| 470kwc1.com/clk.trk?CID=467166&AFID=430135&SID=3415441913363326770 | 3.17.114.146 | 301 Moved Permanently | 134 B |
URL User Request GET HTTP/1.1470kwc1.com/clk.trk?CID=467166&AFID=430135&SID=3415441913363326770 IP3.17.114.146:80
File typeHTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /clk.trk?CID=467166&AFID=430135&SID=3415441913363326770 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Wed, 17 Apr 2024 11:51:58 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://470kwc1.com:443/clk.trk?CID=467166&AFID=430135&SID=3415441913363326770
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash254de9a6de43deb80e9eb6519aefba1b 24ae634c7f27ddbef31706cc29ee1121548b7b9a 6bcd898aae59dbd91c13b4faaf70e9bcdefd8536dd6f19c0978a1f9bd9e6b228
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 11:51:58 GMT
Server: ECAcc (amb/6AD2)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4iywQ5bZLP6_hUtyOaGWvst4Csbl2mBBSRoSkDwhLixTeD0SHS3X1Q==
|
|
| 470kwc1.com/clk.trk?CID=467166&AFID=430135&SID=3415441913363326770 | 18.217.134.101 | 301 Moved Permanently | 216 B |
URL User Request GET HTTP/1.1470kwc1.com/clk.trk?CID=467166&AFID=430135&SID=3415441913363326770 IP18.217.134.101:80
File typeHTML document, ASCII text, with CRLF line terminators Hash2798db6b07504c31e35600ff000c3e13 1d75c7edb23a53bcfee941bff7e8eb1d10e83ff5 45034c3cee20337b155b05996b7f767e379cd566cc96dcfafee9c578017c5d90
GET /clk.trk?CID=467166&AFID=430135&SID=3415441913363326770 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 17 Apr 2024 11:51:59 GMT
content-type: text/html; charset=utf-8
content-length: 216
location: https://pro.paradigm-press.info/m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7
cache-control: private
server: Microsoft-IIS/10.0
p3p: policyref="/p3p/P3P.470kwc1.com.xml", CP="NOI DSP COR NID ADM DEV OUR STP OTC"
x-aspnet-version: 4.0.30319
set-cookie: LTTC6_467166=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7; expires=Wed, 24-Apr-2024 11:51:59 GMT; path=/; secure; SameSite=None
x-powered-by: ASP.NET
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| go.goodlifestylenews.com/ | 104.21.30.61 | | 143 B |
URL go.goodlifestylenews.com/ IP104.21.30.61:0
File typeHTML document, ASCII text Hashf1fb042c62910c34be16ad91cbbd71fa 5bc7aceba9a8704ef4b1d427d7d08b140afcd866 9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 11:51:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Nov 2023 15:41:05 GMT
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Vary: Accept-Encoding,User-Agent
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XvpNW8I4OuEtVTJ1KEgSA21q5Lh6E0NlTwMr17sLF4NBFKIg%2FV01NR7i%2BrtvSgZzQc4NcMUht9%2Fpk%2FPmnWLM%2BY4rbReXrBz6qZ4Ljgt6HjCUjxzSbDmdIZPfK620brUC3rRbhGFWbEkUPUE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 875c34d1de6910b9-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| pro.paradigm-press.info/m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7 | 192.135.136.169 | | 216 B |
URL pro.paradigm-press.info/m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7 IP192.135.136.169:0
File typeHTML document, ASCII text, with CRLF line terminators Hash2798db6b07504c31e35600ff000c3e13 1d75c7edb23a53bcfee941bff7e8eb1d10e83ff5 45034c3cee20337b155b05996b7f767e379cd566cc96dcfafee9c578017c5d90
GET /m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7 HTTP/1.1
Host: pro.paradigm-press.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigm-press.info/m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7
Date: Wed, 17 Apr 2024 11:51:59 GMT
Content-Length: 216
Set-Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!uTd0cGp0WGILyN80QCUGrw3uOK3bWe93fkgzBoK/pd04a0hSzNfTKp0zLgvexEj4oi2NEl9TJfcduKU=; path=/; Httponly
|
|
| pro.paradigm-press.info/m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7 | 192.135.136.169 | | 259 B |
URL pro.paradigm-press.info/m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7 IP192.135.136.169:0
File typeHTML document, ASCII text, with CRLF line terminators Hashdc6203fab61a255651a9d5df48775683 a0714f03048df8801862e72555291aa6a41e92ba 27371407dc02df874a7e91c8159b1f2481c729ec19383ca943b9be2475d9bdce
GET /m/2291004?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7 HTTP/1.1
Host: pro.paradigm-press.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: BIGipServerIRIS_PROD_HTTP_POOL=!uTd0cGp0WGILyN80QCUGrw3uOK3bWe93fkgzBoK/pd04a0hSzNfTKp0zLgvexEj4oi2NEl9TJfcduKU=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true
Date: Wed, 17 Apr 2024 11:52:00 GMT
Content-Length: 259
Set-Cookie: 2291004=2713780; expires=Tue, 07-May-2024 11:52:00 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!Fq83Bc8aH/6bo740QCUGrw3uOK3bWQpuwK2CkcdCa1/LFuPZv6Q3HViMlDeKFvx1lfQFS93QvBqiPKQ=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| verifiedwebpage.com/go?ehash=aceb5dbcded8cc74da2d3cd98a887b2b&product=41498&ar=55&cid=2556&lid=1610&slhash=4a48abbbbdb563b8a36b49ae547f4622&mtaid=mpmta&cid2=[s8] | 104.18.21.187 | | 503 B |
URL verifiedwebpage.com/go?ehash=aceb5dbcded8cc74da2d3cd98a887b2b&product=41498&ar=55&cid=2556&lid=1610&slhash=4a48abbbbdb563b8a36b49ae547f4622&mtaid=mpmta&cid2=[s8] IP104.18.21.187:0
Hash4a81cd7e6f0dcba190e4314ccba4ff0d 398e7470ebce3e8a90c0760a5d8befcd30714aad 65165a7b92e1ef988596f76fd4ffa75922f9921e3e839485e3c12556941ad8b4
GET /go?ehash=aceb5dbcded8cc74da2d3cd98a887b2b&product=41498&ar=55&cid=2556&lid=1610&slhash=4a48abbbbdb563b8a36b49ae547f4622&mtaid=mpmta&cid2=[s8] HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 17 Apr 2024 11:51:57 GMT
content-type: text/html; charset=UTF-8
location: http://470kwc1.com/clk.trk?CID=467166&AFID=430135&SID=3415441913363326770
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=a44cd5939c0dbcd38ad838473fe4e19e; path=/
pixel_session_hash_41498=3415441913363326770; expires=Fri, 17-May-2024 11:51:57 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_41498=8b406892a645f40d92320bfce2fdcab4114243c7f6c109f5b0cd0d364a5c2067; expires=Fri, 19-Apr-2024 11:51:57 GMT; Max-Age=172800
__cf_bm=FALtcMNca_TEyttJFwB2oB1cy6fLsC.jcoiehtDzAYc-1713354717-1.0.1.1-c.qCQLYVhaoQwYLrMaxzeJxaQZhDGV24zONS7TkvNX26jalj5KlEOVhf2eCjOIdxTjB0YxCKZRRmQsUV.6KexA; path=/; expires=Wed, 17-Apr-24 12:21:57 GMT; domain=.verifiedwebpage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 875c34c44f0992da-CPH
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true | 161.129.26.18 | 200 OK | 8.8 kB |
URL User Request GET HTTP/1.1pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true IP161.129.26.18:443
CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintD0:23:A8:B2:78:50:C6:21:FE:9D:C7:7F:E1:47:6F:02:D9:A8:1C:44 ValidityTue, 30 Jan 2024 12:33:08 GMT - Mon, 29 Apr 2024 12:33:07 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1672), with CRLF, LF line terminators Hash21417cff56549b437c8e2290d8ec8c43 a327027e2d17b664930e93eade630c74e9aee6ed d9cd65beb785f4e16be47c23c0b2f203f8f4e6f5dfb23811e0ac7d80fa8a01f6
GET /p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 17 Apr 2024 11:52:00 GMT
Content-Length: 8753
Set-Cookie: LALN4216=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!sQY3QNbqzahal1w0QCUGrw3uOK3bWfLCA5E2QYYdT0RwGQ6Fx/3D5zvnknkwH0HIkggVfl6RTRhjHiQ=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| pro.paradigmnewsletters.org/p/Scripts/Common.js | 161.129.26.18 | 200 OK | 1.1 kB |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/Common.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintD0:23:A8:B2:78:50:C6:21:FE:9D:C7:7F:E1:47:6F:02:D9:A8:1C:44 ValidityTue, 30 Jan 2024 12:33:08 GMT - Mon, 29 Apr 2024 12:33:07 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash2fa1e7a35bfa376eff7f1426fc4a8afa 008b48dbd95a158542969743c18d0bc33e0a9384 857d94bd23b6437baa66255e1d507ad4a23d75ef9a271fb3e1303dc7dd0aced9
GET /p/Scripts/Common.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true
DNT: 1
Connection: keep-alive
Cookie: LALN4216=; BIGipServerIRIS_PROD_HTTPS_POOL=!sQY3QNbqzahal1w0QCUGrw3uOK3bWfLCA5E2QYYdT0RwGQ6Fx/3D5zvnknkwH0HIkggVfl6RTRhjHiQ=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "a37f814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 17 Apr 2024 11:52:00 GMT
Content-Length: 1140
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.66.132 | 200 OK | 137 kB |
URL GET HTTP/2fast.wistia.com/assets/external/E-v1.js IP151.101.66.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65474) Size137 kB (136623 bytes) Hash26cb32ffe01f5beb4843d64521dd483e a9c4dbebc3e1f19dad5f86a9c280184cbcaa2c0e d9346ad79316e5e6cd963ec2c3a90cb31ab73eb44e817131871c10959175a0f0
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Tue, 16 Apr 2024 15:26:39 GMT
etag: "9c4577923cced55a7d39723bb79bf33a"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:00 GMT
age: 1428
x-served-by: cache-iad-kjyo7100044-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 26, 381
x-timer: S1713354721.904349,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: fa99d54708370281794f72e3586ef5977a90a618
content-length: 136623
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js | 142.250.147.95 | | 34 kB |
URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP142.250.147.95:0
File typeJavaScript source, ASCII text, with very long lines (32077) Hash4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 00:42:49 GMT
expires: Sun, 13 Apr 2025 00:42:49 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 385751
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/HideContent.js | 161.129.26.18 | | 466 B |
URL pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP161.129.26.18:0
CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintD0:23:A8:B2:78:50:C6:21:FE:9D:C7:7F:E1:47:6F:02:D9:A8:1C:44 ValidityTue, 30 Jan 2024 12:33:08 GMT - Mon, 29 Apr 2024 12:33:07 GMT
File typeJavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashcc54a637e514fddfe0be2e7c2d062e5b a0f97813508d22d71f015b93cc8dfdcee65acdfd 580942b09dd77a53c0501f35a1d6c61cbcff1d504a6efb0dfa5d77cbdb1af741
GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true
DNT: 1
Connection: keep-alive
Cookie: LALN4216=; BIGipServerIRIS_PROD_HTTPS_POOL=!sQY3QNbqzahal1w0QCUGrw3uOK3bWfLCA5E2QYYdT0RwGQ6Fx/3D5zvnknkwH0HIkggVfl6RTRhjHiQ=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Wed, 17 Apr 2024 11:52:00 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| cdn.getblueshift.com/blueshift.js | 54.230.111.92 | | 2.8 kB |
URL cdn.getblueshift.com/blueshift.js IP54.230.111.92:0
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashe70a08bd9e7ef156c1673f55ed87aa85 9dfa4cf582654332eb4e1ada9843594ca64bb0d2 a97c4e09767a155128f03c8a72efccc7d8e38e2e8e78daf14c8e5beaf72ff1a5
GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2826
Connection: keep-alive
Last-Modified: Wed, 24 Jan 2024 03:44:50 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 17 Apr 2024 10:54:18 GMT
Cache-Control: max-age=3600
ETag: "bd39fba69cd2745738daf44e0e350f6e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lLMNKzuIcdtUTUq9NKkCt0kXeHOMVSShg3HfZTz72XSpGxne2EwuQQ==
Age: 3464
|
|
| fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 | 142.250.74.163 | | 13 kB |
URL fonts.gstatic.com/s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12648, version 1.0 Hash5e79fc3b5fbdec47c02942523ae2bdbd fdb96db25dc07b7c0573bf5a66966d12dfbb41bd 6ecd2a103a7260474c3239da5f32a2f7cb999765d9ab12161f3e4abe3906316f
GET /s/oswald/v53/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12648
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 19:13:16 GMT
expires: Wed, 16 Apr 2025 19:13:16 GMT
cache-control: public, max-age=31536000
age: 59925
last-modified: Tue, 15 Aug 2023 18:38:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/2v6e2uyj8y.json | 151.101.66.132 | | 1.6 kB |
URL fast.wistia.com/embed/medias/2v6e2uyj8y.json IP151.101.66.132:0
CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hash62aef393e69267eaf31a1ce9434a5c58 841b75b4c7df683edd1e5b6a622f39b3ac7902a9 5cfd35707e74c19f8136f6667dae90e7f102275dbcde8e575422d6dbcaa80282
GET /embed/medias/2v6e2uyj8y.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"5cfd35707e74c19f8136f6667dae90e7"
x-request-id: 86ec0891-bb68-4fd9-96a0-060e67070330
x-runtime: 0.047019
content-encoding: br
x-envoy-upstream-service-time: 48
via: 1.1 030b88b6d8d9c6faf056723bb5f16078.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: BknxJVetcDxCXHJ2YuIMene3dKHUl6ExpuirltoqvO_cK8sp3CTtsw==
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:01 GMT
age: 4133
x-served-by: cache-iad-kiad7000076-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 137, 1
x-timer: S1713354721.364298,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1607
X-Firefox-Spdy: h2
|
|
| d2z65klgtz99km.cloudfront.net/css/base-styles.css | 54.230.241.180 | | 51 kB |
URL d2z65klgtz99km.cloudfront.net/css/base-styles.css IP54.230.241.180:0
File typegzip compressed data, from Unix Hashbc87323f55a174716aaff5cd50279ff3 b5cee5f11e1b4df70aec9a5866fe914e705d44ec ca4eb1a80c170faaea884ec9f7d248ada0c7a3e931aed0388c685ef1fd3515fb
GET /css/base-styles.css HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 29 Mar 2024 13:32:42 GMT
last-modified: Fri, 28 Jul 2023 14:10:52 GMT
cache-control: max-age=2592000
expires: Sun, 28 Apr 2024 13:32:42 GMT
etag: W/"64c3cc6c-d56"
x-powered-by: PleskLin
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ESA7qDpy6ZPmM79ieL4GgEAMTtX-2EQOUXVfUWyr0pwt23K3G5DscQ==
age: 1635558
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:32 GMT
expires: Wed, 16 Apr 2025 08:04:32 GMT
cache-control: public, max-age=31536000
age: 100049
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:32 GMT
expires: Wed, 16 Apr 2025 08:04:32 GMT
cache-control: public, max-age=31536000
age: 100049
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 | 142.250.74.168 | | 117 kB |
URL www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (56012) Size117 kB (116620 bytes) Hasha9b36b19e3ce3d105d44700eb27eadcc 1c29956a9ad94714723c5751d2fb748042093c97 b10eb61e94db6469abee431dc5e6f2ad388b4d30511fdf2d0b0a9878f0fd77d5
GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 11:52:01 GMT
expires: Wed, 17 Apr 2024 11:52:01 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 116620
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-P95MDDF | 142.250.74.168 | | 119 kB |
URL www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (58328) Size119 kB (118609 bytes) Hash57d46dc1d98250dbec500128d005e726 101349f7c5a0cab6dc6e045de779e31459b50dfd 04e4d8ce2c4f9bb28858950d40d5466751218fc56e9f48cca388f3601f9d6bd2
GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 11:52:01 GMT
expires: Wed, 17 Apr 2024 11:52:01 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 118609
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c | 142.250.74.168 | | 99 kB |
URL www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (5955) Hash892270730529743d3a09c249e83bf588 76224ec23d3e63535f93839eb08bf4d019abdcca d97ad0eadcbabcd474c188f8087abf58f5c4640e08316b99b2c7376ea4529685
GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 11:52:01 GMT
expires: Wed, 17 Apr 2024 11:52:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 99298
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.251 | 200 OK | 6.3 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: aZrtSFDaJAb4h0jVtfazhwh0boUlHRuV58/GoIfG6HixB0561qPPVyXCS+R15w7Sa2taDzF+CKQ=
x-amz-request-id: 29AP4X79KRANSQ9F
date: Wed, 17 Apr 2024 11:42:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 578
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.251 | 200 OK | 6.3 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: aZrtSFDaJAb4h0jVtfazhwh0boUlHRuV58/GoIfG6HixB0561qPPVyXCS+R15w7Sa2taDzF+CKQ=
x-amz-request-id: 29AP4X79KRANSQ9F
date: Wed, 17 Apr 2024 11:42:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 578
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.251 | 200 OK | 6.3 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: aZrtSFDaJAb4h0jVtfazhwh0boUlHRuV58/GoIfG6HixB0561qPPVyXCS+R15w7Sa2taDzF+CKQ=
x-amz-request-id: 29AP4X79KRANSQ9F
date: Wed, 17 Apr 2024 11:42:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 578
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.251 | 200 OK | 6.3 kB |
IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: aZrtSFDaJAb4h0jVtfazhwh0boUlHRuV58/GoIfG6HixB0561qPPVyXCS+R15w7Sa2taDzF+CKQ=
x-amz-request-id: 29AP4X79KRANSQ9F
date: Wed, 17 Apr 2024 11:42:24 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 578
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10082412.json | 87.248.119.251 | | 2 B |
URL s.yimg.com/wi/config/10082412.json IP87.248.119.251:0 ASN#203220 Yahoo-UK Limited
CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10082412.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 76CRRGEAT5NCAE0T
x-amz-id-2: fGgLLhTmhpkDjwS+DiO2XlPdoXzWWHnviMcg4m8w++OjKxrOvYyJ2ork1XE16JP+OQD0Th6r/F8=
content-type: application/json
date: Wed, 17 Apr 2024 11:31:03 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 1259
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10091245.json | 87.248.119.251 | 200 OK | 22 B |
URL GET HTTP/2s.yimg.com/wi/config/10091245.json IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10091245.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: YHF0J7HBNT4WVPQQ
x-amz-id-2: p9fMimH2DdKBisTkddVy6yxpLJV9F8aC1GZSbOwV0pZRzdBjvHWtgzyl04MQ1W9AiXfSa5jbexw=
content-type: application/json
date: Wed, 17 Apr 2024 11:33:45 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 1097
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10114794.json | 87.248.119.251 | | 2 B |
URL s.yimg.com/wi/config/10114794.json IP87.248.119.251:0 ASN#203220 Yahoo-UK Limited
CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10114794.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: ZCQ96A2WG551QVWX
x-amz-id-2: ivliB6r0H5PIHcCRe2y0AXFDllJDSiRk93IvHMWtQg2KO2LkOfpxD3d2zMwCCIXbvOMrKDWAMfM=
content-type: application/json
date: Wed, 17 Apr 2024 11:00:29 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 3093
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10125189.json | 87.248.119.251 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10125189.json IP87.248.119.251:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10125189.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: R0P37WF2VFXDNJM5
x-amz-id-2: X2jGl9z9B+TDQO0PGKOF1x60k8yLFy212aIEUTun/v85st6jh+nmuU3WUhxqxMMvdm1SrNVfs2M=
content-type: application/json
date: Wed, 17 Apr 2024 10:55:00 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 3422
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| paradigmpressgroup.com/favicons/apple-touch-icon.png | 44.210.42.183 | | 3.0 kB |
URL paradigmpressgroup.com/favicons/apple-touch-icon.png IP44.210.42.183:0
File typePNG image data, 180 x 180, 8-bit grayscale, non-interlaced Hashdd470648114adaceb47d36a18ad41d9d c93c69021ab4e381b4715938bed3732b132852b3 49dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4
GET /favicons/apple-touch-icon.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 11:52:02 GMT
content-type: image/png
content-length: 3017
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"bc9-1823c06a3cb"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| paradigmpressgroup.com/favicons/favicon-16x16.png | 44.210.42.183 | | 587 B |
URL paradigmpressgroup.com/favicons/favicon-16x16.png IP44.210.42.183:0
File typePNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced Hash2bb2efaa073e4987ba1867aff02ab3ac ea05acee8f408e3f86830b5f2da0616ced013006 6b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6
GET /favicons/favicon-16x16.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 11:52:02 GMT
content-type: image/png
content-length: 587
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"24b-1823c06a3cc"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=290409055.1713354722>m=45je44f0v9122066590z8811578897za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=26765055 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=290409055.1713354722>m=45je44f0v9122066590z8811578897za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=26765055 IP142.250.74.163:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=290409055.1713354722>m=45je44f0v9122066590z8811578897za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=26765055 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 11:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/googleAnalytics4.js | 151.101.66.132 | | 4.5 kB |
URL fast.wistia.com/assets/external/googleAnalytics4.js IP151.101.66.132:0
CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (17563) Hash6bef00e6a3097beb9029c1485db02022 43a9e765e6e6317e46b182b484170508c60073cf 0dc147d17a8a25eb266f07789362f142286be5205d2e34fee1cf0136cfaad3d4
GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Apr 2024 15:26:39 GMT
etag: "d22bcf196ba8e07c2f90d09a270e1ee8"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:02 GMT
age: 964
x-served-by: cache-iad-kiad7000150-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 47, 5
x-timer: S1713354722.208078,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: fa99d54708370281794f72e3586ef5977a90a618
content-length: 4452
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/playPauseLoadingControl.js | 151.101.66.132 | 200 OK | 22 kB |
URL GET HTTP/2fast.wistia.com/assets/external/playPauseLoadingControl.js IP151.101.66.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hash7845f53703880c301c91e55dacfb2730 a91923e2fe5f5a139f65a41682cee83637c636bf 441f641db8dc0a94620a07d59cfdad03e6fd3630fe3af81f82ce80d9d8ac3942
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 16 Apr 2024 15:26:39 GMT
etag: "054f6647c2b3166c5479ecec2e1cdb23"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:02 GMT
age: 1529
x-served-by: cache-iad-kiad7000029-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 37, 133
x-timer: S1713354722.256207,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: fa99d54708370281794f72e3586ef5977a90a618
content-length: 21596
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C | 142.250.74.168 | | 91 kB |
URL www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP142.250.74.168:0
File typeJavaScript source, ASCII text, with very long lines (7711) Hashb0e3257f90c998af1ed49d90f1ad48a3 b469e64096c17fc7591844561f427b5c23fc8700 02d6ffbbf4166a5f76a5c9b0457f9ca0aba8aab216e2b73a9d9c6d9309f222c7
GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 11:52:02 GMT
expires: Wed, 17 Apr 2024 11:52:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91142
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 91 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash8de264e57494a267c85c32fd7fb35b3b b7a94cdc93b8dd67459b8345ffb7a1e8870a5d0f e6d845a9eb47d73570b4bd5f64fdfe5a35adf81c43638da9ab11e1a28b6f35a5
GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 11:52:02 GMT
expires: Wed, 17 Apr 2024 11:52:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91143
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.51 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.51:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 911
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 17 Apr 2024 11:52:02 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
server: envoy
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9xCLMMayA0n9u0Z4jO4azC2nMbBJxhIMBcZ1dvaMhhf8k4fj627G_A==
X-Firefox-Spdy: h2
|
|
| d2z65klgtz99km.cloudfront.net/ALN/aln_bullmarketcrypto_0124/updated_ctps/800.webp | 54.230.241.180 | 200 OK | 860 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/ALN/aln_bullmarketcrypto_0124/updated_ctps/800.webp IP54.230.241.180:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Size860 kB (860270 bytes) Hashd4dbb64b9d6bec4d34419c4061b41797 948103a3df98e3197d02ea0e5cbd8557ad3dabf3 356d9273adba82bed45b4f950ce8e57c2b25aa6e75419735e7231eaf5ebd7885
GET /ALN/aln_bullmarketcrypto_0124/updated_ctps/800.webp HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 860270
server: nginx
last-modified: Thu, 04 Apr 2024 14:40:44 GMT
x-powered-by: PleskLin
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:50:42 GMT
cache-control: max-age=172800
expires: Fri, 19 Apr 2024 06:26:17 GMT
etag: "660ebbec-d206e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hZYEa44nQswQdbxklCuR-LFdItWip1Hm0xZJ6TqP8TLNevceKdpaGQ==
age: 19545
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/engines/hls_video.js | 151.101.66.132 | 200 OK | 118 kB |
URL GET HTTP/2fast.wistia.com/assets/external/engines/hls_video.js IP151.101.66.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size118 kB (118197 bytes) Hash0d0944584a2e0b7299c788dfbcc6224b dbafb5834a1553d168e2e61633d9dfb37d29a438 c6c26035fb90773bae20e3accc00fe4bf7368ac9eb802ce0ee066ffb3f89b738
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 16 Apr 2024 15:26:39 GMT
etag: "eb7dd49fb6d9bc27920e7403bf0de676"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:02 GMT
age: 1561
x-served-by: cache-iad-kcgs7200057-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 34, 102
x-timer: S1713354723.505785,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: fa99d54708370281794f72e3586ef5977a90a618
content-length: 118197
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2411 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2411 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2411 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 17 Apr 2024 11:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/2v6e2uyj8y.m3u8 | 151.101.66.132 | | 757 B |
URL fast.wistia.com/embed/medias/2v6e2uyj8y.m3u8 IP151.101.66.132:0
CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hashbc299b79a5cf62390c5e3b35dfbe713a caaddeba37bd7b233bfee3996f760a7828415491 d3ad18eb354ed858c778b6fa8cb12ba52efe4da3ee0095838ef566ab4dafc65b
GET /embed/medias/2v6e2uyj8y.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"d3ad18eb354ed858c778b6fa8cb12ba5"
x-request-id: 54876044-fe20-475a-b185-31910a904adc
x-runtime: 0.034083
x-envoy-upstream-service-time: 35
via: 1.1 c378d79f6d61c9af35c366d426990acc.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD55-P2
x-amz-cf-id: 8u-xPZYLRa5epLAiTqNm6ooLZ5hl-8kyGF7m3fcZP0Vt3YbK75zq-g==
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:02 GMT
age: 80
x-served-by: cache-iad-kiad7000049-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 19675, 1
x-timer: S1713354723.710823,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 757
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Click%20Report&tfd=2430 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Click%20Report&tfd=2430 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Click%20Report&tfd=2430 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 17 Apr 2024 11:52:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/images/blank.gif | 151.101.66.132 | | 1.2 kB |
URL fast.wistia.com/assets/images/blank.gif IP151.101.66.132:0
CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeGIF image data, version 89a, 100 x 100 Hashfbdc4ed9a1e2ee4917a265306927bcf1 6d177725d8230df0457e72004080f712e26fe624 a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:02 GMT
age: 309
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 60078
x-timer: S1713354723.726874,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1214
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/8d2f6080a385437c85c661927be65fb5b5368ecc.m3u8 | 143.204.55.63 | | 149 kB |
URL embed-cloudfront.wistia.com/deliveries/8d2f6080a385437c85c661927be65fb5b5368ecc.m3u8 IP143.204.55.63:0
Size149 kB (149361 bytes) Hash9ceee0fd596d0ec3fc6b8058cd721e6b 9688ad8fef822f72820998bfdd0e5d5670abc4bc bd3d8e242318d38eb2e0667a1873b9fc1639635a880335425deea9875f3b7529
GET /deliveries/8d2f6080a385437c85c661927be65fb5b5368ecc.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 149361
server: envoy
date: Sat, 13 Apr 2024 12:17:11 GMT
expires: Sun, 13 Apr 2025 12:17:11 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 8d2f6080a385437c85c661927be65fb5b5368ecc-hls-segment
surrogate-key: 8d2f6080a385437c85c661927be65fb5b5368ecc-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 84
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pfDiGnTpAEi00QeJilaNybO2_b6Br4wr0vK0YhzPNJEVdeExHl8yig==
age: 344091
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.51 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.51:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 17 Apr 2024 11:52:02 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g-y5VGM2ISeqajwWyGtmyzJnX5AMGtER53HIyozv1KWLwzrnrFy2fw==
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/8d2f6080a385437c85c661927be65fb5b5368ecc.m3u8/seg-1-v1-a1.ts | 143.204.55.63 | | 590 kB |
URL embed-cloudfront.wistia.com/deliveries/8d2f6080a385437c85c661927be65fb5b5368ecc.m3u8/seg-1-v1-a1.ts IP143.204.55.63:0
File typeMPEG transport stream data Size590 kB (589944 bytes) Hash593afddbc101bf409744279743da18e5 eef44a9f1d4b5a6090edcc31e6830a9fbfc0e328 985a1f892bda7a6e61ed020ee6ec816097cb9efba31b5b6e0277fb7eafe7faaf
GET /deliveries/8d2f6080a385437c85c661927be65fb5b5368ecc.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: video/MP2T
content-length: 589944
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 8d2f6080a385437c85c661927be65fb5b5368ecc-hls-segment
surrogate-key: 8d2f6080a385437c85c661927be65fb5b5368ecc-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 230
date: Sun, 14 Apr 2024 17:44:18 GMT
expires: Mon, 14 Apr 2025 17:44:18 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2-zvZK-WuQHkvhq7tInycg2ABgdwiottG39s4Fm65dy8n-0Mel9oOw==
age: 238064
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/9f8325ab1f78339a08ff75c6ab8476732279a869.m3u8 | 143.204.55.63 | 200 OK | 149 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/9f8325ab1f78339a08ff75c6ab8476732279a869.m3u8 IP143.204.55.63:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Size149 kB (149361 bytes) Hashf5ae0ff898aa7d78ffa55c2e60b38ff9 66f92b6779df6bb2a3c1c9835705f962d88b7c95 bb756da053e195d5cff058adb6ff1e89b2352c9126280cfe94e21693b2cfcf10
GET /deliveries/9f8325ab1f78339a08ff75c6ab8476732279a869.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 149361
server: envoy
date: Sat, 13 Apr 2024 06:00:01 GMT
expires: Sun, 13 Apr 2025 06:00:01 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 9f8325ab1f78339a08ff75c6ab8476732279a869-hls-segment
surrogate-key: 9f8325ab1f78339a08ff75c6ab8476732279a869-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 204
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2QQ3w8yaR-N2xyPr-QzdooIaDtFfCnNTGtsZWLJmr_hF_4ikbLnO_Q==
age: 366721
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| distillery.wistia.com/x | 54.230.111.90 | 204 No Content | 0 B |
IP54.230.111.90:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerAmazon Subjectstats-tap-production-cloudfront-app-cname.wistia.com Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40 ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1866
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 11:52:02 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uADJIRsviVF1Z8b7T4Po-YXKIlEDOepFr7rt7ES-Me0qz_uFHVasQQ==
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/allIntegrations.js | 151.101.66.132 | | 5.8 kB |
URL fast.wistia.com/assets/external/allIntegrations.js IP151.101.66.132:0
CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (23371) Hashd5dd13ae4e2cc9dbc4601c4d95143418 13405305698ad9cc7f44a86871fa1c0d057a9bf4 709f139528814cc9d5158ed469a578082a81607df49b40e41a6fb4b240567ecd
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Tue, 16 Apr 2024 15:26:39 GMT
etag: "4d5cbf7cb285a542334e7de7bc37ed93"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Wed, 17 Apr 2024 11:52:03 GMT
age: 1428
x-served-by: cache-iad-kiad7000169-IAD, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 49, 81
x-timer: S1713354723.297615,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: fa99d54708370281794f72e3586ef5977a90a618
content-length: 5773
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.51 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.51:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2225
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Wed, 17 Apr 2024 11:52:03 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: w91veLQf49DkJaSsjkbmIPVcxjsSuoQLERzRdG_JS1LmGH3fD1lt_g==
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash09e430bec5192f29dcc922b97f8cd4ae f25fbfc7fff3de87017443b9e45b35434f2f30d5 4a517b0c69d9f9391fc70543e9b96a70e22fc574d03ec0c129555be7617166d0
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 11:52:03 GMT
Last-Modified: Wed, 17 Apr 2024 10:27:24 GMT
Server: ECAcc (ska/F7B3)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J8ylgmly82-P6eqY6hpzy7ZAqB9o4rq6Kvflx1EWKRqPmxEVLcvkbg==
Age: 5079
|
|
| api.getblueshift.com/unity.gif?t=1713354723&e=pageload&r=&z=61217&x=59976d352f424c4b27d325518576b9b2&k=2ec1d160-7fa2-eecc-787e-65af198b2456&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue | 44.235.200.81 | | 42 B |
URL api.getblueshift.com/unity.gif?t=1713354723&e=pageload&r=&z=61217&x=59976d352f424c4b27d325518576b9b2&k=2ec1d160-7fa2-eecc-787e-65af198b2456&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue IP44.235.200.81:0
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /unity.gif?t=1713354723&e=pageload&r=&z=61217&x=59976d352f424c4b27d325518576b9b2&k=2ec1d160-7fa2-eecc-787e-65af198b2456&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 11:52:03 GMT
content-type: image/gif
content-length: 42
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://pro.paradigmnewsletters.org
access-control-expose-headers: etag
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z878323495za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&_s=3&tfd=7432 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z878323495za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&_s=3&tfd=7432 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_bullmarketcrypto_0124/LALN4216/?cake_s1=04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z878323495za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&_s=3&tfd=7432 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 192
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 17 Apr 2024 11:52:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Engagement&tfd=12341 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Engagement&tfd=12341 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z8811578897za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Engagement&tfd=12341 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 17 Apr 2024 11:52:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z878323495za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=5&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Engagement&tfd=17342 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z878323495za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=5&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Engagement&tfd=17342 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je44f0v9122066590z878323495za200&_p=1713354721246&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=290409055.1713354722&ul=en-us&sr=1280x1024&pscdl=noapi&_s=5&sid=1713354721&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_bullmarketcrypto_0124%2FLALN4216%2F%3Fcake_s1%3D04_144185806_8a50e784-ec9c-47a8-acb8-54a971cc60d7%26h%3Dtrue&dt=YOUR%20LAST%20CHANCE%20TO%20BECOME%20A%20CRYPTO%20MILLIONAIRE%3F&en=Engagement&tfd=17342 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Wed, 17 Apr 2024 11:52:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|