: font/woff2
age: 33078
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-NKRVP76

142.250.74.168

200 OK

111 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-NKRVP76
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (56012)
Size
111 kB (111055 bytes)
Hash
d27fa50ad65a4aa1387c6073fbab7bea
7370fa3fcb18c5aae67c9c7f616f64470dd6fc5e
402aaa9347b9d98b06ffbd5db67120ac540145ad6cf21965ce476eef600858f5

HTTP Headers

GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 23:57:57 GMT
expires: Fri, 08 Dec 2023 23:57:57 GMT
cache-control: private, max-age=900
last-modified: Fri, 08 Dec 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 111055
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-P95MDDF

142.250.74.168

200 OK

106 kB

URL GET HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-P95MDDF
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (58522)
Size
106 kB (106389 bytes)
Hash
33b2345b9fc0829d4c9793107153a535
3cdd0fad11854e16f241829d66a5611380e7723a
9ba883061491695580356a715c7dc3aef73afcb3dd6102a3c1aa245a7c32be12

HTTP Headers

GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 23:57:57 GMT
expires: Fri, 08 Dec 2023 23:57:57 GMT
cache-control: private, max-age=900
last-modified: Fri, 08 Dec 2023 21:09:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 106389
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/l8b56r42iw.json

151.101.130.132

200 OK

1.6 kB

URL GET HTTP/2
fast.wistia.com/embed/medias/l8b56r42iw.json
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
JSON data\012- , ASCII text, with very long lines (5610), with no line terminators
Size
1.6 kB (1623 bytes)
Hash
773b065a3a1f5266f9784852e5d9474b
ff1a3cfdb5a8dca43ae746fff59e94dc2e0e48ad
cc4ce64d39a3dcb9270fa59ef2fd98ed37ba3909629b136e2310fd1bffcaccb6

HTTP Headers

GET /embed/medias/l8b56r42iw.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"cc4ce64d39a3dcb9270fa59ef2fd98ed"
x-request-id: cf530fc1-8213-4143-b878-a653e22b7486
x-runtime: 0.059529
content-encoding: br
x-envoy-upstream-service-time: 61
via: 1.1 a400d6fe5b7510922aa07ad280f5014c.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: MIA3-C4
x-amz-cf-id: fjt3RQT4bFuUWDvQrwRr3JhF526iLIKqBlI4IbseXDpI9W6G1VHvFg==
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:57 GMT
age: 28475
x-served-by: cache-iad-kjyo7100108-IAD, cache-bma1655-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 237, 1
x-timer: S1702079877.378184,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1623
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/awn_doomsday_0623/awn_doomsday_bg_01.jpg

54.230.241.121

200 OK

62 kB

URL GET HTTP/2
d2z65klgtz99km.cloudfront.net/AWN/awn_doomsday_0623/awn_doomsday_bg_01.jpg
IP
54.230.241.121:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size
62 kB (61582 bytes)
Hash
1dc38080d6c9b9fd76a40a2c8c3f39fc
074548f7b26d805b2ce1a4806e8797285fee469d
4d48aae29e189eb89524b397fce6b1ae961719ea407b5409f612955baca8e69d

HTTP Headers

GET /AWN/awn_doomsday_0623/awn_doomsday_bg_01.jpg HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 61582
server: nginx
date: Thu, 06 Jul 2023 22:34:12 GMT
last-modified: Mon, 26 Jun 2023 15:02:24 GMT
cache-control: max-age=31536000
expires: Fri, 05 Jul 2024 22:34:12 GMT
etag: "6499a880-f08e"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DHTaRQOCyhe_kaoTvEKdn90FU0pxVIutvQq9c8nNMODCOmpyYAi6Mg==
age: 13397025
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-warning-icon.png

54.230.241.121

200 OK

1.7 kB

URL GET HTTP/2
d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-warning-icon.png
IP
54.230.241.121:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 73 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1716 bytes)
Hash
40a8475cba41b161c3b142acc36b79e5
0da3639ed848b44a4efd71189e742a94b29280d4
186053f58f065437b88bc7ab02d4d48d7f203c61d615f81aa457b5f755d5a061

HTTP Headers

GET /AWN/exit-pop/exitpop-warning-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1716
server: nginx
date: Wed, 04 Oct 2023 13:28:12 GMT
last-modified: Fri, 15 Sep 2023 16:23:26 GMT
cache-control: max-age=31536000
expires: Thu, 03 Oct 2024 13:28:12 GMT
etag: "650484fe-6b4"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6yU7Nsg2AIQy80FBWT7t7KI9xCjp-pTOwjCVMHWg3cKO8UlNvXQF6w==
age: 5653785
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-play-icon.png

