| links.goodlifestylenews.com/a/1610/click/2617/745119/c17d26a88d514a29eeb3be0e665c6cfaee06baeb/64340117d0a59fdd31cd4878dcb3fca0247e1865 | 35.238.129.105 | 302 Found | 207 B |
URL User Request GET HTTP/1.1links.goodlifestylenews.com/a/1610/click/2617/745119/c17d26a88d514a29eeb3be0e665c6cfaee06baeb/64340117d0a59fdd31cd4878dcb3fca0247e1865 IP35.238.129.105:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerLet's Encrypt Subjectlinks.goodlifestylenews.com FingerprintFB:95:02:BA:25:DF:2E:1C:28:CF:96:A5:F8:3B:20:D8:32:DE:0D:41 ValidityThu, 14 Mar 2024 07:41:28 GMT - Wed, 12 Jun 2024 07:41:27 GMT
File typeHTML document, ASCII text, with no line terminators Hashea3d53ac38f1a1890dafbbf0cdad07b2 2f3753a497186282ce2f72c2f94e2fbcebba1f6e dd00e926da7628a3b7c7a7a30108415b1c53843b0da4aef0260ed4452e888cff
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /a/1610/click/2617/745119/c17d26a88d514a29eeb3be0e665c6cfaee06baeb/64340117d0a59fdd31cd4878dcb3fca0247e1865 HTTP/1.1
Host: links.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
location: https://go.goodlifestylenews.com/AICrownJ1023/9e2695808a958f93d92ee0e296fd6ad8/55/leadsource/2617/1610/ca3d1c910d8285fdc928a0b7af721c0c/mpmta
content-type: text/html; charset=utf-8
cache-control: no-cache
set-cookie: _session_id=fed3c059eb0a6952ca65cd7e25d412fe; path=/; expires=Sun, 12 May 2024 22:53:15 GMT; HttpOnly
x-request-id: ae59ff09-b745-4248-bb8f-3a36a375db33
x-runtime: 0.037995
vary: Origin
transfer-encoding: chunked
|
|
| links.goodlifestylenews.com/ | 35.238.129.105 | | 0 B |
URL links.goodlifestylenews.com/ IP35.238.129.105:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerLet's Encrypt Subjectlinks.goodlifestylenews.com FingerprintFB:95:02:BA:25:DF:2E:1C:28:CF:96:A5:F8:3B:20:D8:32:DE:0D:41 ValidityThu, 14 Mar 2024 07:41:28 GMT - Wed, 12 Jun 2024 07:41:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: links.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 308 Permanent Redirect
content-length: 0
location: https://links.goodlifestylenews.com/
|
|
| 470kwc1.com/clk.trk?CID=466111&AFID=430135&SID=3415447649292391424 | 3.23.196.136 | 301 Moved Permanently | 134 B |
URL User Request GET HTTP/1.1470kwc1.com/clk.trk?CID=466111&AFID=430135&SID=3415447649292391424 IP3.23.196.136:80
File typeHTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /clk.trk?CID=466111&AFID=430135&SID=3415447649292391424 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Tue, 07 May 2024 22:53:17 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://470kwc1.com:443/clk.trk?CID=466111&AFID=430135&SID=3415447649292391424
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash6785c88f522832eaaca8362772d2755d 285152a9e236b4843b38e717a2bc1e28f8160595 b98b2ca25f43138cf3b67ea06ce00c19abe7fabe89779abddf60b659db1e91e9
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 22:53:18 GMT
Server: ECAcc (amb/6AD1)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RDCIkhj7ZzXXyaiA_mXSvKIETaE85Wv6YCaO9TUTUNTgEtxWNWmjxQ==
|
|
| links.goodlifestylenews.com/ | 35.238.129.105 | | 90 B |
URL links.goodlifestylenews.com/ IP35.238.129.105:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerLet's Encrypt Subjectlinks.goodlifestylenews.com FingerprintFB:95:02:BA:25:DF:2E:1C:28:CF:96:A5:F8:3B:20:D8:32:DE:0D:41 ValidityThu, 14 Mar 2024 07:41:28 GMT - Wed, 12 Jun 2024 07:41:27 GMT
File typeHTML document, ASCII text Hash01f4771c47a56dbdf77642c80eb9b799 6aead125925ec84c9171e3b29b9c2fc00682bda5 eec0a51a966b712aaccd11df320373becc55f174b97030419f9fae79f0cf542c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: links.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 400 Bad request
content-length: 90
cache-control: no-cache
content-type: text/html
connection: close
|
|
| 470kwc1.com/clk.trk?CID=466111&AFID=430135&SID=3415447649292391424 | 3.23.196.136 | 301 Moved Permanently | 216 B |
URL User Request GET HTTP/1.1470kwc1.com/clk.trk?CID=466111&AFID=430135&SID=3415447649292391424 IP3.23.196.136:80
File typeHTML document, ASCII text, with CRLF line terminators Hashf83dbe0a277ebc61716834821f6efde9 1aedc923b5b6ecdc1d77f1c9300976b9bb1d91b0 a0888c9e7a8a1a9fcfcc51e5b0e7d4aacc18fc6924b182da2920a1804d68019b
GET /clk.trk?CID=466111&AFID=430135&SID=3415447649292391424 HTTP/1.1
Host: 470kwc1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 22:53:18 GMT
content-type: text/html; charset=utf-8
content-length: 216
location: https://pro.paradigm-press.info/m/2257091?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874
cache-control: private
server: Microsoft-IIS/10.0
p3p: policyref="/p3p/P3P.470kwc1.com.xml", CP="NOI DSP COR NID ADM DEV OUR STP OTC"
x-aspnet-version: 4.0.30319
set-cookie: LTTC6_466111=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874; expires=Tue, 14-May-2024 22:53:18 GMT; path=/; secure; SameSite=None
x-powered-by: ASP.NET
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| pro.paradigm-press.info/m/2257091?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874 | 192.135.136.169 | 301 Moved Permanently | 255 B |
URL User Request GET HTTP/1.1pro.paradigm-press.info/m/2257091?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874 IP192.135.136.169:443
CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash669e2eccfb9d80a1a925b89bd459e3e9 8a2cff55d873452c32c022dc68cb69f2003b0b0d 87e78ce63a9d02b88aec8d356da6d0eb20805f6f10619f5042b0c85c799fb703
GET /m/2257091?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874 HTTP/1.1
Host: pro.paradigm-press.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true
Date: Tue, 07 May 2024 22:53:18 GMT
Content-Length: 255
Set-Cookie: 2257091=2671416; expires=Mon, 27-May-2024 22:53:18 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!3CDSqqreTCE7xis0QCUGrw3uOK3bWfz7EjYl7CAH3athRNBebxy2o2XUmAmLFlhZMFIDyO09ROCscZs=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true | 161.129.26.18 | 200 OK | 9.3 kB |
