I’ve tried. Check how large the list got before I completely blocked the domain a couple years ago. And it STILL let stuff through, as they constantly add more crud that infests the pages. The focus isn’t on the content, it’s on the revenue… and they push hard on the revenue. I bet every single module has an extensive list of trackers attached.

! https://*.fandom.com
fandom.com###WikiaBar
fandom.com##.mcf-wrapper
fandom.com##.wds-global-footer__main
fandom.com##.message
fandom.com##.global-navigation__top
fandom.com##.is-visible.fandom-sticky-header
fandom.com##.wds-global-footer
fandom.com##.page-side-tools__wrapper
fandom.com##.featured-video__wrapper
fandom.com##.discord-module.rail-module
fandom.com###mixed-content-footer
fandom.com###SurveyModule
fandom.com##.global-navigation
fandom.com##.wikia-bar-anon.wikia-bar
fandom.com##.mw-parser-output > div:nth-of-type(2)
fandom.com###highlight__main-container

Every annoying thing ever invented is embedded in every single fandom page. Ads, twitch streams, ads, personality polls, ads, content gating behind login, ads, sidebars, ads, popups, ads, “share with facebook”, ads, “Tweets from thisguy”, ads, “Check us out on tiktok”, ads, ads, ads and some more ads…

I think the only four I have set to block are reddit, twitter, facebook’s products and fandom. A shame those are always the top 10 results from any search.

I’m going to need a source on both those claims to better understand how they can happen.
For an ISP to mitm, they’d need to sign and send the website certs themselves, and that’d show up in most browsers as a big red flag.
As far as Facebook goes, I was sure that’s just javascript and tracking cookies that they’re paying websites to use. No mitm there.

Maybe I’m just not getting it, but if we’ve mostly transitioned to HTTPS and encrypted DNS… what exactly can the ISP learn other than the address they serve and MAC of your gateway? Is this report for those who use their ISP’s DNS?