54.230.241.121

200 OK

318 B

URL GET HTTP/2
d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-play-icon.png
IP
54.230.241.121:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 31 x 39, 8-bit/color RGBA, non-interlaced\012- data
Size
318 B (318 bytes)
Hash
120ca7c31817e6e137e2a807ddcddbe0
254f6b23b9b2d4c040decf505eac8b6a9296a1c6
dd5f84c4b871b07d787fe2709d47cdc18eee536bb2560c6f889256dd59c61b48

HTTP Headers

GET /AWN/exit-pop/exitpop-play-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 318
server: nginx
date: Mon, 18 Sep 2023 18:05:07 GMT
x-frame-options: sameorigin
x-accel-version: 0.01
last-modified: Fri, 15 Sep 2023 16:23:24 GMT
etag: "13e-6056836372650"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Tue, 17 Sep 2024 18:05:07 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: SAMEORIGIN
x-powered-by: PleskLin
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vmZwQ58Q6q-gWDg2nVTvwWbH_eg23OP83Yoqf8EokBfS07hFNIqrBA==
age: 7019570
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-transcript-icon.png

54.230.241.121

200 OK

1.5 kB

URL GET HTTP/2
d2z65klgtz99km.cloudfront.net/AWN/exit-pop/exitpop-transcript-icon.png
IP
54.230.241.121:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 50 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1484 bytes)
Hash
c94eaaf8ec2941b35a23421f193b8c2e
156681cbd7cf2836598e47d3eec86f7a9772bde8
5fea6317f0aeb6da5271e9a104032ab162521148ec32b93df3c77129fa39fe97

HTTP Headers

GET /AWN/exit-pop/exitpop-transcript-icon.png HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 1484
server: nginx
date: Mon, 18 Sep 2023 18:05:07 GMT
last-modified: Fri, 15 Sep 2023 16:23:23 GMT
cache-control: max-age=31536000
expires: Tue, 17 Sep 2024 18:05:07 GMT
etag: "650484fb-5cc"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nTXiFYuomPC8sXf733kiLArEeXoyiH6jG5vqB5zcV1YooPoXnX3iRg==
age: 7019570
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c

142.250.74.168

200 OK

93 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (5955)
Size
93 kB (92742 bytes)
Hash
9737f749fba552451e66bfc9b41108fc
56304cd9bcc560c56663cbbd2c244829b9eba9b8
2b21587ef471c25e18a2f6ca08c51f9876f24b6c5efc801ffd7beb4611ce5128

HTTP Headers

GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 23:57:57 GMT
expires: Fri, 08 Dec 2023 23:57:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fast.wistia.com/assets/external/googleAnalytics4.js

151.101.130.132

200 OK

4.2 kB

URL GET HTTP/2
fast.wistia.com/assets/external/googleAnalytics4.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
ASCII text, with very long lines (16541)
Size
4.2 kB (4152 bytes)
Hash
9bbbdbdad3d0da00881800f39ed6ad8b
03563b32521b2a04dc6e7ba8b5f1fe21181be7f0
f47b95dbf3f004a7305cfe6c6b107d76dac597a4c50a52e3f33240f76e4598d5

HTTP Headers

GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 07 Dec 2023 18:55:59 GMT
etag: "79bd690906b70d00bf740332ef800755"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:57 GMT
age: 227
x-served-by: cache-iad-kcgs7200086-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 56, 1
x-timer: S1702079878.587638,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
asset-version: cc9ded0077d16f0d56c3b38f358a76e310b0eefb
content-length: 4152
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.206

200 OK

6.3 kB

URL GET HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (18187), with no line terminators
Size
6.3 kB (6262 bytes)
Hash
5c6ed25dce803fd84288922b8928409e
3ccc10546ae12f160bacac1e9e422af091ea4a41
480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: HnS9hD0W/cnVugqc0rEMOceGMZGPUPRx2qleCh9xirElyPubtJc16qY+HOj0+wJnpyVXL1XXShGL+0PBDlQCGkws7zy+BAwSuU3Vj1L0k7M=
x-amz-request-id: 7W4JSKMTHHJJX74X
date: Fri, 08 Dec 2023 23:30:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1654
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.206