URL User Request GET HTTP/1.1pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true IP161.129.26.18:443
CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1672), with CRLF, LF line terminators Hash2c65dd1ddd33760573edd19d49536ccd f0addd21f713058d66c3c85a9b07dcb3f3d73a54 0a8197b78ef6306850018d94cfd025e7544b341df6f72d2eb4d529f04d6b0ac5
GET /p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Tue, 07 May 2024 22:53:18 GMT
Content-Length: 9257
Set-Cookie: LALNZA40=; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; HttpOnly
BIGipServerIRIS_PROD_HTTPS_POOL=!VAwTSgOJZWXvwJQ0QCUGrw3uOK3bWYOf3maPcwz3Y1Dw4ljh+Ac1frIrNyIAsY1RvnCnNKDMm2R4CyI=; path=/; Httponly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| go.goodlifestylenews.com/AICrownJ1023/9e2695808a958f93d92ee0e296fd6ad8/55/leadsource/2617/1610/ca3d1c910d8285fdc928a0b7af721c0c/mpmta | 104.21.30.61 | 302 Found | 232 B |
URL User Request GET HTTP/2go.goodlifestylenews.com/AICrownJ1023/9e2695808a958f93d92ee0e296fd6ad8/55/leadsource/2617/1610/ca3d1c910d8285fdc928a0b7af721c0c/mpmta IP104.21.30.61:443
CertificateIssuerGoogle Trust Services LLC Subjectgoodlifestylenews.com FingerprintCF:D4:62:67:0B:FC:CB:36:EF:53:02:EB:06:FE:15:35:2F:53:53:40 ValidityThu, 21 Mar 2024 14:09:53 GMT - Wed, 19 Jun 2024 14:09:52 GMT
Hash820cbd1cf19fca359163d8b52f267f52 466e5e3277e7a970309d651f15cf15cfe0359dd0 38d8beddaaab48444f2f4ff37f9b717ee7d5f21b087e9ad92eea58b73121b145
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /AICrownJ1023/9e2695808a958f93d92ee0e296fd6ad8/55/leadsource/2617/1610/ca3d1c910d8285fdc928a0b7af721c0c/mpmta HTTP/1.1
Host: go.goodlifestylenews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 22:53:16 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedwebpage.com/go?ehash=9e2695808a958f93d92ee0e296fd6ad8&product=33260&ar=55&cid=2617&lid=1610&slhash=ca3d1c910d8285fdc928a0b7af721c0c&mtaid=mpmta&cid2=[s8]&cloudf_filter=1
cache-control: max-age=600
expires: Tue, 07 May 2024 23:03:15 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TUicANta3nNl0RvbHNBCGWxHAuoKu35LS0NLZxZMudnUX%2BjKQj03UQzE4VeHLyityc3EiJP4c1fhbLVxDbt%2FcvrEmeQ3QtEW8gv8HB1NLIBfJzDpR4qQOuFnUN1LjJLC2iuTZkJZeINzHHQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8804c8f9ff5256a5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/Common.js | 161.129.26.18 | 200 OK | 1.1 kB |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/Common.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash2fa1e7a35bfa376eff7f1426fc4a8afa 008b48dbd95a158542969743c18d0bc33e0a9384 857d94bd23b6437baa66255e1d507ad4a23d75ef9a271fb3e1303dc7dd0aced9
GET /p/Scripts/Common.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true
DNT: 1
Connection: keep-alive
Cookie: LALNZA40=; BIGipServerIRIS_PROD_HTTPS_POOL=!VAwTSgOJZWXvwJQ0QCUGrw3uOK3bWYOf3maPcwz3Y1Dw4ljh+Ac1frIrNyIAsY1RvnCnNKDMm2R4CyI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "a37f814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Tue, 07 May 2024 22:53:20 GMT
Content-Length: 1140
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| fast.wistia.com/assets/external/E-v1.js | 151.101.2.132 | 200 OK | 137 kB |
URL GET HTTP/2fast.wistia.com/assets/external/E-v1.js IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65474) Size137 kB (136901 bytes) Hash052600afd1ecbeb8e6a746d8cf9c3f52 5a3e3c163dcc90715b224b038e03b4a1ad3c1918 977e141ac40c89736da0671fe69d3a86f88e9b611794e2903776ad7cf885664f
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Mon, 06 May 2024 19:22:13 GMT
etag: "a03c52076e315125a988c69d823bee22"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:20 GMT
age: 1793
x-served-by: cache-iad-kiad7000133-IAD, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 61, 244
x-timer: S1715122400.122604,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 28e29ceb2b43efa40a2a9a4feeda1b13bcd24ac3
content-length: 136901
X-Firefox-Spdy: h2
|
|
| pro.paradigmnewsletters.org/p/Scripts/HideContent.js | 161.129.26.18 | 200 OK | 466 B |
URL GET HTTP/1.1pro.paradigmnewsletters.org/p/Scripts/HideContent.js IP161.129.26.18:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerLet's Encrypt Subjectordertracking6.pubsvs.com FingerprintDE:EE:B1:D3:CC:79:7C:05:E2:B2:A5:58:14:0E:7F:4E:13:52:EE:49 ValidityMon, 22 Apr 2024 14:08:54 GMT - Sun, 21 Jul 2024 14:08:53 GMT
File typeJavaScript source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hashcc54a637e514fddfe0be2e7c2d062e5b a0f97813508d22d71f015b93cc8dfdcee65acdfd 580942b09dd77a53c0501f35a1d6c61cbcff1d504a6efb0dfa5d77cbdb1af741
GET /p/Scripts/HideContent.js HTTP/1.1
Host: pro.paradigmnewsletters.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true
DNT: 1
Connection: keep-alive
Cookie: LALNZA40=; BIGipServerIRIS_PROD_HTTPS_POOL=!VAwTSgOJZWXvwJQ0QCUGrw3uOK3bWYOf3maPcwz3Y1Dw4ljh+Ac1frIrNyIAsY1RvnCnNKDMm2R4CyI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 24 Jul 2023 13:39:44 GMT
Accept-Ranges: bytes
ETag: "bbcd814e34bed91:0"
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Date: Tue, 07 May 2024 22:53:20 GMT
Content-Length: 466
Strict-Transport-Security: max-age=63072000; includeSubDomains
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js | 142.250.74.10 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP142.250.74.10:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32077) Hash4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:19:35 GMT
expires: Fri, 02 May 2025 02:19:35 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 506025
