When I go back to a tab playing a video which I have left for another tab, this happens:

Norton says it is blocking access to :
moz-extension://27cfeb84-a2b4-4f13-a514-9afeb1338aad/content/ui/blockedPage.html?originalURL=https : //snorefamiliarsiege . com/06/e2/7d/06e27d87c0b1990f2822e5e6d73650c1 . js&blockPageType= IPS&IpsSignatu re=3134 9_31349
when the actual url of the video's page is :
https :  // gregwyatt . net/what-is -a-woman-video-by-matt-walsh/
and that is whether the video is paused or playing in my absence.

[Edit: Removed hyperlink to a potentially malicious page to conform with the Participation Guidelines and Terms of Service]

Continue to the site

https://snorefamiliarsiege.com

Malicious Site Blocked! = Norton Safe Web Intrusion Protection System (IPS) block

IPS plays a critical role in filling holes created by bugs in operating systems, browsers and applications.  IPS detects and helps stop exploitations of security vulnerabilities. 
IPS has been a part of Norton Device Security solutions for some time, but now that it is also a part of the Norton Safe Web browser extension, the content of suspicious web pages, advertisements and popups are now cross-examined in an additional way, giving you even more protection when you browse the Web.

https://us.norton.com/feature/safe-web

https://gregwyatt.net/what-is-a-woman-video-by-matt-walsh/

https://safeweb.norton.com/report/show?url=https://gregwyatt.net/ = Untested

https://safeweb.norton.com/report/show?url=https://gregwyatt.net/what-is-a-woman-video-by-matt-walsh = Untested

https://snorefamiliarsiege.com/06/e2/7d/06e27d87c0b1990f2822e5e6d73650c1.js&blockPageType=IPS&IpsSignature=31349_31349

Malicious Site: Malicious Domain Request 21
https://www.broadcom.com/support/security-center/attacksignatures/detail?asid=31349

Malicious Site: Malicious Domain Request 22
https://www.broadcom.com/support/security-center/attacksignatures/detail?asid=31350

https://snorefamiliarsiege.com

https://safeweb.norton.com/report/show?url=https://snorefamiliarsiege.com = Warning -> Malicious Sources/Malnets

Malicious Sources/Malnets
Sites that host or distribute malware or whose purpose for existence is as part of a malicious network (malnet) or the malware ecosystem. Malware is defined as software that takes control of a computer, modifies computer settings, or collects or reports personal information without the permission of the end user. It also includes software that misrepresents itself by tricking users to download or install it or to enter personal information. This includes sites or software that perform drive-by downloads; browser hijackers; dialers; any program that modifies your browser homepage, bookmarks, or security settings; and keyloggers. It also includes any software that bundles malware (as defined above) as part of its offering. Information collected or reported is "personal" if it contains uniquely identifying data, such as email addresses, name, social security number, IP address, etc. A site is not classified as malware if the user is reasonably notified that the software will perform these actions (e.g., it alerts that it will send personal information, be installed, or that it will log keystrokes).

Interesting.  That substitute link was embedded in the tab, and occurred no matter what site was brought up, if tab was departed and then returned to.  Deleting the tab solved it.   I'd love to know how that was done.  I had deleted all the cookies and links.