200 OK

6.3 kB

URL GET HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (18187), with no line terminators
Size
6.3 kB (6262 bytes)
Hash
5c6ed25dce803fd84288922b8928409e
3ccc10546ae12f160bacac1e9e422af091ea4a41
480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: HnS9hD0W/cnVugqc0rEMOceGMZGPUPRx2qleCh9xirElyPubtJc16qY+HOj0+wJnpyVXL1XXShGL+0PBDlQCGkws7zy+BAwSuU3Vj1L0k7M=
x-amz-request-id: 7W4JSKMTHHJJX74X
date: Fri, 08 Dec 2023 23:30:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1654
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.206

200 OK

6.3 kB

URL GET HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (18187), with no line terminators
Size
6.3 kB (6262 bytes)
Hash
5c6ed25dce803fd84288922b8928409e
3ccc10546ae12f160bacac1e9e422af091ea4a41
480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: HnS9hD0W/cnVugqc0rEMOceGMZGPUPRx2qleCh9xirElyPubtJc16qY+HOj0+wJnpyVXL1XXShGL+0PBDlQCGkws7zy+BAwSuU3Vj1L0k7M=
x-amz-request-id: 7W4JSKMTHHJJX74X
date: Fri, 08 Dec 2023 23:30:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1654
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

s.yimg.com/wi/ytc.js

188.125.94.206

200 OK

6.3 kB

URL GET HTTP/2
s.yimg.com/wi/ytc.js
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (18187), with no line terminators
Size
6.3 kB (6262 bytes)
Hash
5c6ed25dce803fd84288922b8928409e
3ccc10546ae12f160bacac1e9e422af091ea4a41
480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91

HTTP Headers

GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: HnS9hD0W/cnVugqc0rEMOceGMZGPUPRx2qleCh9xirElyPubtJc16qY+HOj0+wJnpyVXL1XXShGL+0PBDlQCGkws7zy+BAwSuU3Vj1L0k7M=
x-amz-request-id: 7W4JSKMTHHJJX74X
date: Fri, 08 Dec 2023 23:30:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 1654
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

paradigmpressgroup.com/favicons/apple-touch-icon.png

18.214.111.198

200 OK

3.0 kB

URL GET HTTP/2
paradigmpressgroup.com/favicons/apple-touch-icon.png
IP
18.214.111.198:443
ASN
#14618 AMAZON-AES

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerLet's Encrypt
Subjectparadigmpressgroup.com
FingerprintAE:B7:D7:11:15:BA:76:70:3D:73:D7:75:77:C9:E5:A6:E2:9B:6F:5F
ValidityFri, 10 Nov 2023 14:51:26 GMT - Thu, 08 Feb 2024 14:51:25 GMT

File type
PNG image data, 180 x 180, 8-bit grayscale, non-interlaced\012- data
Size
3.0 kB (3017 bytes)
Hash
dd470648114adaceb47d36a18ad41d9d
c93c69021ab4e381b4715938bed3732b132852b3
49dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4

HTTP Headers

GET /favicons/apple-touch-icon.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 23:57:57 GMT
content-type: image/png
content-length: 3017
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"bc9-1823c06a3cb"
x-powered-by: PleskLin
X-Firefox-Spdy: h2

paradigmpressgroup.com/favicons/favicon-16x16.png

18.214.111.198

200 OK

587 B

URL GET HTTP/2
paradigmpressgroup.com/favicons/favicon-16x16.png
IP
18.214.111.198:443
ASN
#14618 AMAZON-AES

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerLet's Encrypt
Subjectparadigmpressgroup.com
FingerprintAE:B7:D7:11:15:BA:76:70:3D:73:D7:75:77:C9:E5:A6:E2:9B:6F:5F
ValidityFri, 10 Nov 2023 14:51:26 GMT - Thu, 08 Feb 2024 14:51:25 GMT

File type
PNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced\012- data
Size
587 B (587 bytes)
Hash
2bb2efaa073e4987ba1867aff02ab3ac
ea05acee8f408e3f86830b5f2da0616ced013006
6b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6

HTTP Headers

GET /favicons/favicon-16x16.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 23:57:57 GMT
content-type: image/png
content-length: 587
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"24b-1823c06a3cc"
x-powered-by: PleskLin
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C

142.250.74.168

200 OK

84 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (7711)
Size
84 kB (84032 bytes)
Hash
20caf67f813ce2cb042f7bd315280454
a97758b20540c8dd28e0d3cfc270df853c52ee44
163b279a6182ee746b03abb52b997232be779b8f8133e8d58c12c7d33b4b0881

HTTP Headers

GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 23:57:58 GMT
expires: Fri, 08 Dec 2023 23:57:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84032
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c