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-T5B9F8TL | 142.250.74.72 | 200 OK | 92 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-T5B9F8TL IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (8153) Hash2411035e44fb3cb5e5a977ca15b77164 e205d8b070930f48ebb8df40f1b07bb7573697f6 3c8c655164eea9cb3574bf09fed0e74f06b47ebd5db8bfb4852d710cb6c1733c
GET /gtm.js?id=GTM-T5B9F8TL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:53:20 GMT
expires: Tue, 07 May 2024 22:53:20 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92180
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-P95MDDF | 142.250.74.72 | 200 OK | 120 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-P95MDDF IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (58328) Size120 kB (120502 bytes) Hash4555f0d14d99b4e5d2d59622565a474a e0dfd17cbe30c0b7ea376cfbb10310446d228a6f 88a56f89faac1a51d3d93d50b1c7b8de511e0821e6bfbf4c0b525a9a74e38c50
GET /gtm.js?id=GTM-P95MDDF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:53:20 GMT
expires: Tue, 07 May 2024 22:53:20 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 120502
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 | 142.250.74.72 | 200 OK | 118 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-NKRVP76 IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (56012) Size118 kB (118533 bytes) Hash0be16509fd5b8fe95246a3dfdf43a6db 2890e7769ad701291b39e4b29dbdf57c37d5f5f4 80e811fd9d231130a72f87755ef8a22c029be38591b778895da09daf5c27974d
GET /gtm.js?id=GTM-NKRVP76 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:53:20 GMT
expires: Tue, 07 May 2024 22:53:20 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 118533
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.getblueshift.com/blueshift.js | 54.230.111.92 | 200 OK | 2.8 kB |
URL GET HTTP/1.1cdn.getblueshift.com/blueshift.js IP54.230.111.92:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.getblueshift.com Fingerprint29:49:01:4C:AB:3A:C5:E4:F6:F2:67:75:BE:5B:FF:4B:F3:5C:EC:47 ValidityMon, 10 Jul 2023 00:00:00 GMT - Tue, 06 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashe70a08bd9e7ef156c1673f55ed87aa85 9dfa4cf582654332eb4e1ada9843594ca64bb0d2 a97c4e09767a155128f03c8a72efccc7d8e38e2e8e78daf14c8e5beaf72ff1a5
GET /blueshift.js HTTP/1.1
Host: cdn.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2826
Connection: keep-alive
Last-Modified: Wed, 24 Jan 2024 03:44:50 GMT
x-amz-server-side-encryption: AES256
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 07 May 2024 22:29:18 GMT
Cache-Control: max-age=3600
ETag: "bd39fba69cd2745738daf44e0e350f6e"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lCAjEfw6i5RdIibkT_gbZr14YWJn9VaseAubMVy2U-wYHp80K3_Mnw==
Age: 1444
|
|
| fonts.gstatic.com/s/orbitron/v31/yMJMMIlzdpvBhQQL_SC3X9yhF25-T1nysimBoWgz.woff2 | 216.58.207.227 | 200 OK | 6.4 kB |
URL GET HTTP/2fonts.gstatic.com/s/orbitron/v31/yMJMMIlzdpvBhQQL_SC3X9yhF25-T1nysimBoWgz.woff2 IP216.58.207.227:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 6408, version 1.0 Hash9b882484151d0c9684be930fdeff7f36 4497fee4c526023fc48ee8ff652d993a83b53911 85fb9efe5f3acc876988dda311a5a6b4350dcdbfc49068fb77116d19fe6a06aa
GET /s/orbitron/v31/yMJMMIlzdpvBhQQL_SC3X9yhF25-T1nysimBoWgz.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:24:15 GMT
expires: Fri, 02 May 2025 02:24:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 20:51:23 GMT
content-type: font/woff2
age: 505746
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/lv3fk45qvy.json | 151.101.2.132 | 200 OK | 1.6 kB |
URL GET HTTP/2fast.wistia.com/embed/medias/lv3fk45qvy.json IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hash51c01262f6da8ac65e8a9963c1acc0d9 bb14d8991cb7bc346af6fd794562ead7d2627e49 5793ae3adb1dccfc17857ef35e5d553161a773ae215df3e26b3d7da3e99b621a
GET /embed/medias/lv3fk45qvy.json HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"5793ae3adb1dccfc17857ef35e5d5531"
x-request-id: a60c09fe-be2c-4eff-bf40-fe3e49bc2a87
x-runtime: 0.053470
content-encoding: br
x-envoy-upstream-service-time: 55
via: 1.1 9a7c700290cf80b3334e7dcd07bfe44a.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD55-P2
x-amz-cf-id: NZnjYYS-eAiZn6D_di2mGeb_ZmrltOJzGh8KxvG5RhQpfBveoFG-zw==
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:21 GMT
age: 118348
x-served-by: cache-iad-kiad7000047-IAD, cache-hel1410034-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 385, 1
x-timer: S1715122401.018563,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1627
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 129544
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 101 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size101 kB (101014 bytes) Hash8d4560c646db338d95436b6aa66ddb26 a15121c480bcbe1cb3a7c07eff2c63369b40ec51 b0b8a79fe1b25de9e4b12eefdf77ddc0ead59511cae33560090c5002e05e9b47
GET /gtag/js?id=G-BYN6DTYEFQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:53:21 GMT
expires: Tue, 07 May 2024 22:53:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101014
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Inter:wght@500;600;700;800&family=Orbitron:wght@900&display=swap | 142.250.74.106 | 200 OK | 48 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Inter:wght@500;600;700;800&family=Orbitron:wght@900&display=swap IP142.250.74.106:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashffe34375cf5b07a66a50bd5281a5c4f9 31faf467eeed582c6a1cd27e24540f5f1b4301b5 2e25d429085b5138aa1405ef7839a8022fc6117841549d0b6df1a50581891d83
GET /css2?family=Inter:wght@500;600;700;800&family=Orbitron:wght@900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 22:53:20 GMT
date: Tue, 07 May 2024 22:53:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 129544
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 129544
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/googleAnalytics4.js | 151.101.2.132 | 200 OK | 4.5 kB |
URL GET HTTP/2fast.wistia.com/assets/external/googleAnalytics4.js IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (17654) Hash4655bdafa47bda6413aad51c95889172 7b6e94e8cb4f8f0ebd8594f9d7c66e464b91558a 83c3d7685398ddbe89962c2646caf90a1efb7e130ea1e07c14e436e545ade3a7
GET /assets/external/googleAnalytics4.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 06 May 2024 19:22:13 GMT
etag: "0bc8a3806c77198f0aa7c1b56d2344e8"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:21 GMT
age: 1675
x-served-by: cache-iad-kiad7000037-IAD, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 62, 7
x-timer: S1715122401.347534,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 28e29ceb2b43efa40a2a9a4feeda1b13bcd24ac3
content-length: 4471
X-Firefox-Spdy: h2
|
|
| d2z65klgtz99km.cloudfront.net/ALN/aln_crownjewel_0923/ALN_AI_CROWN_JEWEL_BG_final.jpg | 108.157.232.103 | 200 OK | 88 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/ALN/aln_crownjewel_0923/ALN_AI_CROWN_JEWEL_BG_final.jpg IP108.157.232.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=GIMP 2.10.34, datetime=2023:09:25 11:13:19], progressive, precision 8, 1920x1080, components 3 Hashab8d6cbb15f30f1ea92cb336e9da95da f2cc93f01ea8bfddfd3ff7f73be71e67536c1e21 f93dc311b7a2a6e74958a03a507331119e165b15d221f411fa57081667b87510
GET /ALN/aln_crownjewel_0923/ALN_AI_CROWN_JEWEL_BG_final.jpg HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 87778
server: nginx
date: Wed, 11 Oct 2023 17:32:11 GMT
last-modified: Mon, 25 Sep 2023 15:22:51 GMT
cache-control: max-age=31536000
expires: Thu, 10 Oct 2024 17:32:11 GMT
etag: "6511a5cb-156e2"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 471577f2b3efe669f21e138a1621a8ca.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: FGyMum4nhvWKDPk1cHgwEOWe9m-6LwePvwtQxVYolgYu_sE0LbQUYA==
age: 18076870
X-Firefox-Spdy: h2
|
|
| d2z65klgtz99km.cloudfront.net/ALN/aln_crownjewel_0923/ALN_AI_CROWN_JEWEL_CTP_01.jpg | 108.157.232.103 | 200 OK | 69 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/ALN/aln_crownjewel_0923/ALN_AI_CROWN_JEWEL_CTP_01.jpg IP108.157.232.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=GIMP 2.10.34, datetime=2023:09:25 13:09:19], progressive, precision 8, 800x450, components 3 Hashd5ad4b3893b6e58dcd5e4ff5a4a8f4c4 0dec9e7905db5a32a864d81b2a8f5dbb71b68976 5db434e8ff063b00d357e59e56251262f16450f7bd7ca4fa68828a9599f8bb10
GET /ALN/aln_crownjewel_0923/ALN_AI_CROWN_JEWEL_CTP_01.jpg HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 68647
server: nginx
date: Wed, 11 Oct 2023 17:32:12 GMT
last-modified: Mon, 25 Sep 2023 17:09:42 GMT
cache-control: max-age=31536000
expires: Thu, 10 Oct 2024 17:32:12 GMT
etag: "6511bed6-10c27"
x-powered-by: PleskLin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 471577f2b3efe669f21e138a1621a8ca.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 15PGK_k2Wd3-CSvdfmqjC_oGiBDc_TyaLY8lauC6gna7bGg3WyBoxQ==
age: 18076868
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Ko/Fh5wMDpZdupc+q9J0aUtkrZAhwWuT48fYdS6/YtmGUVqFB4usx2cmQ7lMwZqMPmymKQkwQWk=
x-amz-request-id: QAF8YP7RTRPP4VX4
date: Tue, 07 May 2024 22:11:27 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2515
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=985279510.1715122401>m=45je4510v9122066590z89166879800za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1872310077 | 172.217.21.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=985279510.1715122401>m=45je4510v9122066590z89166879800za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1872310077 IP172.217.21.163:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint7D:68:6D:B1:32:34:52:51:20:C9:53:FF:B9:B7:8F:7E:05:F9:F5:97 ValidityTue, 16 Apr 2024 04:31:00 GMT - Tue, 09 Jul 2024 04:30:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BYN6DTYEFQ&cid=985279510.1715122401>m=45je4510v9122066590z89166879800za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=1872310077 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 May 2024 22:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Ko/Fh5wMDpZdupc+q9J0aUtkrZAhwWuT48fYdS6/YtmGUVqFB4usx2cmQ7lMwZqMPmymKQkwQWk=
x-amz-request-id: QAF8YP7RTRPP4VX4
date: Tue, 07 May 2024 22:11:27 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2515
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Ko/Fh5wMDpZdupc+q9J0aUtkrZAhwWuT48fYdS6/YtmGUVqFB4usx2cmQ7lMwZqMPmymKQkwQWk=
x-amz-request-id: QAF8YP7RTRPP4VX4
date: Tue, 07 May 2024 22:11:27 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2515
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/ytc.js | 87.248.119.252 | 200 OK | 6.3 kB |
IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18187), with no line terminators Hash5c6ed25dce803fd84288922b8928409e 3ccc10546ae12f160bacac1e9e422af091ea4a41 480b06b23e574b4bf386fde1a91145a4171f97aeb5ee800e4be1850f29b1ad91
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Ko/Fh5wMDpZdupc+q9J0aUtkrZAhwWuT48fYdS6/YtmGUVqFB4usx2cmQ7lMwZqMPmymKQkwQWk=
x-amz-request-id: QAF8YP7RTRPP4VX4
date: Tue, 07 May 2024 22:11:27 GMT
last-modified: Mon, 26 Jun 2023 09:26:35 GMT
x-amz-expiration: expiry-date="Wed, 31 Jul 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "5c6ed25dce803fd84288922b8928409e-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: xC6OTTJGIjCqkMTkbrZpmtbXHK5oaZhW
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 2515
content-encoding: gzip
content-length: 6262
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10082412.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10082412.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10082412.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: RH9ZSCNHDF30K6E1
x-amz-id-2: BvsdWpAkHIXD6yFXMJism9PMKMoAJTKO26Hf3V0BsdDFwZdw/HfqvfOuiBHZEdTgca1aYLg3NIHSm41z85p8VQ==
content-type: application/json
date: Tue, 07 May 2024 21:58:01 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 3320
ats-carp-promotion: 1, 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10091245.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10091245.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10091245.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: CGR9TG16HRQJCN1W
x-amz-id-2: uqcQEGZS1mJtMoFeLZFKsnpFsfApEtOtNuTcmzIGm0Ewet5m+nnGeInXzcKAb5tRkOQ9Xsfn4SukmCEFoJjR8Q==
content-type: application/json
date: Tue, 07 May 2024 22:22:27 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 1854
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10114794.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10114794.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10114794.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: A4HVNB8N2EP7CWQ3
x-amz-id-2: MwQFuHCU/TlxJkMMOAmpRchKzHBur61P/X8JFbmF21aG3X5PgrdANyFPrw00m/m9HQhEH0Y/W+I=
content-type: application/json
date: Tue, 07 May 2024 22:39:38 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 823
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/wi/config/10125189.json | 87.248.119.252 | 200 OK | 2 B |
URL GET HTTP/2s.yimg.com/wi/config/10125189.json IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintFB:A0:5A:E1:EC:89:4D:F2:05:92:12:26:0C:97:C8:C6:CF:19:2F:96 ValidityTue, 30 Apr 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /wi/config/10125189.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: CGR5PXV0EXBBSN0M
x-amz-id-2: 76da1epMRysccAUD/WRB2hUIefTWvOhP8bZyDhzjHlKExBEcNe5dmwoBaV6qFRVIecUF2oD7HYg=
content-type: application/json
date: Tue, 07 May 2024 22:22:28 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 1854
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/playPauseLoadingControl.js | 151.101.2.132 | 200 OK | 22 kB |
URL GET HTTP/2fast.wistia.com/assets/external/playPauseLoadingControl.js IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65455) Hash57ef473620b86e6720d97151a9b5b2e8 296a18394a55a04318b85fad31b22302a4619758 d8bf6863841796511dadc6251051459b0871f896d2158d4ddf13656d4d9e77d5
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 06 May 2024 19:22:13 GMT
etag: "80f32a247115f34c6f04fe858a90895a"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:21 GMT
age: 1618
x-served-by: cache-iad-kcgs7200156-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 66, 20
x-timer: S1715122402.902870,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 28e29ceb2b43efa40a2a9a4feeda1b13bcd24ac3
content-length: 21598
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/external/engines/hls_video.js | 151.101.2.132 | 200 OK | 118 kB |
URL GET HTTP/2fast.wistia.com/assets/external/engines/hls_video.js IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size118 kB (118171 bytes) Hash2ed1a7682194a224b571d657a69ef595 11f7ca3fef0170693bf51c8e444371d2506164d1 3edaf39750e5132be42f5f6cfde22321a3f45adc4e81a5dcd97e82795e633684
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 06 May 2024 19:22:13 GMT
etag: "0befaf540af2e2f55805ba00bf5485aa"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:21 GMT
age: 1804
x-served-by: cache-iad-kiad7000034-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 51, 18
x-timer: S1715122402.905608,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 28e29ceb2b43efa40a2a9a4feeda1b13bcd24ac3
content-length: 118171
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C | 142.250.74.72 | 200 OK | 95 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash6e9b63533bfe2374995d6e39345c6768 74060dad68b75eb0fe999140b4b7b8500f8ba0a0 de54740cd02e6d3e32d5a58ee938bca0104ff593cd972e1c99fd349c3da60bc8
GET /gtag/js?id=G-9JTVKL1Z3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:53:21 GMT
expires: Tue, 07 May 2024 22:53:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95004
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| paradigmpressgroup.com/favicons/apple-touch-icon.png | 44.210.42.183 | 200 OK | 3.0 kB |
URL GET HTTP/2paradigmpressgroup.com/favicons/apple-touch-icon.png IP44.210.42.183:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerLet's Encrypt Subjectparadigmpressgroup.com Fingerprint9F:5E:5C:45:8B:D7:39:29:DA:7C:07:64:1E:F0:C5:D7:22:AE:AB:4D ValidityWed, 10 Apr 2024 16:51:00 GMT - Tue, 09 Jul 2024 16:50:59 GMT
File typePNG image data, 180 x 180, 8-bit grayscale, non-interlaced Hashdd470648114adaceb47d36a18ad41d9d c93c69021ab4e381b4715938bed3732b132852b3 49dd5241fadc6a69795935a795804ed7206efb39f6dc6b5a0588f92d80775ad4
GET /favicons/apple-touch-icon.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 22:53:21 GMT
content-type: image/png
content-length: 3017
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"bc9-1823c06a3cb"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z89166879800za200&_p=1715122400380&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=6806 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z89166879800za200&_p=1715122400380&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=6806 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z89166879800za200&_p=1715122400380&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=6806 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.100 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.100:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1015
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Tue, 07 May 2024 22:53:21 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1gWvt4bXunstJwIo5rfSX5THZW7n2iUU0XrJ_I-9oLK3cDiMCVNwTQ==
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Click%20Report&tfd=6839 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Click%20Report&tfd=6839 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=2&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Click%20Report&tfd=6839 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z8811578897za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Click%20Report&tfd=6851 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z8811578897za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Click%20Report&tfd=6851 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z8811578897za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=3&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Click%20Report&tfd=6851 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 95 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hashd15ca45b8291757d6ead22581742e9b5 9aa2b31f44f48e68a00125923bb8059f25762dfc a5c6e8d669aff98ef8f9b1e44a5dac68d8740e47e6bbe63a27bd187f575e25d5
GET /gtag/js?id=G-9JTVKL1Z3C&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 22:53:21 GMT
expires: Tue, 07 May 2024 22:53:21 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 95026
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| paradigmpressgroup.com/favicons/favicon-16x16.png | 44.210.42.183 | 200 OK | 587 B |
URL GET HTTP/2paradigmpressgroup.com/favicons/favicon-16x16.png IP44.210.42.183:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerLet's Encrypt Subjectparadigmpressgroup.com Fingerprint9F:5E:5C:45:8B:D7:39:29:DA:7C:07:64:1E:F0:C5:D7:22:AE:AB:4D ValidityWed, 10 Apr 2024 16:51:00 GMT - Tue, 09 Jul 2024 16:50:59 GMT
File typePNG image data, 16 x 16, 8-bit gray+alpha, non-interlaced Hash2bb2efaa073e4987ba1867aff02ab3ac ea05acee8f408e3f86830b5f2da0616ced013006 6b712b83f2054506208f4243b57e7bd48fa0dcf3a10c0ff609bfc5ea8398ddc6
GET /favicons/favicon-16x16.png HTTP/1.1
Host: paradigmpressgroup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 22:53:22 GMT
content-type: image/png
content-length: 587
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 26 Jul 2022 19:40:44 GMT
etag: W/"24b-1823c06a3cc"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/embed/medias/lv3fk45qvy.m3u8 | 151.101.2.132 | 200 OK | 758 B |
URL GET HTTP/2fast.wistia.com/embed/medias/lv3fk45qvy.m3u8 IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
Hash166d8476d78ae63dc75b3aa6d7540cb2 b2169c00c9399a8d2e15db1a9bfff959936a58f8 723be5f48dfa5a739a6dc2e0467c756eecb92972aff19c11b4d96bdd3b5daff9
GET /embed/medias/lv3fk45qvy.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-mpegURL
server: envoy
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, no-cache
etag: W/"723be5f48dfa5a739a6dc2e0467c756e"
x-request-id: 8d8b8929-dc80-4db6-9cac-585e53279ff9
x-runtime: 0.031012
x-envoy-upstream-service-time: 32
via: 1.1 af160f4504a0539433328f73887ea912.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
x-amz-cf-pop: IAD61-P1
x-amz-cf-id: w5N3frd0YNuvjgyvojuBdcm3g7NbzVvppUrR6QlZeq23JRv9225Yeg==
accept-ranges: bytes
age: 45186
date: Tue, 07 May 2024 22:53:22 GMT
x-served-by: cache-iad-kjyo7100064-IAD, cache-hel1410034-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 1924, 0
x-timer: S1715122402.245581,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 758
X-Firefox-Spdy: h2
|
|
| fast.wistia.com/assets/images/blank.gif | 151.101.2.132 | 200 OK | 1.2 kB |
URL GET HTTP/2fast.wistia.com/assets/images/blank.gif IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeGIF image data, version 89a, 100 x 100 Hashfbdc4ed9a1e2ee4917a265306927bcf1 6d177725d8230df0457e72004080f712e26fe624 a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Wed, 10 May 2023 19:48:54 GMT
etag: "fbdc4ed9a1e2ee4917a265306927bcf1"
x-amz-server-side-encryption: AES256
content-type: image/gif
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:22 GMT
age: 1679
x-served-by: cache-iad-kcgs7200077-IAD, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 25, 17
x-timer: S1715122402.253700,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
content-length: 1214
X-Firefox-Spdy: h2
|
|
| distillery.wistia.com/x | 143.204.55.102 | 204 No Content | 0 B |
IP143.204.55.102:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subjectstats-tap-production-cloudfront-app-cname.wistia.com Fingerprint37:C6:AB:79:1C:DF:9B:5E:3A:B8:3E:F1:0C:1D:48:BF:89:2D:1F:40 ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1688
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 07 May 2024 22:53:22 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
server: envoy
x-envoy-upstream-service-time: 1
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6C6H-NWFYIPHxzFcm74aFptyFmsmNzeuQ004idDPEj0tZkaxfjv1Cg==
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/ad7ac52c887c9c2afe75ece7cbf70bac395dd33c.m3u8 | 143.204.55.78 | 200 OK | 107 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/ad7ac52c887c9c2afe75ece7cbf70bac395dd33c.m3u8 IP143.204.55.78:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Size107 kB (107228 bytes) Hash41b7b3049ed6b7956256b04cc0c0929f d5b3896aea3a7090066b3537a0b4fc3a0a9dd4e1 d46c6efaa10ccf14b870b9f913babff3ea2411b4ad15a1f17e138d0f2524c8c7
GET /deliveries/ad7ac52c887c9c2afe75ece7cbf70bac395dd33c.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 107228
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: ad7ac52c887c9c2afe75ece7cbf70bac395dd33c-hls-segment
surrogate-key: ad7ac52c887c9c2afe75ece7cbf70bac395dd33c-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 72
date: Tue, 07 May 2024 12:28:33 GMT
expires: Wed, 07 May 2025 12:28:33 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4olTMHPd6u7OFIvxhXx_mi11tOLdtOf1fNlmR_DASRuQq53iPBdx6g==
age: 37489
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/ad7ac52c887c9c2afe75ece7cbf70bac395dd33c.m3u8/seg-1-v1-a1.ts | 143.204.55.78 | 200 OK | 325 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/ad7ac52c887c9c2afe75ece7cbf70bac395dd33c.m3u8/seg-1-v1-a1.ts IP143.204.55.78:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
File typeMPEG transport stream data Size325 kB (325240 bytes) Hashdaf9fdd57b65d759fddcae0ab5fc5076 c22b19069e7903cbeaa417060f56a49b442b5430 0ae69927b06de54952b208bb8c602ca9a0f043a53e1114f0d3186985f467962f
GET /deliveries/ad7ac52c887c9c2afe75ece7cbf70bac395dd33c.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: video/MP2T
content-length: 325240
server: envoy
date: Mon, 06 May 2024 05:58:28 GMT
expires: Tue, 06 May 2025 05:58:28 GMT
cache-control: max-age=31536000
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: ad7ac52c887c9c2afe75ece7cbf70bac395dd33c-hls-segment
surrogate-key: ad7ac52c887c9c2afe75ece7cbf70bac395dd33c-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 79
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -VD72Wk-0kjRNRqxmHCFDAV2fHi7hsmUUWYT2UoBo2meWjO-QmSrIQ==
age: 147294
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| embed-cloudfront.wistia.com/deliveries/fb90a73ec39b7bd08784e04666d8eb1d14df5d2d.m3u8 | 143.204.55.78 | 200 OK | 107 kB |
URL GET HTTP/2embed-cloudfront.wistia.com/deliveries/fb90a73ec39b7bd08784e04666d8eb1d14df5d2d.m3u8 IP143.204.55.78:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.wistia.com Fingerprint44:FA:DB:AB:41:36:F5:96:F7:BF:3A:E7:D8:61:50:5C:26:80:3D:D2 ValidityMon, 01 Jan 2024 00:00:00 GMT - Tue, 28 Jan 2025 23:59:59 GMT
Size107 kB (107228 bytes) Hash1f0cab48fdebf14b4c0604bf60a762eb f2e775c63c0e250e56177cc4cf1b528c3dc4eb1e 4df58a7959a5d463e9f8c43b621d0eb8129d8551346f5d594894a3a8f6dd0d7c
GET /deliveries/fb90a73ec39b7bd08784e04666d8eb1d14df5d2d.m3u8 HTTP/1.1
Host: embed-cloudfront.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
content-length: 107228
server: envoy
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: fb90a73ec39b7bd08784e04666d8eb1d14df5d2d-hls-segment
surrogate-key: fb90a73ec39b7bd08784e04666d8eb1d14df5d2d-hls-segment
accept-ranges: bytes
x-envoy-upstream-service-time: 132
date: Mon, 06 May 2024 11:41:29 GMT
expires: Tue, 06 May 2025 11:41:29 GMT
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vY0BpW22QgPufa2YkCDkwebLqz_0BxZuhv8vjAihMj71zoRXB6Y8KQ==
age: 126713
x-cdn: cloudfront
access-control-allow-origin: *
access-control-expose-headers: Server,range,Content-Length,Content-Range,x-cdn
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z89166879800za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=aln_aware&tfd=7464 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z89166879800za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=aln_aware&tfd=7464 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z89166879800za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=4&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=aln_aware&tfd=7464 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fast.wistia.com/assets/external/allIntegrations.js | 151.101.2.132 | 200 OK | 5.8 kB |
URL GET HTTP/2fast.wistia.com/assets/external/allIntegrations.js IP151.101.2.132:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGlobalSign nv-sa Subjectfast.wistia.com Fingerprint75:69:0C:BF:54:26:59:0B:9A:83:E3:04:94:DE:EB:3F:E5:F6:6D:66 ValidityThu, 04 Apr 2024 00:50:10 GMT - Tue, 06 May 2025 00:50:09 GMT
File typeJavaScript source, ASCII text, with very long lines (23371) Hash43cd782e5591ad905087f5f3d4288c42 993ecd55d09f2b5e2cd7bcfd4cf81ce136a8b619 a5197605dd449d181a09f99451492699833ffc5577dea5d2192e5e59b52f97b4
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://fast.wistia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-methods: GET, HEAD
last-modified: Mon, 06 May 2024 19:22:13 GMT
etag: "224be5fca75a43afb668d422f2d5e05a"
x-amz-server-side-encryption: AES256
content-encoding: br
content-type: text/javascript
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=3600
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
date: Tue, 07 May 2024 22:53:22 GMT
age: 1973
x-served-by: cache-iad-kjyo7100090-IAD, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 52, 13
x-timer: S1715122403.862846,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 96
asset-version: 28e29ceb2b43efa40a2a9a4feeda1b13bcd24ac3
content-length: 5775
X-Firefox-Spdy: h2
|
|
| pipedream.wistia.com/mput?topic=metrics | 143.204.55.100 | 200 OK | 2 B |
URL POST HTTP/2pipedream.wistia.com/mput?topic=metrics IP143.204.55.100:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subjectpipedream-production-cloudfront-app-cname.wistia.com Fingerprint82:F4:DC:86:7B:C0:65:B9:72:6A:8C:CA:03:C2:E2:91:00:FE:06:FF ValidityMon, 11 Sep 2023 00:00:00 GMT - Wed, 09 Oct 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2213
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
content-length: 2
date: Tue, 07 May 2024 22:53:22 GMT
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
x-envoy-upstream-service-time: 1
server: envoy
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DUUvbABx1tek0aEfufq_zirjgLEyltWqsYIJeqxqMGcnT048D-xJSQ==
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash92848f95b1cbf1ea7e132741c6db6211 e8497f908a9b44a19000c43b49a3e890308179cb c3f8da871f63a1aaa5f62bf91df1e6d7eea1ad903426cd813096e06e4ff52a5c
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 22:53:23 GMT
Last-Modified: Tue, 07 May 2024 21:26:03 GMT
Server: ECAcc (ska/F776)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _RYWeAiqrbQsK8s1Ti-LRO3vaQQUDLg4bu_QKWN_xBby9nWfAsLkNQ==
Age: 5240
|
|
| d2z65klgtz99km.cloudfront.net/css/base-styles.css | 108.157.232.103 | 200 OK | 1.1 kB |
URL GET HTTP/2d2z65klgtz99km.cloudfront.net/css/base-styles.css IP108.157.232.103:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashacf3e6b8ea3f739305ff8b3be1343ba2 da02bf911da1eccb1093bf6a9371a373676b70c5 ef1795cb33007719f76366e64f403a7ffe52bc73e84c55cdf0e08a87bef72b73
GET /css/base-styles.css HTTP/1.1
Host: d2z65klgtz99km.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Fri, 28 Jul 2023 14:10:52 GMT
x-powered-by: PleskLin
content-encoding: gzip
date: Sun, 28 Apr 2024 13:32:47 GMT
cache-control: max-age=2592000
expires: Tue, 28 May 2024 13:32:47 GMT
etag: W/"64c3cc6c-d56"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 471577f2b3efe669f21e138a1621a8ca.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: KYnBWEZy7E5b8aaRrE7BXXI237bhU6WUsRpYYd8skF71yWttqR5MZw==
age: 811233
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&_s=5&tfd=12465 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&_s=5&tfd=12465 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&_s=5&tfd=12465 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 173
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Engagement&tfd=16661 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Engagement&tfd=16661 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z878323495za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=6&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Engagement&tfd=16661 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=8QahbucmE4BBvJEn8GNHMwMdqtbU_XRE9NZ8KlhYZl8cZ_B3gkHLEJfNB2qVEyPjsI2J73sTU8hceHqlzZRRmlSGCr1scoccDwG_jrRhVzB_yfhIUGCctEOXhAqQOjYY
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Tue, 07 May 2024 22:52:38 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 55
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z8811578897za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Engagement&tfd=21664 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z8811578897za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Engagement&tfd=21664 IP216.239.32.36:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BYN6DTYEFQ>m=45je4510v9122066590z8811578897za200&_p=1715122400380&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=985279510.1715122401&ul=en-us&sr=1280x1024&pscdl=noapi&_s=7&sid=1715122401&sct=1&seg=0&dl=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue&dt=%E2%80%9CThe%20A.I.%20Crown%20Jewel%E2%80%9D&en=Engagement&tfd=21664 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://pro.paradigmnewsletters.org
date: Tue, 07 May 2024 22:53:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.getblueshift.com/unity.gif?t=1715122403&e=pageload&r=&z=941313&x=59976d352f424c4b27d325518576b9b2&k=3b587173-0ca5-ec6b-35e2-313f0465a533&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue | 54.184.177.13 | 200 OK | 42 B |
URL GET HTTP/2api.getblueshift.com/unity.gif?t=1715122403&e=pageload&r=&z=941313&x=59976d352f424c4b27d325518576b9b2&k=3b587173-0ca5-ec6b-35e2-313f0465a533&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue IP54.184.177.13:443
Requested byhttps://pro.paradigmnewsletters.org/p/aln_aicrownjewel_0923/LALNZA40/?cake_s1=05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874&h=true CertificateIssuerAmazon Subject*.getblueshift.com FingerprintD1:61:A7:FF:D0:FD:A2:46:9B:FE:0C:A8:F1:8A:A9:24:9B:70:04:65 ValidityWed, 07 Feb 2024 00:00:00 GMT - Fri, 07 Mar 2025 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /unity.gif?t=1715122403&e=pageload&r=&z=941313&x=59976d352f424c4b27d325518576b9b2&k=3b587173-0ca5-ec6b-35e2-313f0465a533&u=https%3A%2F%2Fpro.paradigmnewsletters.org%2Fp%2Faln_aicrownjewel_0923%2FLALNZA40%2F%3Fcake_s1%3D05_181837075_e2f50f7b-6f6d-44c4-959b-e42a1e1cb874%26h%3Dtrue HTTP/1.1
Host: api.getblueshift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pro.paradigmnewsletters.org
DNT: 1
Connection: keep-alive
Referer: https://pro.paradigmnewsletters.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 22:53:23 GMT
content-type: image/gif
content-length: 42
access-control-expose-headers: etag
access-control-allow-origin: https://pro.paradigmnewsletters.org
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
|
|
| verifiedwebpage.com/go?ehash=9e2695808a958f93d92ee0e296fd6ad8&product=33260&ar=55&cid=2617&lid=1610&slhash=ca3d1c910d8285fdc928a0b7af721c0c&mtaid=mpmta&cid2=[s8]&cloudf_filter=1 | 104.18.20.187 | 302 Found | 21 kB |
URL User Request GET HTTP/2verifiedwebpage.com/go?ehash=9e2695808a958f93d92ee0e296fd6ad8&product=33260&ar=55&cid=2617&lid=1610&slhash=ca3d1c910d8285fdc928a0b7af721c0c&mtaid=mpmta&cid2=[s8]&cloudf_filter=1 IP104.18.20.187:443
CertificateIssuerGoogle Trust Services LLC Subjectverifiedwebpage.com FingerprintB6:7C:0D:93:CD:D6:56:A3:74:B9:46:38:F0:C7:A5:31:BC:5F:AF:56 ValidityWed, 10 Apr 2024 21:43:08 GMT - Tue, 09 Jul 2024 21:43:07 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go?ehash=9e2695808a958f93d92ee0e296fd6ad8&product=33260&ar=55&cid=2617&lid=1610&slhash=ca3d1c910d8285fdc928a0b7af721c0c&mtaid=mpmta&cid2=[s8]&cloudf_filter=1 HTTP/1.1
Host: verifiedwebpage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 22:53:17 GMT
content-type: text/html; charset=UTF-8
location: http://470kwc1.com/clk.trk?CID=466111&AFID=430135&SID=3415447649292391424
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=a394aa1b8a57d3e64fe0e44e1e1baab5; path=/
pixel_session_hash_33260=3415447649292391424; expires=Thu, 06-Jun-2024 22:53:17 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_33260=e641dafb16063198372416f3817c95e475050b16907e33960580315daaefa757; expires=Thu, 09-May-2024 22:53:17 GMT; Max-Age=172800
__cf_bm=0Jq1nj297yL_5uOQ1yT0gCIGoXRErwbFIyXUk5M_x.0-1715122397-1.0.1.1-mWz_P94Vq9kMk56GpxqYnaZ5wiEe_7v.Eajad8QN8DuUNPdyKH9AxcTi1peuJy5BFdQB_V8j9gl3vgHtmJ3o5Q; path=/; expires=Tue, 07-May-24 23:23:17 GMT; domain=.verifiedwebpage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8804c9044d95b518-OSL
X-Firefox-Spdy: h2
|
|