142.250.74.168

200 OK

84 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type
ASCII text, with very long lines (7711)
Size
84 kB (84067 bytes)
Hash
0420e4af3b2157f327af7968f5f87fb6
656dcccfe70bba45cecf6e0e37689beb6339ddf4
d6eab95412101f35217a34a7da21f755bb6fb7b30beb2cb4d21158402d3e2b1b

HTTP Headers

GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 23:57:58 GMT
expires: Fri, 08 Dec 2023 23:57:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84067
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

s.yimg.com/wi/config/10082412.json

188.125.94.206

200 OK

22 B

URL GET HTTP/2
s.yimg.com/wi/config/10082412.json
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10082412.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: 7NQA3WH1WP3GD7TX
x-amz-id-2: zpUDDwd3kV7fErYdw5Z26UdIbkcJvUure3rqzDioN8G3pnvwBNa9BKdPpdRWA/Lnh1NuS5aICQw=
content-type: application/json
date: Fri, 08 Dec 2023 23:42:27 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 932
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1
X-Firefox-Spdy: h2

s.yimg.com/wi/config/10091245.json

188.125.94.206

200 OK

2 B

URL GET HTTP/2
s.yimg.com/wi/config/10091245.json
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10091245.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: XSM0GY3PHMPDPAA4
x-amz-id-2: xM/QGhCzI6+mjLN8B5dNDj+KDWi21jRsSvF/J1wfL/ibe2CLmLKlQE5VT7uyry4oG+YI0fT+ac25STr9qbE9J9IXRgGpdFe4
content-type: application/json
date: Fri, 08 Dec 2023 23:55:12 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 166
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

s.yimg.com/wi/config/10114794.json

188.125.94.206

200 OK

22 B

URL GET HTTP/2
s.yimg.com/wi/config/10114794.json
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10114794.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: 0VSJHKS5AHZMV75C
x-amz-id-2: LgdTGn17Tn7/FkkQBUQA0XShK803TQMf5uCqtEhx0WDn58p6ESelyDxgcHDYUbamld0TOrhYy66LsAGqvXRbGYqJETzOY0348Yh/5Rl5p+U=
content-type: application/json
date: Fri, 08 Dec 2023 23:42:27 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 932
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1
X-Firefox-Spdy: h2

s.yimg.com/wi/config/10125189.json

188.125.94.206

200 OK

2 B

URL GET HTTP/2
s.yimg.com/wi/config/10125189.json
IP
188.125.94.206:443
ASN
#10310 YAHOO-1

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerDigiCert Inc
Subject*.api.fantasysports.yahoo.com
Fingerprint73:32:A8:90:C9:6F:41:1C:ED:AA:2A:95:41:24:4E:E2:B2:AB:FB:D6
ValidityMon, 06 Nov 2023 00:00:00 GMT - Wed, 27 Dec 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /wi/config/10125189.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: CEBM3DRQTCWPYVDR
x-amz-id-2: CcSf6R2HUYmVjAwoufLJcpgw4wPu4LWRnkbORSQR9DFNK8J3b+ijEjHtE86WGmLqM6LKanoWtYiD2ScoKX+xF48etCbqCUWMnK8o7hHpSEw=
content-type: application/json
date: Fri, 08 Dec 2023 23:57:47 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 11
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

d2z65klgtz99km.cloudfront.net/AWN/awn_doomsday_0623/AWN_Doomsday_CTP_Biden_0723.gif

54.230.241.121

200 OK

2.9 MB

URL GET HTTP/2
d2z65klgtz99km.cloudfront.net/AWN/awn_doomsday_0623/AWN_Doomsday_CTP_Biden_0723.gif
IP
54.230.241.121:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
GIF image data, version 89a, 600 x 338\012- data
Size
2.9 MB (2862760 bytes)
Hash
560bb02b025c2be2be5e9dcdaa23b5a0
4be02d05ff68bfe008c6e3ad5f78e82df6ab5298
01459ccd649575e13bb099d789b906dede95e3569445e0877ad8ec57243f5449

HTTP Headers

GET /AWN/awn_doomsday_0623/AWN_Doomsday_CTP_Biden_0723.gif HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/gif
content-length: 2862760
server: nginx
date: Tue, 08 Aug 2023 13:59:48 GMT
last-modified: Mon, 10 Jul 2023 19:21:21 GMT
cache-control: max-age=31536000
expires: Wed, 07 Aug 2024 13:59:48 GMT
etag: "64ac5a31-2baea8"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XYqz-rg6WkEUEFlGiqEnrbvZ01tQ4cfTYZKw7rFZhAFu-37aNmSzTA==
age: 10576690
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=1976046568.1702079885&gtm=45je3bt0v9122066590z8811578897&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=48978226

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=1976046568.1702079885&gtm=45je3bt0v9122066590z8811578897&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=48978226
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
FingerprintDB:33:6A:DD:DA:72:55:0D:55:09:60:6E:D1:5B:40:D8:2B:9B:4F:3C
ValidityMon, 20 Nov 2023 08:12:16 GMT - Mon, 12 Feb 2024 08:12:15 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=1976046568.1702079885&gtm=45je3bt0v9122066590z8811578897&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=48978226 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 08 Dec 2023 23:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/playPauseLoadingControl.js

151.101.130.132

200 OK

21 kB

URL GET HTTP/2
fast.wistia.com/assets/external/playPauseLoadingControl.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
ASCII text, with very long lines (65455)
Size
21 kB (21129 bytes)
Hash
31f0b908fbd5fc16bf6737c637b83178
26f5effe6525ca16ceb9815cb26776a8ac36f81c
863614886d87b0fbc5b99b2c002a8e382ab9161cacc1290006ea02e428e09747

HTTP Headers

GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Thu, 07 Dec 2023 18:55:59 GMT
etag: "b09d2ef450c9011369afee5fc7a5a161"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:58 GMT
age: 70
x-served-by: cache-iad-kjyo7100036-IAD, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 68, 1
x-timer: S1702079878.381709,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
asset-version: cc9ded0077d16f0d56c3b38f358a76e310b0eefb
content-length: 21129
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/engines/hls_video.js

151.101.130.132

200 OK

118 kB

URL GET HTTP/2
fast.wistia.com/assets/external/engines/hls_video.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
118 kB (117668 bytes)
Hash
6e1e307293f078c95c07db8660ce607a
2a08bcf1166c9707485e568102f7c96e1f933b36
f0150171f993137d09210b10e0629ea4d57a465046ba791adb4bf4a2da978357

HTTP Headers

GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Thu, 07 Dec 2023 18:55:59 GMT
etag: "5258bd9b9f222d0dd6df0056cd2b7524"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:58 GMT
age: 149
x-served-by: cache-iad-kcgs7200099-IAD, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 64, 2
x-timer: S1702079878.419958,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
asset-version: cc9ded0077d16f0d56c3b38f358a76e310b0eefb
content-length: 117668
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.100

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.100:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 985
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Fri, 08 Dec 2023 23:57:58 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hyMdQZyeZILFRBiFgL8Zr9NgDxN-gHt8VtAA3M4Ygy4ARpMx-oVyfA==
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z8811578897&_p=1702079883695&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=1&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5449

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z8811578897&_p=1702079883695&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=1&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5449
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z8811578897&_p=1702079883695&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=1&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=5449 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Fri, 08 Dec 2023 23:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z8811578897&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=2&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Click%20Report&tfd=5501

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z8811578897&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=2&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Click%20Report&tfd=5501
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z8811578897&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=2&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Click%20Report&tfd=5501 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Fri, 08 Dec 2023 23:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=4&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=awn_aware&_c=1&tfd=5514

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=4&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=awn_aware&_c=1&tfd=5514
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=4&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=awn_aware&_c=1&tfd=5514 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Fri, 08 Dec 2023 23:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=3&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Click%20Report&tfd=5513

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=3&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Click%20Report&tfd=5513
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=3&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Click%20Report&tfd=5513 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Fri, 08 Dec 2023 23:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.wistia.com/embed/medias/l8b56r42iw.m3u8

151.101.130.132

200 OK

756 B

URL GET HTTP/2
fast.wistia.com/embed/medias/l8b56r42iw.m3u8
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
M3U playlist, ASCII text
Size
756 B (756 bytes)
Hash
855a5072b43167e75b439eaf80090d5a
2f93ab605ff00ff2b3161dbb16295932fcd16b23
9cb54dd019d7a5121a8d5f95b19c6d8b22815837c07d886b73e06f9416963c51

HTTP Headers

GET /embed/medias/l8b56r42iw.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"9cb54dd019d7a5121a8d5f95b19c6d8b"
x-request-id: fea49509-4b45-4935-b70b-aeb4c83e922a
x-runtime: 0.040604
x-envoy-upstream-service-time: 42
via: 1.1 eca8616127916fa339e7718294322b64.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: MIA3-C4
x-amz-cf-id: 54GpcZTqUW2-Qs1fezisL8kAI6bfhKqyRF8j9y7xMJKzRU38n7tBbg==
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:58 GMT
age: 18129
x-served-by: cache-iad-kiad7000115-IAD, cache-bma1655-BMA
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 60424, 1
x-timer: S1702079879.749344,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 756
X-Firefox-Spdy: h2

fast.wistia.com/assets/images/blank.gif

151.101.130.132

200 OK

1.2 kB

URL GET HTTP/2
fast.wistia.com/assets/images/blank.gif
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
GIF image data, version 89a, 100 x 100\012- data
Size
1.2 kB (1214 bytes)
Hash
fbdc4ed9a1e2ee4917a265306927bcf1
6d177725d8230df0457e72004080f712e26fe624
a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2

HTTP Headers

GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:58 GMT
age: 1673
x-served-by: cache-iad-kcgs7200077-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 37, 22
x-timer: S1702079879.758619,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1214
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/62a2fe5db25a4f5508756a1951f4e7a31d582d31.m3u8

143.204.55.103

200 OK

114 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/62a2fe5db25a4f5508756a1951f4e7a31d582d31.m3u8
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
114 kB (114144 bytes)
Hash
1f38f911f3d678235701cb7d645bf6d3
a58ce2b7d307b59a4851708a47d509701a9df991
ef4497a20cc32499db9d54b39a0510492c200c4f200986bddc1fc4696405d858

HTTP Headers

GET /deliveries/62a2fe5db25a4f5508756a1951f4e7a31d582d31.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 114144
server: envoy
date: Sun, 26 Nov 2023 21:27:15 GMT
expires: Mon, 25 Nov 2024 21:27:15 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 62a2fe5db25a4f5508756a1951f4e7a31d582d31-hls-segment
surrogate-key: 62a2fe5db25a4f5508756a1951f4e7a31d582d31-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 156
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I0Ang5J4HMtPXDcvyUh8Y8RSPN9W3KekrKvmo5LaV_IlWFZJddAz7A==
age: 1045842
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:wght@400;700&family=Oswald:wght@700&family=Montserrat:wght@400;700&display=swap

142.250.74.106

200 OK

1.1 MB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:wght@400;700&family=Oswald:wght@700&family=Montserrat:wght@400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
gzip compressed data, max compression\012- data
Size
1.1 MB (1060084 bytes)
Hash
96ba360a22228e8973cc48c9d643749b
a5df8b530137d9b5f859ed82662e2a6d93925343
24960e5ce1c2cbc9ef86265e9587d73c13d6f154beef944241e00734376ec638

HTTP Headers

GET /css2?family=Open+Sans:wght@400;700&family=Oswald:wght@700&family=Montserrat:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 23:57:56 GMT
date: Fri, 08 Dec 2023 23:57:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

distillery.wistia.com/x

54.230.111.90

204 No Content

0 B

URL POST HTTP/2
distillery.wistia.com/x
IP
54.230.111.90:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subjectstats-tap-production-cloudfront-app-cname.wistia.com
Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1722
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Fri, 08 Dec 2023 23:57:58 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F_973m3jE0B94TXd5tu0Er1z8ryefOosYanr69l_EWnVNjcSrmDRKQ==
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/ecf7598c8e1c45d25227655679d0a1f8ef866806.m3u8

143.204.55.103

200 OK

114 kB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/ecf7598c8e1c45d25227655679d0a1f8ef866806.m3u8
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
114 kB (114144 bytes)
Hash
f607989608a1f1b85f5bb5e5f0b24add
2a8e2cf2015bab4f579c32ffe0319ff588200eba
bc37bce7dd25a4a4a5e3a2f0e4d55e96f5ccff5e8c9a71a1f139e8f43ede86ad

HTTP Headers

GET /deliveries/ecf7598c8e1c45d25227655679d0a1f8ef866806.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 114144
server: envoy
date: Mon, 13 Nov 2023 15:58:13 GMT
expires: Tue, 12 Nov 2024 15:58:13 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: ecf7598c8e1c45d25227655679d0a1f8ef866806-hls-segment
surrogate-key: ecf7598c8e1c45d25227655679d0a1f8ef866806-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 104
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9dKtKHjzFn5Es4qeydqIFZi3fiDoWstYrJo6qGftxbc-qpY2_2sUiw==
age: 2188786
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

fast.wistia.com/assets/external/allIntegrations.js

151.101.130.132

200 OK

5.8 kB

URL GET HTTP/2
fast.wistia.com/assets/external/allIntegrations.js
IP
151.101.130.132:443
ASN
#54113 FASTLY

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGlobalSign nv-sa
Subjectfast.wistia.com
FingerprintA8:1E:D4:A3:D2:23:56:16:88:A6:18:10:44:86:85:87:5E:F3:78:46
ValiditySun, 02 Jul 2023 00:48:58 GMT - Fri, 02 Aug 2024 00:48:57 GMT

File type
ASCII text, with very long lines (23371)
Size
5.8 kB (5774 bytes)
Hash
9a9248fb8178a9640de37511b065850f
086459b7f718251f753b82cee05f51c6ca2d3a84
fb7f597f64e9b0c17f7f99fb577f164c36f93f13ffda2ccb736b786e4e705d12

HTTP Headers

GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Thu, 07 Dec 2023 18:55:59 GMT
etag: "2de48c3cd29dd8ca8c43042875b49727"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Fri, 08 Dec 2023 23:57:59 GMT
age: 69
x-served-by: cache-iad-kcgs7200101-IAD, cache-bma1655-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 1
x-timer: S1702079879.381736,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
asset-version: cc9ded0077d16f0d56c3b38f358a76e310b0eefb
content-length: 5774
X-Firefox-Spdy: h2

pipedream.wistia.com/mput?topic=metrics

143.204.55.100

200 OK

2 B

URL POST HTTP/2
pipedream.wistia.com/mput?topic=metrics
IP
143.204.55.100:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subjectpipedream-production-cloudfront-app-cname.wistia.com
Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF
ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1532
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Fri, 08 Dec 2023 23:57:59 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l5-_V4gAO7DU3fC9AVVSfAz6Tm_Z-pZBCjisGOZndICZfX1bs_WejA==
X-Firefox-Spdy: h2

api.getblueshift.com/unity.gif?t=1702079886&e=pageload&r=&z=545123&x=59976d352f424c4b27d325518576b9b2&k=86420a89-733d-325e-dda8-3dce2e615259&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue

44.232.199.155

200 OK

42 B

URL GET HTTP/2
api.getblueshift.com/unity.gif?t=1702079886&e=pageload&r=&z=545123&x=59976d352f424c4b27d325518576b9b2&k=86420a89-733d-325e-dda8-3dce2e615259&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue
IP
44.232.199.155:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.getblueshift.com
Fingerprint53:0D:6B:AE:94:24:EE:BE:0F:BD:6E:C6:61:2F:FD:37:71:D2:21:0F
ValidityThu, 09 Mar 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /unity.gif?t=1702079886&e=pageload&r=&z=545123&x=59976d352f424c4b27d325518576b9b2&k=86420a89-733d-325e-dda8-3dce2e615259&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 08 Dec 2023 23:58:00 GMT
content-type: image/gif
content-length: 42
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: etag
access-control-allow-origin: https://pro.paradigmnewsletters.org
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&_s=5&tfd=11098

216.239.34.36

204 No Content

0 B

URL POST HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&_s=5&tfd=11098
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&_s=5&tfd=11098 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Fri, 08 Dec 2023 23:58:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=6&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Engagement&tfd=15194

216.239.34.36

0 B

URL
region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=6&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Engagement&tfd=15194
IP
216.239.34.36:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A
ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BYN6DTYEFQ&gtm=45je3bt0v9122066590z878323495&_p=1702079883695&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1976046568.1702079885&ul=en-us&sr=1280x1024&_s=6&sid=1702079884&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Fawn_doomsday_0623%2FLAWNZ984%2F%3Fcake_s1%3D12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec%26h%3Dtrue&dt=Saudi%20Arabia%20Planning%20A%20New%20Attack%20On%20America&en=Engagement&tfd=15194 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Fri, 08 Dec 2023 23:58:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

470kwc1.com/clk.trk?CID=465853&AFID=430135&SID=3415134540338098538

18.190.20.10

302 Found

26 kB

URL User Request GET HTTP/2
470kwc1.com/clk.trk?CID=465853&AFID=430135&SID=3415134540338098538
IP
18.190.20.10:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject470kwc1.com
FingerprintC8:F6:48:19:9F:92:B8:B3:78:6A:46:25:3A:C3:80:8E:21:07:B3:C6
ValidityMon, 17 Apr 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT

File type

Size
26 kB (26242 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /clk.trk?CID=465853&AFID=430135&SID=3415134540338098538 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 08 Dec 2023 23:57:54 GMT
content-type: text/html; charset=utf-8
content-length: 216
location: https://pro.paradigm-press.info/m/2246202?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec
cache-control: private
server: Microsoft-IIS/10.0
p3p: policyref="/p3p/P3P.470kwc1.com.xml", CP="NOI DSP COR NID ADM DEV OUR STP OTC"
x-aspnet-version: 4.0.30319
set-cookie: LTTC6_465853=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec; expires=Fri, 15-Dec-2023 23:57:54 GMT; path=/; secure; SameSite=None
x-powered-by: ASP.NET
access-control-allow-origin: *
X-Firefox-Spdy: h2

embed-cloudfront.wistia.com/deliveries/62a2fe5db25a4f5508756a1951f4e7a31d582d31.m3u8/seg-1-v1-a1.ts

143.204.55.103

200 OK

1.1 MB

URL GET HTTP/2
embed-cloudfront.wistia.com/deliveries/62a2fe5db25a4f5508756a1951f4e7a31d582d31.m3u8/seg-1-v1-a1.ts
IP
143.204.55.103:443
ASN
#16509 AMAZON-02

Requested by
https://pro.paradigmnewsletters.org/p/awn_doomsday_0623/LAWNZ984/?cake_s1=12_145418766_55d376f3-ec49-451f-9b80-8eac093df0ec&h=true
Certificate
IssuerAmazon
Subject*.wistia.com
FingerprintD8:FE:AD:15:AC:4F:2E:60:82:4B:4E:8A:6C:51:6D:3D:60:A2:67:03
ValidityTue, 31 Jan 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT

File type
MPEG transport stream data\012- data
Size
1.1 MB (1059192 bytes)
Hash
3dd9c23b72ab0cc609bf55d41e0d39b1
b9b0611df4dadf45f12cb575b7a43f98512c31dc
b3de2e70ebdf2d42ff3e7befcf445820b48484795c2e8eb09dc659baca9cd29b

HTTP Headers

GET /deliveries/62a2fe5db25a4f5508756a1951f4e7a31d582d31.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: video/MP2T
content-length: 1059192
server: envoy
date: Sat, 02 Dec 2023 06:33:25 GMT
expires: Sun, 01 Dec 2024 06:33:25 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 62a2fe5db25a4f5508756a1951f4e7a31d582d31-hls-segment
surrogate-key: 62a2fe5db25a4f5508756a1951f4e7a31d582d31-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 304
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hyguwmB4vKYkAa1LVtiM3jMkN_AP9l1gVYUuk8A734xX690qiJLU_w==
age: 581072
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2

verifiedwebpage.com/go?ehash=a2b365ee3f54ea9c08c746889506f31a&product=32827&ar=48&cid=1990834045&lid=139350&slhash=6957ba18feb5c33b553f6ad514ca900e&mtaid=63293&cid2=[s8]

188.114.96.1

302 Found

26 kB

URL User Request GET HTTP/2
verifiedwebpage.com/go?ehash=a2b365ee3f54ea9c08c746889506f31a&product=32827&ar=48&cid=1990834045&lid=139350&slhash=6957ba18feb5c33b553f6ad514ca900e&mtaid=63293&cid2=[s8]
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectverifiedwebpage.com
Fingerprint0D:F8:EF:F4:23:CD:FB:7E:DE:C7:29:3C:B4:F7:A4:CE:6A:FB:89:AB
ValiditySat, 14 Oct 2023 13:52:56 GMT - Fri, 12 Jan 2024 13:52:55 GMT

File type

Size
26 kB (26242 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go?ehash=a2b365ee3f54ea9c08c746889506f31a&product=32827&ar=48&cid=1990834045&lid=139350&slhash=6957ba18feb5c33b553f6ad514ca900e&mtaid=63293&cid2=[s8] HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 08 Dec 2023 23:57:54 GMT
content-type: text/html; charset=UTF-8
location: http://470kwc1.com/clk.trk?CID=465853&AFID=430135&SID=3415134540338098538
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=5c5e5f5a463fd45d49803b527093a640; path=/
pixel_session_hash_32827=3415134540338098538; expires=Sun, 07-Jan-2024 23:57:53 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_32827=e3a83fd9b94078eb5c83ec6df58b66d1f6b858b2727ab270396f517b22974f44; expires=Sun, 10-Dec-2023 23:57:53 GMT; Max-Age=172800
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L76ffKhWRpvUeQXAumeF%2BsWoGPg7F3yWy%2FrQ6h96Dnux3q4jqhVNICBcxKy75pdAb792kRz6LVx%2FX3SNPRf3Kyb%2Bi4J2Ckh%2FC3Be8lOioqShtCp4G2Dc8NMxW8GYiQZoJw9cxuKF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8328f4083f3bb50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP