Report - letsdefend.io/

Report Overview

Submitted URL
letsdefend.io/
IP
172.67.72.235
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-05 22:19:12
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
letsdefend.io	395543	2020-07-05T22:29:50Z	2023-02-04T19:14:45Z	8.7 kB	392 kB	104.26.15.61
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	8.9 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	3.1 kB	6.3 kB	216.58.211.3
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.4 kB	6.1 kB	143.204.42.88
rudderstack-control-plane.cdp.prod.data.typeform.com	84166	2022-02-15T18:37:23Z	2023-03-13T10:55:38Z	1.4 kB	1.2 kB	34.233.157.77
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
cdn.paddle.com	35531	2016-05-11T08:35:18Z	2023-03-13T09:07:54Z	1.6 kB	23 kB	172.66.43.196
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.84.241.69
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	370 B	21 kB	216.239.32.178
cdn.rudderlabs.com	19160	2020-11-19T23:24:42Z	2023-03-13T07:41:22Z	382 B	138 kB	54.230.111.7
rudderstack.cdp.prod.data.typeform.com	78304	2022-02-16T09:13:15Z	2023-03-13T10:55:38Z	3.1 kB	1.1 kB	3.228.83.197
embed.testimonial.to	763619	2021-01-13T04:51:24Z	2023-03-08T22:50:58Z	1.9 kB	46 kB	216.24.57.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	1.6 kB	35 kB	34.120.237.76
testimonial.to	367646	2020-12-19T08:26:38Z	2023-03-12T23:27:54Z	391 B	915 B	172.66.40.60
in.hotjar.com	1746	2018-10-22T19:15:59Z	2023-03-13T05:12:52Z	480 B	287 B	52.19.186.201
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	337 B	1.4 kB	35.241.9.150
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	383 B	46 kB	142.250.74.168
embed.typeform.com	30985	2018-06-21T07:54:35Z	2023-03-13T09:22:21Z	847 B	1.2 kB	54.230.111.81
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	996 B	87 kB	142.250.74.35
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	455 B	11 kB	104.17.24.14
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	673 B	444 B	216.239.32.36
script.hotjar.com	887	2020-11-05T17:23:46Z	2023-03-13T07:54:54Z	382 B	69 kB	143.204.55.96
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	843 B	2.1 kB	142.250.74.106
images.typeform.com	54983	2018-03-29T01:15:12Z	2023-03-13T10:55:34Z	1.5 kB	13 kB	143.204.55.84
vars.hotjar.com	1014	2020-11-05T11:13:14Z	2023-03-12T19:56:22Z	503 B	1.7 kB	143.204.55.105
font.typeform.com	53208	2018-09-01T14:35:37Z	2023-03-13T07:58:23Z	1.7 kB	295 kB	54.230.111.25
vc.hotjar.io	2334	2019-04-16T12:33:25Z	2023-03-13T05:49:45Z	418 B	368 B	54.230.111.64
renderer-assets.typeform.com	46243	2020-10-28T10:45:33Z	2023-03-13T09:00:37Z	613 B	747 B	143.204.55.76
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-13T05:12:51Z	375 B	630 B	143.204.55.37
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-13T05:21:46Z	338 B	729 B	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.2 kB	93.184.220.29
testimonialto-default-rtdb.firebaseio.com	911718	2021-01-21T07:59:48Z	2023-03-08T22:51:00Z	582 B	252 B	34.120.160.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-05 22:19:44	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-02-05 22:19:44	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-02-05 22:19:45	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-02-05 22:19:45	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	letsdefend.io/	41 B	2023-03-13	2023-09-17
Pretty URL letsdefend.io/ IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-09-17 16:09:12 Times Seen3 Hash fb8a56ff3b9ea2e6023d17dfaa0dabcf 9c457861fb26e07ca4889e66bb5c4700bda312ec be26e5d511dd5929231fc88e7f1a1dd0d54c6fa2b76c4c1ba03e26652a5a4e65 Loading...

	http:blank	580 B	2023-03-13	2023-03-13
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash c503af9ec0696ff991f4f4ef45b12d05 7c490eede6d9daa1f6e6a3ad20b7e2f308020a77 525cb4137946ac97c09c9c5fc15c9284a658cace9c405ac7b79263e2e61a7a84 Loading...

	embed.testimonial.to/static/js/12.d0c81f7a.chunk.js	709 kB	2023-03-12	2024-01-27
Pretty URL embed.testimonial.to/static/js/12.d0c81f7a.chunk.js IP 216.24.57.3 ASN #397273 RENDER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:47:44 Last Seen2024-01-27 16:54:54 Times Seen87 Hash 82ecf1941a9303575662d3b0a5271f26 08f7898f933b5ee9ccde611602672dddd1dd8922 114184e98a91ce0f56db65cc632b1e833087bb55630659fb7c9bc9f48df1cc3b Loading...

	form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100	1.7 kB	2023-03-13	2023-03-13
Pretty URL form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash e65e0416b4956ed17bb28bcb39520fe2 0679e457cedbc5baa99d4131c10236a10164d88e a13ea39428c644f4b05bd4119010dbb3f7dba8b2fedcba8546e1f5915fc55f6f Loading...

	renderer-assets.typeform.com/modern-renderer.f17dcdde8bca6f807d17.js	778 kB	2023-03-13	2023-03-13
Pretty URL renderer-assets.typeform.com/modern-renderer.f17dcdde8bca6f807d17.js IP 143.204.55.76 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:52:06 Last Seen2023-03-13 17:58:56 Times Seen1 Hash 406ebbd19adbb7a29b72f01a9709758e 610525a4fe0025f6f3ebd50ee762b182a2060f41 341429d886e900aa6337d2ea6e9641f734dc63b949306268c473a09c37f71f34 Loading...

	renderer-assets.typeform.com/vendors~form.22fd9ca624d0bc5beb1d.renderer.js	635 kB	2023-03-13	2023-03-13
Pretty URL renderer-assets.typeform.com/vendors~form.22fd9ca624d0bc5beb1d.renderer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:52:06 Last Seen2023-03-13 17:58:56 Times Seen1 Hash a507f4e93fcde61c33171b4328ba3f19 7e70dfae7752e034ed456f7fec1886aa150e6a53 c82acd3c3ee62f2d19ea5346343127b81b34e1cade8f59031e080d3e6c52e378 Loading...

	letsdefend.io/	185 B	2023-03-13	2023-09-17
Pretty URL letsdefend.io/ IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-09-17 16:09:12 Times Seen3 Hash d1b5fae782915f4a69a3361a39a60eb0 9b198e472ac884bc010ff5f56337b8b59de4c10c 92027872b1d8f4964dc6a682c6f10b8eedbf14dc446be98f49a3b4979ad181ce Loading...

	letsdefend.io/	178 B	2023-03-13	2023-09-17
Pretty URL letsdefend.io/ IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-09-17 16:09:12 Times Seen3 Hash a8c73595e0945a8b7ab0824440eeb723 1466dceefbcc7a511f3570dc637384b26e303aaf b1f520dc35d3748c43473a7e2a8e6f45b3a00e8f7ee4a8d6ea458ee1e14343b8 Loading...

	form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100	79 kB	2023-03-13	2023-03-13
Pretty URL form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:52:06 Last Seen2023-03-13 21:24:28 Times Seen1 Hash 99c3bbc88b1eada02f039d27408919ff 4125fcac3678ec9ffb7e21b53420b993e938cdb4 efd59ca997bcd446511a837b8a14db976d8a5d2304d8cf7b96ba6e3272af15ec Loading...

	embed.testimonial.to/static/js/2.583cf549.chunk.js	299 kB	2023-03-12	2024-01-27
Pretty URL embed.testimonial.to/static/js/2.583cf549.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 23:36:23 Last Seen2024-01-27 16:54:55 Times Seen84 Hash 3419b32804dabb46c48d48afc58de278 1d8466493979c522404371ab340b01b6a913ae45 3096511eb796ea54a7dc050d0e2418c512f884d56e57c6fa1d5d447c3143e56e Loading...

	embed.testimonial.to/static/js/t-1.4249427a.chunk.js	302 kB	2023-03-13	2024-01-27
Pretty URL embed.testimonial.to/static/js/t-1.4249427a.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2024-01-27 16:54:55 Times Seen51 Hash bcc627e7ba256f6b5ee8dd138aa54ce0 ff641cf7001195824f2d207f91047e33c1d091e8 50099a62566a03531e6b64f601ee0aadd8deb1a3bfc6ee88ba722681f8f67740 Loading...

	cdn.rudderlabs.com/v1/rudder-analytics.min.js	461 kB	2023-03-13	2023-03-13
Pretty URL cdn.rudderlabs.com/v1/rudder-analytics.min.js IP 54.230.111.7 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:09:58 Last Seen2023-03-13 17:58:56 Times Seen1 Hash a5276d3897dc2eb367139d09a2ba84cf a119149dade5c0239b47e2f78d3c84d998070718 7f05657fb74f22b24c577ddb26214a3d379b96c91c505e26d1ffc362b5e46d8e Loading...

	letsdefend.io/	470 B	2023-03-13	2023-09-17
Pretty URL letsdefend.io/ IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-09-17 16:09:12 Times Seen3 Hash e7953aea500540ee1e0bca76e566b1aa 7a0b678fcd1f3f6c969571efddf93da199622c10 64860c942c7cedac5aa7ec3db187a1c702e400a45adcb2e2c2356f9395e20977 Loading...

	letsdefend.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-19
Pretty URL letsdefend.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 07:47:47 Times Seen54540 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html	2.3 kB	2023-03-13	2023-03-14
Pretty URL vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html IP 143.204.55.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:50:52 Last Seen2023-03-14 14:54:55 Times Seen1 Hash 9dfb5fc1a14b81a3b18b479f63bb8ab3 2720e78ed93ca88089984dacdaaeae0e95a321d1 f7be6f445f6d0ff732728c98ddf542577272191c10478c1edf9913612de40f3b Loading...

	embed.testimonial.to/static/js/main.2ca58e8f.chunk.js	28 kB	2023-03-12	2024-01-27
Pretty URL embed.testimonial.to/static/js/main.2ca58e8f.chunk.js IP 216.24.57.3 ASN #397273 RENDER Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:47:44 Last Seen2024-01-27 16:54:54 Times Seen86 Hash abad49421214753e7a86e934a39dde8f 6d8616d4b1de3a967e32bd35f5dbc540241f3daa 373466520bb3c10974a4ef8e4391007da4e5fbef9102599b899a9cf85ea36572 Loading...

	form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100	25 kB	2023-03-13	2023-03-13
Pretty URL form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash 8d19b3eeaff1756720fb20fe4431ccfc 26694effaac182e5f53880f276d5ded69fbf2c4d e19e063422b840a18c0ab8c9337342c9d6135416b657db2a2fa7213df00360c2 Loading...

	embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff	3.6 kB	2023-03-13	2023-04-05
Pretty URL embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:20:35 Last Seen2023-04-05 01:49:10 Times Seen5 Hash acfb74b3bd0148d150b3e23cdc8882a8 7d7b1fb078bad1435b759a0c3948d5d6a972728c 7be6754cd54a95c481b0c9b2d71e5f6903e9176bcf04bf25c32fc907002fac21 Loading...

	embed.testimonial.to/static/js/1.8cf902ed.chunk.js	421 kB	2023-03-12	2024-01-27
Pretty URL embed.testimonial.to/static/js/1.8cf902ed.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:47:44 Last Seen2024-01-27 16:54:54 Times Seen84 Hash 8b2c9f15879d66181523530a7fc84add 68b4020ddc7c616122f870e78f8fe986d9c8ee24 b5512f6f64fb24b7d5ec59040acf3722b3f89f51a88dfb5e16774117802a0490 Loading...

	renderer-assets.typeform.com/form.5172d68014c0e4b2e651.renderer.js	233 kB	2023-03-13	2023-03-13
Pretty URL renderer-assets.typeform.com/form.5172d68014c0e4b2e651.renderer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:52:06 Last Seen2023-03-13 17:58:56 Times Seen1 Hash 2182e489b172296a45af85e75f2f576e e24c668db945679608e471c38335eeff928e2319 bb2dcdf11bff78d76b6e392199ff872cb0e45dba2a306770069b52d1a51ef5b2 Loading...

	testimonial.to/js/iframeResizer.contentWindow.min.js	24 kB	2023-03-10	2024-01-27
Pretty URL testimonial.to/js/iframeResizer.contentWindow.min.js IP 172.66.40.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:54:52 Last Seen2024-01-27 16:54:54 Times Seen158 Hash c7f647dac1366885319ea03bd1778ead 2cf83d43d4af28dcfa5759077b0fdf91f40589b5 9b7953240e929014c02864a8326eca159e2fdd15919392368d85bd853b0559e8 Loading...

	letsdefend.io/	1.4 kB	2023-03-13	2023-03-13
Pretty URL letsdefend.io/ IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash ef245f2fdccbaef5462e21c7b1b295dd f5611c90e060ac5b3fc073e5ff223bb43a99b32d 7da275e616c5d1fd026ce662a349274d63e86fa7bf40b00e02627be77b7d55dd Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 08:14:54 Times Seen36954876 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.hotjar.com/c/hotjar-2258091.js?sv=6	8.6 kB	2023-03-13	2023-03-13
Pretty URL static.hotjar.com/c/hotjar-2258091.js?sv=6 IP 143.204.55.37 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash 0e516f69e76850445404b4f8ae50d128 6d11777d87415dc38810f9f697134a9cab0ca436 0ddc9541f8d0793898d752d1369d28ea1e2830463a24411f92b9781fa2b75a39 Loading...

	embed.testimonial.to/static/js/0.ba7ff261.chunk.js	23 kB	2023-03-12	2024-01-27
Pretty URL embed.testimonial.to/static/js/0.ba7ff261.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:47:44 Last Seen2024-01-27 16:54:53 Times Seen85 Hash 7fec8b50bfd030a65c5f768b1b01addc 1de9e2dbb11ecea42b3b67e6a583fd2fd53a1f43 5394803ce3158a686a4ba7739b417701cd4ab063a333315c07865134648a9f11 Loading...

	letsdefend.io/	2.3 kB	2023-03-13	2023-09-17
Pretty URL letsdefend.io/ IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-09-17 16:09:12 Times Seen3 Hash 4c6317848c1a755f6968945a94b25ea3 93a705443035db1d87365c52038493ded1330fe8 90dfac0ab9e92f8ebc0abc491622d0cf9d68b6ee5399f50bda0bc9df341647bc Loading...

	letsdefend.io/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675627200	35 kB	2023-03-13	2023-03-13
Pretty URL letsdefend.io/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675627200 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash 3bcee297348097185a299033c854867f 88125b06b2f4958f6d57cc15caa7b3fac1648fb3 b95e0d10bb3a5fc4a27bc19e1c1cf40532de65ee0d013fbeb05717756068d01e Loading...

	www.googletagmanager.com/gtag/js?id=UA-180235701-1	116 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-180235701-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash d439884a358326501e987ba26a0deef9 18220a2c4d777856fe717590b3fdf4983de91043 f3ead8e80b772fc4dd893c9abeab987d199afc8be76aa5a59e3a26f6e3419844 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.32.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	http:blank	812 B	2023-03-13	2023-03-13
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-03-13 17:58:56 Times Seen1 Hash b9a0dfc970b4198fdb6870a8e6762753 818e30f1cb896f70dec8f194b492541d65cb87b9 1f270bbe6d51de97327a218cb8fcdf93440ff455f7ab58e050ceb45d24a558c9 Loading...

	embed.testimonial.to/static/js/13.a6c98f48.chunk.js	13 kB	2023-03-12	2024-01-27
Pretty URL embed.testimonial.to/static/js/13.a6c98f48.chunk.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:47:44 Last Seen2024-01-27 16:54:54 Times Seen53 Hash 1d99629e650989c0a6f71c7b36e3550c c929f00acba3ec731e476e2e7ff55a5501258aa6 6cecaf0dfc134f9bb282866ff997efd1bf908fcdf5dddccb435fadbf2dfc754a Loading...

	renderer-assets.typeform.com/vendors~form~blocks-validation-phone_number~blocks-renderer-contact_info~blocks-renderer-phone_number.0c35a1c1193305df993f.renderer.js	110 kB	2023-03-08	2023-06-30
Pretty URL renderer-assets.typeform.com/vendors~form~blocks-validation-phone_number~blocks-renderer-contact_info~blocks-renderer-phone_number.0c35a1c1193305df993f.renderer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:45:55 Last Seen2023-06-30 16:21:47 Times Seen43 Hash 84ed4a4c21dda7b34914967639b12068 7c75a402b6d157f1fad6ba6dd536c8ee30e16b02 c683a0b24c9732c0eaa4f0e9552d815dde7e4e5eea1270da99e81dd703c950dc Loading...

	letsdefend.io/js/main.4c7f84ac44dc.js	284 kB	2023-03-13	2023-09-17
Pretty URL letsdefend.io/js/main.4c7f84ac44dc.js IP 104.26.15.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 17:58:56 Last Seen2023-09-17 16:09:12 Times Seen4 Hash 4c7f84ac44dc77b381529fad08b0292a de9a52de8d9ec3206a1bbd058894d39e92a74d53 c754961cd25b2abdb5a3892758e9b3502325782efe0d48d4b00410c0e0a53171 Loading...

	embed.typeform.com/next/embed.js	50 kB	2023-03-13	2023-03-14
Pretty URL embed.typeform.com/next/embed.js IP 54.230.111.81 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:30:22 Last Seen2023-03-14 15:42:52 Times Seen1 Hash fb1d68b72178df5229dcca73466ecfc1 fbecc440d4728ff3b323e604efbc2580e8a0b9c8 72d73a34c6fdfa73c7ca5332d99097bcc8a81e2e5a827c552cf1847bfbe38636 Loading...

HTTP Transactions (94)

	URL	IP	Response	Size
	letsdefend.io/	104.26.15.61	301 Moved Permanently	230 B
URL HTTP/1.1 letsdefend.io/ IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 230 B (230 bytes) Hash 3e729acd6dec727442eea0ff2dd11586 f01405a30fbc933646fd7c39ba80003d07e15242 84050b7294c77fc24d059bb2452557b6296779ae3798ec88ce32461ce9760477 HTTP Headers `GET / HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Sun, 05 Feb 2023 22:19:01 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: keep-alive Location: https://letsdefend.io/ CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zoY%2FamNjZlot53b1vbRXH%2BpI6kZcZWr7ayMH1j%2FYk05kfiq9iv0RIGMGQ%2BgjwVXB%2F1rJ0hDpq%2BNgtOJJh6ScIs3yZQsOPa6afqt4rYkHbU2UIRb5ZFc0WN9Q38v3J7k%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 794f0672ba43b52d-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1cdc095521e9ee2606059be447d1fdd5 02b5d0a5b5823e2338daf7e144700babe2a213af 8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8674 Expires: Mon, 06 Feb 2023 00:43:35 GMT Date: Sun, 05 Feb 2023 22:19:01 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66" Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12473 Expires: Mon, 06 Feb 2023 01:46:54 GMT Date: Sun, 05 Feb 2023 22:19:01 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 05 Feb 2023 21:33:58 GMT content-type: application/json age: 2703 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash fb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64" Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18670 Expires: Mon, 06 Feb 2023 03:30:11 GMT Date: Sun, 05 Feb 2023 22:19:01 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 3v/O43bFktn2t1+ebFCKu1vs9DRpvtN4G5KFdyCPQ+SXcACNOuG7cQBaCtdzbd0lncwTyTbXOzA= x-amz-request-id: 64YH3QCS4VWF3XQY content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 05 Feb 2023 21:24:39 GMT age: 3262 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 05 Feb 2023 22:19:01 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	e1.o.lencr.org/	23.36.76.226	200 OK	346 B
URL HTTP/1.1 e1.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 346 B (346 bytes) Hash 0b5bde4b21fe58683f93d755b314ef35 09a354ffe493254998f3c59c459e4b085bdd6aaa 16ff233f227d22117213964494a7febd8a04311c84b9bc68d27dc97bfcf22c7f HTTP Headers `POST / HTTP/1.1 Host: e1.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 346 ETag: "16FF233F227D22117213964494A7FEBD8A04311C84B9BC68D27DC97BFCF22C7F" Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3723 Expires: Sun, 05 Feb 2023 23:21:04 GMT Date: Sun, 05 Feb 2023 22:19:01 GMT Connection: keep-alive`

	letsdefend.io/images/landing-v2/3-steps-letsdefend.png	104.26.15.61	200 OK	145 kB
URL HTTP/2 letsdefend.io/images/landing-v2/3-steps-letsdefend.png IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type PNG image data, 1280 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 145 kB (145101 bytes) Hash 2b4228aa6bbc939f815291eb672846fc 527a5b6d954d4dd3bbde0ea017a7ea25da9eda41 74d14f8a0b7f047daf68ee223a9640010c88301fe3f4ace92d9cceeb048c0038 HTTP Headers `GET /images/landing-v2/3-steps-letsdefend.png HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: image/png content-length: 145101 last-modified: Tue, 09 Aug 2022 18:47:43 GMT etag: "236cd-5e5d35e26603b" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2BGFg4WvGh3mHul51gLm55cLw0xAB3YdrXRsioQOSCRBit9SW2Xh2TuDbJhBSpQqPLmFJHEfh8fJlSgBpmQ6kyjml0vQ7QCusCwoW6dntj9PW%2BzngNE3vTeDTcstkng%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06772ff70b59-OSL X-Firefox-Spdy: h2

	letsdefend.io/js/main.4c7f84ac44dc.js	104.26.15.61	200 OK	88 kB
URL HTTP/2 letsdefend.io/js/main.4c7f84ac44dc.js IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size 88 kB (87794 bytes) Hash ecae6bf85d64f98174e48cda4398db70 ed48c73ae17c9cb4f45153002616db23f2c4f05c 53b0d5039727f396387ff4422a7316f22216eb77c66fbeec3bc902d5d32e9d21 HTTP Headers `GET /js/main.4c7f84ac44dc.js HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: application/javascript last-modified: Tue, 09 Aug 2022 19:00:24 GMT etag: W/"4555e-5e5d38b8025d6-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BsK9DMJKM7uP3ATX0nFlmnY3m1jPK5rivNxAI5AJ0Yq7AVxI%2FBjn8jmw5K40mujCJJ7QnHB05pegZEp1wUsIeHQynDv%2BPPNOkjzroOXP8SXm%2BH1StP1zP5PFt0MO0yg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 794f06772ff00b59-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 26a15a1b880ec1026360b696b1c27074 fd35f80a1cf599da2a8e68a44477465a580440a5 a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 26a15a1b880ec1026360b696b1c27074 fd35f80a1cf599da2a8e68a44477465a580440a5 a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	letsdefend.io/css/main.02cdf5a5db4d.css	104.26.15.61	200 OK	58 kB
URL HTTP/2 letsdefend.io/css/main.02cdf5a5db4d.css IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 58 kB (58451 bytes) Hash c021a3a50145768f75ad1e90073a9210 59ae82a28aaa00563f97f8963db7528341754bea 5aef7d549481484d1d06fe40e342ae3a05115af12b8c6d7fee75e8c27607b416 HTTP Headers `GET /css/main.02cdf5a5db4d.css HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: text/css last-modified: Tue, 09 Aug 2022 19:00:15 GMT etag: W/"6d108-5e5d38af69fa8-gzip" vary: Accept-Encoding cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aMgFvvDkyirH4%2FKmJUdywxV1RRaZN4mYy3ZqyTX8iPIgSwxXrnwlmGNmqyv1nz5uR76nEVgmWkItRBjkrzXIhgb4ZNJOZ1tT2XRL%2BdKX1aNnJ7ZwBCAPYGgmY7Kot%2F0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 794f06772fef0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=UA-180235701-1	142.250.74.168	200 OK	45 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-180235701-1 IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1759) Size 45 kB (44891 bytes) Hash 0f76d572795d16b9832912f3a2c2b674 1bc02490dbdb3d03e84d693087651cf3ca6c9ec0 76857ebd99f99ce8d7bc1bbe3fd0eb5198557128c1ddbfe04b220a4bf60b4a43 HTTP Headers `GET /gtag/js?id=UA-180235701-1 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Sun, 05 Feb 2023 22:19:01 GMT expires: Sun, 05 Feb 2023 22:19:01 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 44891 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 26a15a1b880ec1026360b696b1c27074 fd35f80a1cf599da2a8e68a44477465a580440a5 a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css2?family=Archivo+Black&family=Poppins:wght@300&display=swap	142.250.74.106	200 OK	824 B
URL HTTP/2 fonts.googleapis.com/css2?family=Archivo+Black&family=Poppins:wght@300&display=swap IP 142.250.74.106:0 ASN #15169 GOOGLE File type data Size 824 B (824 bytes) Hash 161953cbb912280e318bce36ec0d3216 099ae438d46d628a3a0d02c7e1b19b596117316f e0d84811d3884488b12483581191ae7e817a4a749c6e8f181664d526f3ed4f8c HTTP Headers `GET /css2?family=Archivo+Black&family=Poppins:wght@300&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 05 Feb 2023 22:19:01 GMT date: Sun, 05 Feb 2023 22:19:01 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9206c3ba6d5a17d62244c438fd03496e 069e8257aebe618953434b1299d065540125a512 937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.paddle.com/paddle/assets/images/health-check.gif?_=1675635584022	172.66.43.196	200 OK	35 B
URL HTTP/2 cdn.paddle.com/paddle/assets/images/health-check.gif?_=1675635584022 IP 172.66.43.196:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash 28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015 HTTP Headers `GET /paddle/assets/images/health-check.gif?_=1675635584022 HTTP/1.1 Host: cdn.paddle.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: image/gif content-length: 35 cf-bgj: imgq:85,h2pri cf-polished: status=not_needed etag: "28d6814f309ea289f847c69cf91194c6" last-modified: Fri, 03 Feb 2023 14:07:01 GMT via: 1.1 208ed8b46a45d58d14b6e0be1aab3dac.cloudfront.net (CloudFront) x-amz-cf-id: Ip41knxGHWd0saYEgtM65Kn5FcVgdyWKvMzSzWhOPsALL7rux0mKKw== x-amz-cf-pop: ARN1-C1 x-cache: Hit from cloudfront x-amz-replication-status: COMPLETED x-amz-server-side-encryption: AES256 x-amz-version-id: Nt.m8hI3JxCpHjpK8FAeeYI.8ZZMGd.u cf-cache-status: HIT age: 6320 expires: Mon, 06 Feb 2023 02:19:01 GMT cache-control: public, max-age=14400 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 794f0678ed60b518-OSL X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	143.204.42.88	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.88:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash f03c3fdba89c3d499da474edfffbe599 26f756b6129977a140f24ac2ee526a6564d6d840 2c1565ff6e0bfd317dafce1a1e09217bcf2cbfaf8bfa34115571248d2c50bc53 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 05 Feb 2023 22:19:01 GMT Last-Modified: Sun, 05 Feb 2023 20:40:34 GMT Server: ECS (nyb/1D27) X-Cache: Miss from cloudfront Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Ckko6RZgKhnwAPzJPiSOHZrJBPAcb287urPtS3SrtgJ_FGXIRpUJ3w== Age: 5907`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698" Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3160 Expires: Sun, 05 Feb 2023 23:11:41 GMT Date: Sun, 05 Feb 2023 22:19:01 GMT Connection: keep-alive`

	embed.typeform.com/next/embed.js	54.230.111.81	304 Not Modified	0 B
URL HTTP/2 embed.typeform.com/next/embed.js IP 54.230.111.81:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /next/embed.js HTTP/1.1 Host: embed.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site If-Modified-Since: Mon, 30 Jan 2023 10:11:16 GMT If-None-Match: W/"fb1d68b72178df5229dcca73466ecfc1" TE: trailers` HTTP/2 304 Not Modified last-modified: Mon, 30 Jan 2023 10:11:16 GMT x-amz-version-id: wu8VpFEwiMIutFky5Rky_ouuxZmoV68D server: AmazonS3 date: Sun, 05 Feb 2023 22:14:26 GMT etag: W/"fb1d68b72178df5229dcca73466ecfc1" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 0qrKqcQN7Y_1ESsFmX6F3pQI0MxDDq1I4kIxfoPxfOvkp-2so5FWmg== age: 277 cache-control: public, max-age=0, must-revalidate X-Firefox-Spdy: h2

	letsdefend.io/static/img/letsdefend-logo.png	104.26.15.61	200 OK	11 kB
URL HTTP/2 letsdefend.io/static/img/letsdefend-logo.png IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data Size 11 kB (11147 bytes) Hash 48fcba478ac786acc7607e00f73bb1e5 2b596dc5509bde57d1910894c635bd829efbf232 d89dbfea5350d060392891790f7dcea1bebb5891652a793e1dd1c3d22e1fa6b8 HTTP Headers `GET /static/img/letsdefend-logo.png HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/png content-length: 11147 last-modified: Mon, 24 Jan 2022 14:45:52 GMT etag: "2b8b-5d655067b4c2e" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZdOn0Oe2psQHK8IA0wtFR7UXr8KPG4yCr6rrKb0D3nA68xIflhgi7WqdIieAvZqNymWiKuL8zg%2FpmbM1SC%2FuQTxu9Z6ZhvY6X1ydsK7cqLkNVYSLhJg8h8nuPsYTiz0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f067989fb0b59-OSL X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 87f4d5a26d06de12da102e0876bf96c8 bcbdf7cfde807360ec9666a26960b34097a164b6 8b6151bd884109553e08aab8c9a087cfb7f055f7950e28fe90adb82986bc5e43 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8B6151BD884109553E08AAB8C9A087CFB7F055F7950E28FE90ADB82986BC5E43" Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14994 Expires: Mon, 06 Feb 2023 02:28:56 GMT Date: Sun, 05 Feb 2023 22:19:02 GMT Connection: keep-alive`

	letsdefend.io/images/landing-v2/DeloitteLogoWhite.png	104.26.15.61	200 OK	2.5 kB
URL HTTP/2 letsdefend.io/images/landing-v2/DeloitteLogoWhite.png IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type PNG image data, 328 x 62, 8-bit colormap, non-interlaced\012- data Size 2.5 kB (2515 bytes) Hash be63e041f2bb9a3bef9fac10648e054a d17d4cdf2dd3ddb6a749a3ed111e7d092305638b 7c6c1c4286a60869949ce7cecb3da35e12c60efe1593866451fb1fe54a33cf83 HTTP Headers `GET /images/landing-v2/DeloitteLogoWhite.png HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/png content-length: 2515 last-modified: Tue, 16 Aug 2022 07:01:16 GMT etag: "9d3-5e656508c65c9" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KZdPnWufWacT7VuCk92ec5oy%2FrRNkp2ux6Z9emD778HSG%2BUNsJ6Rg71LrXbWBTh1mCJmE6f8ILcUiZN1Ubf4zFOvhQ9y5fb%2FvwNtXVQLGHbYHJpx0EDeAM1sRRLQkFs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a0a0b59-OSL X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	letsdefend.io/images/landing-v2/Hepsiburada_logo_official.svg.png	104.26.15.61	200 OK	3.9 kB
URL HTTP/2 letsdefend.io/images/landing-v2/Hepsiburada_logo_official.svg.png IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type PNG image data, 282 x 48, 8-bit colormap, non-interlaced\012- data Size 3.9 kB (3935 bytes) Hash 039bd559825f769101a127558a1b6e10 f101738c4d898607e956cd880fcdc559c1f328b1 bf73eb78d10b853a6cd6b03647f8d69301258f5812f2dda3e2e5274d4fc17b05 HTTP Headers `GET /images/landing-v2/Hepsiburada_logo_official.svg.png HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/png content-length: 3935 last-modified: Tue, 16 Aug 2022 07:01:16 GMT etag: "f5f-5e6565091e428" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W81f6l1WmlVC35SOgOga3TH%2Fr8brGo%2FvpSp222i4rmejNQDJoY3Fpt46j9sLP0XLaFoP822zry7N06HMft2zi0VMknhsJXlAdnllYZFfMKDilqxLCa9yh%2BC5xbuFG9g%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a0b0b59-OSL X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/Banco_Santander_Logotipo.svg.png	104.26.15.61	200 OK	3.1 kB
URL HTTP/2 letsdefend.io/images/landing-v2/Banco_Santander_Logotipo.svg.png IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type PNG image data, 238 x 42, 8-bit colormap, non-interlaced\012- data Size 3.1 kB (3123 bytes) Hash 270aad2a782e9339aff8bdfd4f2bbc9f 20fc5d75fdf71ee1e82a9b914d59210f72925320 fadc6036d0d5e1bc468ef41f2aaf0769cde9cb52cd9d2ead5865e9da23b5cc9f HTTP Headers `GET /images/landing-v2/Banco_Santander_Logotipo.svg.png HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/png content-length: 3123 last-modified: Tue, 16 Aug 2022 07:01:16 GMT etag: "c33-5e6565089b639" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qcta%2FnOR1XcidAPytzO2bFiqlUQSNFAlzQJtexlt7IyKzv3WUwDHiiDpqTdVOVTJUR44COhsDz1zwSYqUsPwO2uNUMOGDWofaHKAQHd3%2B02eHFAVbTNrtsff2b3mFaM%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a0e0b59-OSL X-Firefox-Spdy: h2

	fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2	142.250.74.35	200 OK	48 kB
URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data Size 48 kB (47728 bytes) Hash b1581ddd77372ceb06eb14adfd1bea07 1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8 97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73 HTTP Headers `GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://letsdefend.io Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 47728 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 05 Feb 2023 18:28:54 GMT expires: Mon, 05 Feb 2024 18:28:54 GMT cache-control: public, max-age=31536000 age: 13808 last-modified: Tue, 23 Aug 2022 17:55:22 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 87a2c3cd60978578c6384544b441917f a9bd71fc7868bd3f18f4b5528de3e88581de1b7f 041a4aff46ae2c2a8d8e4f29c6c43f1b8d43f00582180582dbe1f483c8baccc3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5145 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Last-Modified: Sun, 05 Feb 2023 20:53:17 GMT Server: ECS (amb/6B7F) X-Cache: HIT Content-Length: 279`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 836bc62dbb011b6180fc7209d0061736 74e6f18561a7006a3afb6ab03559eec239ce4b36 90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	letsdefend.io/images/landing-v2/Mandiant_logo.svg	104.26.15.61	200 OK	2.4 kB
URL HTTP/2 letsdefend.io/images/landing-v2/Mandiant_logo.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (1148) Size 2.4 kB (2403 bytes) Hash 49e3446a7a7c9afcc5ad1e96c85603fa 07b16b717c8f9654d14e65a1e98aaee1943e4be9 1cb153a52ef8719135bc776e42b0754df1c38024550295abee96956847f17c83 HTTP Headers `GET /images/landing-v2/Mandiant_logo.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:35 GMT etag: W/"ca4-5e5d35da8e071" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nqHKVUpzLCIQiNlVdB3s1m%2BUZqqxcVsp5vBash%2FMFNDkhuXvdfYNGtJL0AB4tmqYjOVM7uX5mDGvdmGKwN%2BbAxSOXwtyDrgcwMtDk5ORJ7kqiBF3yj1bmz79Ncg%2FmCE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f067989fd0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	cdn.paddle.com/paddle/assets/css/paddle.css	172.66.43.196	200 OK	20 kB
URL HTTP/2 cdn.paddle.com/paddle/assets/css/paddle.css IP 172.66.43.196:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 20 kB (19638 bytes) Hash c61ba7b4137d8853332e5fe2ad66c0d0 03a35007ef7e799152efc7bb390e17ca6dfb9f6c e0fe0b933bb028b1a11d8e241cb6188567609205f3e6b6bbc94972429c036df0 HTTP Headers `GET /paddle/assets/css/paddle.css HTTP/1.1 Host: cdn.paddle.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: text/css x-amz-replication-status: COMPLETED last-modified: Fri, 03 Feb 2023 14:07:01 GMT etag: W/"363959fb7459f6a3ff15190f211b628a" x-amz-server-side-encryption: AES256 x-amz-version-id: tmDND.XQzgWRIMpX0II5M_gxhuxWK3Uj x-cache: Hit from cloudfront via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront) x-amz-cf-pop: ARN1-C1 x-amz-cf-id: l2ARrFAXsgtYgMXo8AvgKNyKgACudpj2ZqMTH4A7ARIs8ZUdyf1O3A== cf-cache-status: HIT age: 13778 expires: Mon, 06 Feb 2023 02:19:01 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 794f0678ed63b518-OSL content-encoding: br X-Firefox-Spdy: h2

	push.services.mozilla.com/	35.84.241.69	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.84.241.69:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: ferNYz0OK93uYWQIoG7UWg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Cx3bR0b5CPWwSxOVM5nyFHoxsTk=`

	letsdefend.io/images/landing-v2/hands-on-training.svg	104.26.15.61	200 OK	42 kB
URL HTTP/2 letsdefend.io/images/landing-v2/hands-on-training.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2830), with no line terminators Size 42 kB (41621 bytes) Hash edf09eb4c0bbbe7ab1165380006d6538 10b60352ee37681862f3911ba412f9f77e8a1dbf 70c366a2aa91437307104ab2863af53a614915cd3daa056653128606de32642c HTTP Headers `GET /images/landing-v2/hands-on-training.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:37 GMT etag: W/"b0e-5e5d35dc34ea8" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jFwAMurUXw9FiJz2vmpQUEdFcgHJzaucnED2Rw9RETv%2BqZ8bDUA7Gc1SFbklbzkSjmqgo3WdOXtTY87HJw1dNiwhwRDsi%2BMeDiKViIChj48LTq4DR8rep0WrzlMl9xc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a1b0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	script.hotjar.com/modules.bca0d1c28285412bb689.js	143.204.55.96	200 OK	68 kB
URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js IP 143.204.55.96:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (49086) Size 68 kB (67924 bytes) Hash e923aa360dc485b9df86355bd040c998 03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec 9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676 HTTP Headers `GET /modules.bca0d1c28285412bb689.js HTTP/1.1 Host: script.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 67924 date: Fri, 03 Feb 2023 13:10:06 GMT accept-ranges: bytes access-control-allow-origin: * cache-control: max-age=31536000 content-encoding: br cross-origin-resource-policy: cross-origin etag: "e923aa360dc485b9df86355bd040c998" last-modified: Fri, 03 Feb 2023 13:09:45 GMT strict-transport-security: max-age=2592000; includeSubDomains x-content-type-options: nosniff x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: n6LTZiNznPJR9Phb1Z_-if9fagYIpQ7ll8Qofr7y_Q0P4EPP1Vyn0A== age: 205736 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 87f4d5a26d06de12da102e0876bf96c8 bcbdf7cfde807360ec9666a26960b34097a164b6 8b6151bd884109553e08aab8c9a087cfb7f055f7950e28fe90adb82986bc5e43 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8B6151BD884109553E08AAB8C9A087CFB7F055F7950E28FE90ADB82986BC5E43" Last-Modified: Sat, 04 Feb 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14994 Expires: Mon, 06 Feb 2023 02:28:56 GMT Date: Sun, 05 Feb 2023 22:19:02 GMT Connection: keep-alive`

	www.google-analytics.com/analytics.js	216.239.32.178	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 216.239.32.178:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Sun, 05 Feb 2023 21:44:08 GMT expires: Sun, 05 Feb 2023 23:44:08 GMT cache-control: public, max-age=7200 age: 2094 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	images.typeform.com/images/pUzd4b3tFDPR/background/large	143.204.55.84	200 OK	2.7 kB
URL HTTP/2 images.typeform.com/images/pUzd4b3tFDPR/background/large IP 143.204.55.84:0 ASN #16509 AMAZON-02 File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data Size 2.7 kB (2677 bytes) Hash 1b3df24e7fbe4eac2ad5892adca29683 366a9da0e6505e60e04cf4d4486da274aa1647e3 40ccb6e891c26a144d258199a999d17ac1a01d8c3c3a159b568a1a1cd9014c18 HTTP Headers GET /images/pUzd4b3tFDPR/background/large HTTP/1.1 Host: images.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Connection: keep-alive Cookie: __cf_bm=fBNjri52x1IRFcuVkCgjh8SqrlmYcHXny7VDTXEajxs-1675635542-0-AeuHwimSn/EwyfEw8qwJjuQ86d7DHTANHsDLnhwJ8zQtddVy8axp9kVmEYqR6Esd48U2IG80L3zmi8IhpW1iEAM= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: image/jpeg content-length: 2677 date: Sun, 05 Feb 2023 09:48:28 GMT x-amzn-requestid: 4b0ae15c-967d-41e0-987e-8a6b40d1e4c0 access-control-allow-origin: * content-security-policy: script-src 'self' x-amz-apigw-id: f3A49G-2IAMFpdw= cache-control: max-age=1296000 x-amzn-trace-id: Root=1-63df7b6c-49b68a786527c91740c1d9ee;Sampled=0 via: 1.1 ee6ddabcc69c6aa1c28ad24a4a8f86b2.cloudfront.net (CloudFront), 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) x-cache: Hit from cloudfront x-amz-cf-pop: FRA50-C1, OSL50-C1 x-amz-cf-id: tWsq3Fq7p5JMZnAr3n6j1bqMQeggWbiouLBlXgFZ9e687o5MIOW4dg== age: 45034 X-Firefox-Spdy: h2

	vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html	143.204.55.105	200 OK	1.0 kB
URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html IP 143.204.55.105:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators Size 1.0 kB (1034 bytes) Hash 112fdf47cdb80b9ce3d033ed09717460 3898efa86cbf1b64dc41a90a110ed5afd6f2ae13 3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb HTTP Headers `GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1 Host: vars.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/html content-length: 1034 date: Fri, 03 Feb 2023 13:10:06 GMT accept-ranges: bytes cache-control: max-age=31536000 content-encoding: br cross-origin-embedder-policy: require-corp cross-origin-resource-policy: cross-origin etag: "112fdf47cdb80b9ce3d033ed09717460" last-modified: Fri, 03 Feb 2023 13:09:45 GMT strict-transport-security: max-age=2592000; includeSubDomains x-robots-tag: none vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: vKDIzo_Vy3hAM7DsKoTRUIih_6zg3SNUxaX8l-Ri0Jyd3uWj0RKV-A== age: 205736 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 370e74ead61664d84985db7a9087c0e4 7c55daf6c9231e1586a0c9d48375766e7f02405f ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 846 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Last-Modified: Sun, 05 Feb 2023 22:04:56 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 279`

	cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.1/css/all.min.css	104.17.24.14	200 OK	10 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.12.1/css/all.min.css IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (57147) Size 10 kB (10134 bytes) Hash 3c292a51a538afbd149feeff74c3ffe8 7ab76905b7ccea15f11dc21bd49a03f8634add10 816a099099ffbfe5309857cb24f585c73928529c618036eab5fe2dee9a9c6be6 HTTP Headers `GET /ajax/libs/font-awesome/5.12.1/css/all.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://embed.testimonial.to Connection: keep-alive Referer: https://embed.testimonial.to/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: text/css; charset=utf-8 content-length: 10134 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e60-dff5" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 4507396 expires: Fri, 26 Jan 2024 22:19:02 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cAXZskixb3%2FO6RU5h41x3Q4Kvh1EqB4kRl8PI6D9O0%2BJmN%2FFJY15jZEdVVKLmuYK7kR5%2FGJ5W5W7TjZaUzRsunHyQHxnXPLcgF0ZXnoXan4L3qcTF%2BdN5ljialLpar65CaDT7mWn"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 794f067c9f05b4f9-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 370e74ead61664d84985db7a9087c0e4 7c55daf6c9231e1586a0c9d48375766e7f02405f ddc18509904868cb8e31ad5cbbd27245fc163eaac44d40a7e95fb795c6e248db HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 846 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:02 GMT Last-Modified: Sun, 05 Feb 2023 22:04:56 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 279`

	images.typeform.com/images/NJuWqUW4gis2/image/default	143.204.55.84	200 OK	9.3 kB
URL HTTP/2 images.typeform.com/images/NJuWqUW4gis2/image/default IP 143.204.55.84:0 ASN #16509 AMAZON-02 File type PNG image data, 400 x 300, 8-bit/color RGBA, non-interlaced\012- data Size 9.3 kB (9258 bytes) Hash c5b06a0721d3005bb32e5c42c745159a 7304fe4d37fd9e2e45b99200b27f1b933c5c4804 8cb86fb81c91ea0550e44791969f4b6365b556534292cccb43949a5c819ceeaf HTTP Headers GET /images/NJuWqUW4gis2/image/default HTTP/1.1 Host: images.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Connection: keep-alive Cookie: __cf_bm=fBNjri52x1IRFcuVkCgjh8SqrlmYcHXny7VDTXEajxs-1675635542-0-AeuHwimSn/EwyfEw8qwJjuQ86d7DHTANHsDLnhwJ8zQtddVy8axp9kVmEYqR6Esd48U2IG80L3zmi8IhpW1iEAM= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: image/png content-length: 9258 date: Wed, 25 Jan 2023 20:07:35 GMT x-amzn-requestid: 0f85c9af-72c3-464c-8e14-ecbff9f0ace8 access-control-allow-origin: * content-security-policy: script-src 'self' x-amz-apigw-id: fULRJE51IAMFzEA= cache-control: max-age=1296000 x-amzn-trace-id: Root=1-63d18c07-148257004933ab3926a9b2ea;Sampled=0 via: 1.1 bab8148a65b29113f79cf2725076287c.cloudfront.net (CloudFront), 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) x-cache: Hit from cloudfront x-amz-cf-pop: FRA50-C1, OSL50-C1 x-amz-cf-id: xFG5YliqUpCEka9jg-Je3APt5eojGu4xU7fXS0JK567cUPW8UuYqKA== age: 958287 X-Firefox-Spdy: h2

	embed.testimonial.to/static/css/12.5fda178e.chunk.css	216.24.57.3	200 OK	44 kB
URL HTTP/2 embed.testimonial.to/static/css/12.5fda178e.chunk.css IP 216.24.57.3:0 ASN #397273 RENDER File type ASCII text, with very long lines (18189), with no line terminators Size 44 kB (43864 bytes) Hash 9fa894b3d60ee8f1571ba6010672e244 715f6cca7a63a2d5dd143b0950779a36fe928b01 0e1ec5af169c67628ad7a9749a7614616e8073ff3378a80d366f1a7b9b252e19 HTTP Headers `GET /static/css/12.5fda178e.chunk.css HTTP/1.1 Host: embed.testimonial.to User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: text/css; charset=utf-8 cf-ray: 794f067c395db50c-OSL age: 35 cache-control: public, max-age=0, s-maxage=300 etag: W/"d71c9ae62fdb1936505bbca50b6b4b9d" last-modified: Fri, 03 Feb 2023 19:37:35 UTC vary: Accept-Encoding cf-cache-status: HIT x-content-type-options: nosniff server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	region1.google-analytics.com/g/collect?v=2&tid=G-HSKZYXTX40&gtm=45je3210&_p=942414014&cid=295445026.1675635585&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675635584&sct=1&seg=0&dl=https%3A%2F%2Fletsdefend.io%2F&dt=LetsDefend%20-%20Blue%20Team%20Training%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-HSKZYXTX40&gtm=45je3210&_p=942414014&cid=295445026.1675635585&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675635584&sct=1&seg=0&dl=https%3A%2F%2Fletsdefend.io%2F&dt=LetsDefend%20-%20Blue%20Team%20Training%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-HSKZYXTX40&gtm=45je3210&_p=942414014&cid=295445026.1675635585&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675635584&sct=1&seg=0&dl=https%3A%2F%2Fletsdefend.io%2F&dt=LetsDefend%20-%20Blue%20Team%20Training%20Platform&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://letsdefend.io Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://letsdefend.io date: Sun, 05 Feb 2023 22:19:03 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	font.typeform.com/dist/google/lekton/files/lekton-latin-400-normal.woff2	54.230.111.25	200 OK	9.2 kB
URL HTTP/2 font.typeform.com/dist/google/lekton/files/lekton-latin-400-normal.woff2 IP 54.230.111.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 9228, version 1.0\012- data Size 9.2 kB (9228 bytes) Hash 786d33c9f731e0ffcd9989c1ebbf95bf 4ecb2d139be3de13fed4b574fe6189848918cdd0 dc4e9bb99227a0ab1ee1016d7a4f128c63847bca183c022cda88424018273ec2 HTTP Headers `GET /dist/google/lekton/files/lekton-latin-400-normal.woff2 HTTP/1.1 Host: font.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://form.typeform.com Connection: keep-alive Referer: https://font.typeform.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK content-type: binary/octet-stream content-length: 9228 date: Fri, 03 Feb 2023 06:24:51 GMT access-control-allow-origin: * access-control-allow-methods: GET, HEAD access-control-max-age: 0 last-modified: Tue, 31 Jan 2023 00:24:23 GMT etag: "786d33c9f731e0ffcd9989c1ebbf95bf" x-amz-server-side-encryption: AES256 cache-control: max-age=432000 x-amz-version-id: xFKURQEu1bLT9qRuXQTcuXqrnKN2Cbb6 accept-ranges: bytes server: AmazonS3 vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: xfOXR3ecGxTY8AmsxLpoFUsO-TPwkZXTqYbpNCnKiqFHOh64OkZROQ== age: 230053 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2	142.250.74.35	200 OK	38 kB
URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data Size 38 kB (37924 bytes) Hash e08be6d5d433944f7ad52902e4d24db5 e2600c1d60d12d397b3ee44411a021231d71e974 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e HTTP Headers `GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://embed.testimonial.to Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 37924 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 03 Feb 2023 09:38:52 GMT expires: Sat, 03 Feb 2024 09:38:52 GMT cache-control: public, max-age=31536000 last-modified: Mon, 11 Jul 2022 20:54:46 GMT content-type: font/woff2 age: 218411 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 8fd59aaf072bfd08e29086a15aab5a00 3b13b2b8612ac56c1cfaa15a6583fd6c83fa2ba6 ce981b205b0f7d3c7dcb1b9d0d05d3af04cd8c67564124bdd6204d56e81cac2c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1265 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:03 GMT Etag: "63dfdf64-116" Last-Modified: Sun, 05 Feb 2023 21:57:59 GMT Server: ECS (amb/6B7F) X-Cache: HIT Content-Length: 278`

	font.typeform.com/dist/google/lekton/files/lekton-latin-700-normal.woff2	54.230.111.25	200 OK	284 kB
URL HTTP/2 font.typeform.com/dist/google/lekton/files/lekton-latin-700-normal.woff2 IP 54.230.111.25:0 ASN #16509 AMAZON-02 File type data Size 284 kB (283726 bytes) Hash eb8ad43652beadecfc04d77f43e84205 a6612e61e5b7b6a734b73a5742b99af95fec32ae e9733964d68191c9b5bcafe380519ba0f6be7e033b78acde90e001015b828552 HTTP Headers `GET /dist/google/lekton/files/lekton-latin-700-normal.woff2 HTTP/1.1 Host: font.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://form.typeform.com Connection: keep-alive Referer: https://font.typeform.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK content-type: binary/octet-stream content-length: 9344 date: Fri, 03 Feb 2023 07:27:57 GMT access-control-allow-origin: * access-control-allow-methods: GET, HEAD access-control-max-age: 0 last-modified: Tue, 31 Jan 2023 00:24:23 GMT etag: "838cde1d8f810829a4801c7188563907" x-amz-server-side-encryption: AES256 cache-control: max-age=432000 x-amz-version-id: bRsRNMY4gaVS6zqTMrnPVvx.xalbJ4eJ accept-ranges: bytes server: AmazonS3 vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: nZCU5yESE4DjFNeDkOAmhWzjOM8GGCgW8dObgXo4n9aHY3dYrdbJ_Q== age: 226267 X-Firefox-Spdy: h2

	vc.hotjar.io/sessions/2258091?s=0.25&r=0.04942288139115436	54.230.111.64	204 No Content	0 B
URL HTTP/2 vc.hotjar.io/sessions/2258091?s=0.25&r=0.04942288139115436 IP 54.230.111.64:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sessions/2258091?s=0.25&r=0.04942288139115436 HTTP/1.1 Host: vc.hotjar.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://letsdefend.io Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content access-control-allow-origin: * cache-control: no-store date: Sun, 05 Feb 2023 22:19:03 GMT server: Python/3.7 aiohttp/3.5.4 x-cache: Miss from cloudfront via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: vRVShPvNcN9S9CPMXV2g8e9_EUU5qI0c9Ms271Rwx9EesP3Tf2ihKQ== X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	143.204.42.88	200 OK	2.7 kB
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.88:0 ASN #16509 AMAZON-02 File type data Size 2.7 kB (2666 bytes) Hash 4ea6e95e9a0efb1fa3d322aeb23c6672 bf0f38b37ec07adc7c0a631473fb2f35c5e381bc 45fa1bc1b7288a92822819b1b75c4b4eb2351b2bff9c814790e4b34778f4d30d HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 05 Feb 2023 22:19:03 GMT Last-Modified: Sun, 05 Feb 2023 21:40:57 GMT Server: ECS (nyb/1D25) X-Cache: Miss from cloudfront Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 2nAQa97gmJhoIMB24MclSNZ_U5PC-AMGQqC3_Lsm1RKC5tdl4rZGEQ== Age: 2286`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3880 Expires: Sun, 05 Feb 2023 23:23:43 GMT Date: Sun, 05 Feb 2023 22:19:03 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3880 Expires: Sun, 05 Feb 2023 23:23:43 GMT Date: Sun, 05 Feb 2023 22:19:03 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3880 Expires: Sun, 05 Feb 2023 23:23:43 GMT Date: Sun, 05 Feb 2023 22:19:03 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF" Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3880 Expires: Sun, 05 Feb 2023 23:23:43 GMT Date: Sun, 05 Feb 2023 22:19:03 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13230 bytes) Hash a24cf7b2db6d65c3fe5daf78b3309ced a3653a9a7baea412808dd91572ff21e1a505c26f f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13230 x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiTH8GoAMFYLA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:50:03 GMT age: 1740 etag: "a3653a9a7baea412808dd91572ff21e1a505c26f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8929 bytes) Hash d0c62c5956f36c9f1c5d2f17bc372d98 fca4d7140e4c391b02d734425ccc92acec568a70 eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8929 x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f4oiQEeTIAMFqGA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0 x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:50:03 GMT age: 1740 etag: "fca4d7140e4c391b02d734425ccc92acec568a70" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg	34.120.237.76	200 OK	9.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.8 kB (9809 bytes) Hash 5f54c8725e5dab88b12d42876fa61b12 89c734d690981e30f9d566a7763a1870724d65aa b8cc5148ae01e1a1fe32f56bdce71de086da320cdd8a55a746609c9773fdaf77 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9809 x-amzn-requestid: 533de5fa-8173-430e-a657-4386728723eb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fpc-VEGbIAMFSmg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63da0ec1-4e160c5c2a46d2913cc8e71e;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:29 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: BgSfqU3WmIhR8N86AEfaU7pXN7jIKs_lKJVD6yCSaJBl5AVx13e5hw== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Sun, 05 Feb 2023 21:54:03 GMT etag: "89c734d690981e30f9d566a7763a1870724d65aa" content-type: image/jpeg age: 1500 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdn.rudderlabs.com/v1/rudder-analytics.min.js	54.230.111.7	200 OK	138 kB
URL HTTP/2 cdn.rudderlabs.com/v1/rudder-analytics.min.js IP 54.230.111.7:0 ASN #16509 AMAZON-02 File type data Size 138 kB (137597 bytes) Hash d499d38ea2a8513a14a64f7c138988f5 ba39ddf08c402b4d92efc05840d0bc3502955e11 01c3dd5ffc5d356edff62463ffd28ada02b7eee01fe9c6e8074e412725c690db HTTP Headers `GET /v1/rudder-analytics.min.js HTTP/1.1 Host: cdn.rudderlabs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://form.typeform.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/javascript last-modified: Mon, 16 Jan 2023 13:42:05 GMT server: AmazonS3 content-encoding: gzip date: Sun, 05 Feb 2023 22:11:26 GMT cache-control: max-age=3600 etag: W/"a5276d3897dc2eb367139d09a2ba84cf" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: IWjVh3AkHdNQ5nhUPHxhOdtmv5ubettzo8jeo4EqWxhaNYGULbPFWw== age: 472 X-Firefox-Spdy: h2`

	letsdefend.io/images/landing-v2/apple.svg	104.26.15.61	200 OK	11 kB
URL HTTP/2 letsdefend.io/images/landing-v2/apple.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (661), with no line terminators Size 11 kB (10915 bytes) Hash 646af609c27240b79fdc5506cfbf7941 441819938fb4b7460b38c9bf97b4d11ac9fa10b1 aaaadc0ef2463733079ef6c0d1e07bcc6bdab53d25bbf632d36953a069c44ca5 HTTP Headers `GET /images/landing-v2/apple.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:43 GMT etag: W/"295-5e5d35e1cbb44" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vXr9Ov5Kyda06zYLAu%2B10Pr4aE4%2FDF%2BQlOrROZd2ATg8lhJ5Tg14sAqu3gsHvv9Oii%2BnSo9dObzhRKBiwukhzW0K%2F%2F20jBj%2B7HEuOExuQuK8JiKAh5WLwhLHgJUx8G0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a110b59-OSL content-encoding: br X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/EBay_logo.svg	104.26.15.61	200 OK	11 kB
URL HTTP/2 letsdefend.io/images/landing-v2/EBay_logo.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (723) Size 11 kB (10915 bytes) Hash a2715ecd7f28275c080e633da738e651 aba8a9570f1fdb4f44a0a870166c45723dca71a6 8af660bc535e3a0cf56ac1c94ca8562fb44377d634933f6c2b2c39bdfd79588c HTTP Headers `GET /images/landing-v2/EBay_logo.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 16 Aug 2022 07:01:16 GMT etag: W/"9db-5e656508f4439" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hyntkeu7q2GoQucu%2BzC3uTDRQSzGltuvhpRvsGxAzPGAiCHApkJfQlELXq55LwADDn7gDf%2FUgZG7lUeRIGJHibvCxvDR6AwTEPmWVgNJc7xaGP7JyPBvqrZOQTZ4ovE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a090b59-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1d4int/v_VQG5OMB60	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/v_VQG5OMB60 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d60de415d033a95504b91bcd6be3e9e9 f2229d5cdabe7414159a934006d766e8058840a6 cfeb0f8c3e776d4b0e95dafb873df21ca75137fe7b5a396547aa313928097286 HTTP Headers `POST /s/gts1d4int/v_VQG5OMB60 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 05 Feb 2023 22:19:03 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	testimonialto-default-rtdb.firebaseio.com/.ws?v=5	34.120.160.131	101 Switching Protocols	0 B
URL HTTP/1.1 testimonialto-default-rtdb.firebaseio.com/.ws?v=5 IP 34.120.160.131:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /.ws?v=5 HTTP/1.1 Host: testimonialto-default-rtdb.firebaseio.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://embed.testimonial.to Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: JSt1wQNwm3H4zjX4Xul9Iw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Sun, 05 Feb 2023 22:19:03 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: VrxKZ2MSUURfAOkZCffBOKzZ6MY= Strict-Transport-Security: max-age=31556926; includeSubDomains; preload`

	ocsp.sca1b.amazontrust.com/	143.204.42.88	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.88:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 5b217bf212f7314b8413b2eddb65224f 3f671017bc9bebabe40e96a85106532950cc69c8 6005ba485126ad20e9b1be8de7e6a1c1a2a655c13eed936e4f48720866f9c888 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=105395 Date: Sun, 05 Feb 2023 22:19:03 GMT Etag: "63df1642-1d7" Expires: Tue, 07 Feb 2023 03:35:38 GMT Last-Modified: Sun, 05 Feb 2023 02:36:50 GMT Server: ECS (bsa/EB13) X-Cache: Miss from cloudfront Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: PIe_bIsrDBA3UutDyKr3R-yhpYsc7YdmZjf5ECt0W7ZvGor3YO_8BA== Age: 3528

	ocsp.sca1b.amazontrust.com/	143.204.42.88	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.88:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 5b217bf212f7314b8413b2eddb65224f 3f671017bc9bebabe40e96a85106532950cc69c8 6005ba485126ad20e9b1be8de7e6a1c1a2a655c13eed936e4f48720866f9c888 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=104174 Date: Sun, 05 Feb 2023 22:19:03 GMT Etag: "63df1642-1d7" Expires: Tue, 07 Feb 2023 03:15:17 GMT Last-Modified: Sun, 05 Feb 2023 02:36:50 GMT Server: ECS (nyb/1DCD) X-Cache: Miss from cloudfront Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: XLQFDnUsoT9yr5VAXPe_CZSbSfoeF1RaoVDZhjdlHr-dHJoyl3Lcew== Age: 2307

	rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1	34.233.157.77	200 OK	2 B
URL HTTP/2 rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1 IP 34.233.157.77:0 ASN #14618 AMAZON-AES File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash e0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3 HTTP Headers OPTIONS /sourceConfig/?p=cdn&v=1.23.1 HTTP/1.1 Host: rudderstack-control-plane.cdp.prod.data.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: authorization Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:04 GMT content-type: text/plain; charset=utf-8 content-length: 2 server: uvicorn vary: Origin access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT access-control-max-age: 600 access-control-allow-credentials: true access-control-allow-origin: https://form.typeform.com access-control-allow-headers: authorization X-Firefox-Spdy: h2`

	rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1	34.233.157.77	200 OK	610 B
URL HTTP/2 rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.23.1 IP 34.233.157.77:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (610), with no line terminators Size 610 B (610 bytes) Hash b472ddb84e71008d7e128aa58199352f bb19a929d005eb384268d4e73cd994324ffc5db4 1e1bfbb50209ae8693353623fab7eeeef5ae1c0ca5d128a40c3be54099e59028 HTTP Headers GET /sourceConfig/?p=cdn&v=1.23.1 HTTP/1.1 Host: rudderstack-control-plane.cdp.prod.data.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg== Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:04 GMT content-type: application/json content-length: 610 server: uvicorn access-control-allow-origin: * access-control-allow-credentials: true X-Firefox-Spdy: h2`

	rudderstack.cdp.prod.data.typeform.com/v1/track	3.228.83.197	200 OK	0 B
URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track IP 3.228.83.197:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v1/track HTTP/1.1 Host: rudderstack.cdp.prod.data.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: anonymousid,authorization,content-type Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:04 GMT content-length: 0 access-control-allow-credentials: true access-control-allow-headers: Anonymousid, Authorization, Content-Type access-control-allow-methods: POST access-control-allow-origin: https://form.typeform.com access-control-max-age: 900 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers X-Firefox-Spdy: h2`

	rudderstack.cdp.prod.data.typeform.com/v1/track	3.228.83.197	200 OK	2 B
URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track IP 3.228.83.197:0 ASN #14618 AMAZON-AES File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash e0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3 HTTP Headers POST /v1/track HTTP/1.1 Host: rudderstack.cdp.prod.data.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Content-Type: application/json Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg== AnonymousId: YjQ1NWJlOTctNjNiMC00ZWNhLWFjMjctMDU5YTZhYmJhYmI3 Content-Length: 1994 Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:04 GMT content-type: text/plain; charset=utf-8 content-length: 2 access-control-allow-credentials: true access-control-allow-origin: https://form.typeform.com vary: Origin X-Firefox-Spdy: h2`

	rudderstack.cdp.prod.data.typeform.com/v1/track	3.228.83.197	200 OK	2 B
URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track IP 3.228.83.197:0 ASN #14618 AMAZON-AES File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash e0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3 HTTP Headers POST /v1/track HTTP/1.1 Host: rudderstack.cdp.prod.data.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Content-Type: application/json Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg== AnonymousId: YjQ1NWJlOTctNjNiMC00ZWNhLWFjMjctMDU5YTZhYmJhYmI3 Content-Length: 2041 Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:05 GMT content-type: text/plain; charset=utf-8 content-length: 2 access-control-allow-credentials: true access-control-allow-origin: https://form.typeform.com vary: Origin X-Firefox-Spdy: h2`

	rudderstack.cdp.prod.data.typeform.com/v1/track	3.228.83.197	200 OK	2 B
URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track IP 3.228.83.197:0 ASN #14618 AMAZON-AES File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash e0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3 HTTP Headers POST /v1/track HTTP/1.1 Host: rudderstack.cdp.prod.data.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Content-Type: application/json Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg== AnonymousId: YjQ1NWJlOTctNjNiMC00ZWNhLWFjMjctMDU5YTZhYmJhYmI3 Content-Length: 2452 Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:05 GMT content-type: text/plain; charset=utf-8 content-length: 2 access-control-allow-credentials: true access-control-allow-origin: https://form.typeform.com vary: Origin X-Firefox-Spdy: h2`

	embed.testimonial.to/static/js/12.d0c81f7a.chunk.js	216.24.57.3	200 OK	0 B
URL HTTP/2 embed.testimonial.to/static/js/12.d0c81f7a.chunk.js IP 216.24.57.3:0 ASN #397273 RENDER File type Size 0 B (0 bytes) Hash HTTP Headers `GET /static/js/12.d0c81f7a.chunk.js HTTP/1.1 Host: embed.testimonial.to User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: text/javascript; charset=utf-8 cf-ray: 794f067c3961b50c-OSL age: 35 cache-control: public, max-age=0, s-maxage=300 etag: W/"82ecf1941a9303575662d3b0a5271f26" last-modified: Fri, 03 Feb 2023 19:37:34 UTC vary: Accept-Encoding cf-cache-status: HIT x-content-type-options: nosniff server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	letsdefend.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: application/javascript last-modified: Fri, 03 Feb 2023 16:56:26 GMT etag: W/"63dd3cba-4d7" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rD%2F%2Bc%2B8mS9XsjRsOt0kvke1ETW4VQW3t%2BJrHZLNlf8mfuqNUPSvOBUhDU7H%2BrMtnNwPA%2B8Q0EmJ7Uv67UiOkILFdZWmpIa26yNNUPtn8uQadwgJMOM954WT9%2FYovwwA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06773ffd0b59-OSL x-frame-options: DENY x-content-type-options: nosniff expires: Tue, 07 Feb 2023 22:19:01 GMT cache-control: max-age=172800, public content-encoding: gzip X-Firefox-Spdy: h2

	letsdefend.io/img/other/white-waves.8fbe13fbd386.svg	104.26.15.61	404 Not Found	0 B
URL HTTP/2 letsdefend.io/img/other/white-waves.8fbe13fbd386.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /img/other/white-waves.8fbe13fbd386.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/css/main.02cdf5a5db4d.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 404 Not Found date: Sun, 05 Feb 2023 22:19:02 GMT content-type: text/html; charset=iso-8859-1 cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ogvqSORkfNlzihqYCGjHbgrJj69O%2BQvM78%2FbXy8IhPUd0Zs7Fy1PFp3tElij2PtC3JoTlUb3u2IckDk1gC3DKjdXM4o0u50wlWZHw4AeF1uFVeo7SGvajrl9oluYiSc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f067929b60b59-OSL content-encoding: br X-Firefox-Spdy: h2

	embed.testimonial.to/static/js/main.2ca58e8f.chunk.js	216.24.57.3	200 OK	0 B
URL HTTP/2 embed.testimonial.to/static/js/main.2ca58e8f.chunk.js IP 216.24.57.3:0 ASN #397273 RENDER File type Size 0 B (0 bytes) Hash HTTP Headers `GET /static/js/main.2ca58e8f.chunk.js HTTP/1.1 Host: embed.testimonial.to User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: text/javascript; charset=utf-8 cf-ray: 794f067c4980b50c-OSL age: 35 cache-control: public, max-age=0, s-maxage=300 etag: W/"abad49421214753e7a86e934a39dde8f" last-modified: Fri, 03 Feb 2023 19:37:35 UTC vary: Accept-Encoding cf-cache-status: HIT x-content-type-options: nosniff server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	letsdefend.io/images/landing-v2/rocket.svg	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/images/landing-v2/rocket.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/landing-v2/rocket.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:35 GMT etag: W/"290-5e5d35d9e02f3" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2B3ok3Qr2fdiWJ9IA9scjkz2nIbdFfIq%2FKAnMg2ZIJl8nL8kM8CBF9D3lkyRMoLUjzilHaIB3GOIcXQMcOwjOQ8RXkkzYVEmxEDajKdnRdEvtEDgMHdlfaNmqZ8fMrI%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f0679ca3c0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	cdn.paddle.com/paddle/assets/css/animate.css	172.66.43.196	200 OK	0 B
URL HTTP/2 cdn.paddle.com/paddle/assets/css/animate.css IP 172.66.43.196:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /paddle/assets/css/animate.css HTTP/1.1 Host: cdn.paddle.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: text/css x-amz-replication-status: COMPLETED last-modified: Fri, 03 Feb 2023 14:07:01 GMT etag: W/"6b0b1b3d169eb424f5898cad70ee4496" x-amz-server-side-encryption: AES256 x-amz-version-id: MJGQRJr.pbPiXj1kcuiJqbDOHlX17NbJ x-cache: Hit from cloudfront via: 1.1 f9a0ddc3860252ab6c4d02ab024b4890.cloudfront.net (CloudFront) x-amz-cf-pop: ARN1-C1 x-amz-cf-id: wNnhnlG4bhpNrL2xnhEjmBhSpfDHA6-_DNqkcu6097Sk1T3zYOqzgA== cf-cache-status: HIT age: 13778 expires: Mon, 06 Feb 2023 02:19:01 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 794f0678ed61b518-OSL content-encoding: br X-Firefox-Spdy: h2

	cdn.paddle.com/paddle/paddle.js	172.66.43.196	200 OK	0 B
URL HTTP/2 cdn.paddle.com/paddle/paddle.js IP 172.66.43.196:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /paddle/paddle.js HTTP/1.1 Host: cdn.paddle.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: application/javascript cf-bgj: minify cf-polished: origSize=228558 etag: W/"a4cd95d0e54d00143755a18c1638d855" last-modified: Fri, 03 Feb 2023 14:07:01 GMT via: 1.1 e9eeb72bccacc26d81e7bd02c27d126a.cloudfront.net (CloudFront) x-amz-cf-id: _HIkTHqMpP25ttQL6rBkVPrn4ySvEUbRQANpPXhTujkTmeDq1avOOw== x-amz-cf-pop: ARN1-C1 x-cache: Hit from cloudfront x-amz-replication-status: PENDING x-amz-server-side-encryption: AES256 x-amz-version-id: l9uE1wT4RZERe9ns1N867acB0SM2xoxd cf-cache-status: HIT age: 13720 expires: Mon, 06 Feb 2023 02:19:01 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 794f0677cc1ab518-OSL content-encoding: br X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/ibm.svg	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/images/landing-v2/ibm.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/landing-v2/ibm.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:36 GMT etag: W/"68f-5e5d35dbbbcfc" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ODKRUX5VotgJMSG6CUocIFRtP1qIb9l8UiBoGbiqj2SjMWuWfNZk44lu5wHXDe4EvObLexom2MEkUORS2xtey011f7VxPPDkCK2VYnl3sNUf2Sm2Gtl7DanotmFEHY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f067989ff0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/Adobe_Corporate_logo.svg	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/images/landing-v2/Adobe_Corporate_logo.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/landing-v2/Adobe_Corporate_logo.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 16 Aug 2022 07:04:03 GMT etag: W/"e83-5e6565a7e45c9" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLXemDQl7g%2F7foV%2B0hemj1jJNHrD2Mzt%2BylOyfUrjZutIFbF8eJhjsZmXeQKp0obXnNR0xAp0cyWWWFKPCG24AwW6XtnqjPDVBQUCbeg%2F6rB%2FfCa%2BtPs0S1At7Y0VP4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a100b59-OSL content-encoding: br X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/virtual-job-experience.svg	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/images/landing-v2/virtual-job-experience.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/landing-v2/virtual-job-experience.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:32 GMT etag: W/"c8b-5e5d35d78b73f" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eree8wB621GJb4t1Qw62AagPBcm6bb2JNl0cisVE4mN4l%2BwlRHkE1Th3DcvtuNJ06gkhweio3dLB%2BFWFaWWsIbXGCWiwAfZiXGmnkWwcoBZk4Fc8wZ2RnJoNH4aHkbo%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a1e0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	static.hotjar.com/c/hotjar-2258091.js?sv=6	143.204.55.37	200 OK	0 B
URL HTTP/2 static.hotjar.com/c/hotjar-2258091.js?sv=6 IP 143.204.55.37:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /c/hotjar-2258091.js?sv=6 HTTP/1.1 Host: static.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * content-encoding: br cross-origin-resource-policy: cross-origin strict-transport-security: max-age=2592000; includeSubDomains x-cache-hit: 1 x-content-type-options: nosniff date: Sun, 05 Feb 2023 22:19:02 GMT cache-control: max-age=60 etag: W/0e516f69e76850445404b4f8ae50d128 vary: Accept-Encoding x-cache: RefreshHit from cloudfront via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: o15z_oCbDS4_X2gpqfYJAils7jo8hoyNlBxYzU5XBjZ1rEIl-ZxBvQ== X-Firefox-Spdy: h2

	letsdefend.io/	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/ IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:01 GMT content-type: text/html last-modified: Mon, 30 Jan 2023 11:54:25 GMT vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l6i1Z8CHT440NK7Dju5FFmmJYqfFJegkAVfd69zgBti9E8Onr%2FA2x1JWsLtyk9VnCGD7i4Mf0a3Is4FOm10SPZ2NyYBN9Ci6MCp%2Fy8T1OUNX746W2sH%2Bd8jRqoH8Fsc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 794f0675cefc0b59-OSL content-encoding: br X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Work+Sans:400,500,700&display=swap	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Work+Sans:400,500,700&display=swap IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Work+Sans:400,500,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 05 Feb 2023 22:19:01 GMT date: Sun, 05 Feb 2023 22:19:01 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/virgin.svg	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/images/landing-v2/virgin.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/landing-v2/virgin.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:33 GMT etag: W/"20be-5e5d35d80970c" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W2cRs4V%2Bouhv84JuYCsVhreOC6lE%2BzcHCj1icgEpRnfRMfWgf9qHXtLDX7wilPJS6SH79GdBvIkhlypo7DdkWT3ZFTA7TOcOIH9PvCq6EFAd6iY5cdy0SzCHxshdBhw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06799a150b59-OSL content-encoding: br X-Firefox-Spdy: h2

	embed.testimonial.to/static/css/main.3d7344a9.chunk.css	216.24.57.3	200 OK	0 B
URL HTTP/2 embed.testimonial.to/static/css/main.3d7344a9.chunk.css IP 216.24.57.3:0 ASN #397273 RENDER File type Size 0 B (0 bytes) Hash HTTP Headers `GET /static/css/main.3d7344a9.chunk.css HTTP/1.1 Host: embed.testimonial.to User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://embed.testimonial.to/w/letsdefend-ambassadors?animated=on&theme=dark&shadowColor=ffffff Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: text/css; charset=utf-8 cf-ray: 794f067c395fb50c-OSL age: 36 cache-control: public, max-age=0, s-maxage=300 etag: W/"34f8492fd7ee3e2483a58cf7d39b7a04" last-modified: Fri, 03 Feb 2023 19:37:35 UTC vary: Accept-Encoding cf-cache-status: HIT x-content-type-options: nosniff server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	renderer-assets.typeform.com/modern-renderer.f17dcdde8bca6f807d17.js	143.204.55.76	200 OK	0 B
URL HTTP/2 renderer-assets.typeform.com/modern-renderer.f17dcdde8bca6f807d17.js IP 143.204.55.76:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /modern-renderer.f17dcdde8bca6f807d17.js HTTP/1.1 Host: renderer-assets.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Origin: https://form.typeform.com Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site HTTP/2 200 OK content-type: application/x-javascript access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 02 Feb 2023 10:23:49 GMT x-amz-version-id: bi8c_lUU5sMeXMJe7VNyJHRTvGsPxRht server: AmazonS3 content-encoding: gzip date: Sun, 05 Feb 2023 10:42:53 GMT etag: W/"406ebbd19adbb7a29b72f01a9709758e" vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: EP2n5atsL8WRqFgVoGTG4SOAN0S-7vFp-OFBZeGxzUuG4i1o7cih3Q== age: 41770 cache-control: max-age=2419200 X-Firefox-Spdy: h2

	testimonial.to/js/iframeResizer.contentWindow.min.js	172.66.40.60	200 OK	0 B
URL HTTP/2 testimonial.to/js/iframeResizer.contentWindow.min.js IP 172.66.40.60:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/iframeResizer.contentWindow.min.js HTTP/1.1 Host: testimonial.to User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://embed.testimonial.to/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:03 GMT content-type: text/javascript; charset=utf-8 access-control-allow-origin: * cache-control: max-age=14400 etag: W/"369679aa12b01b6f6c506a2edd6f50ecc566ce6bcd3eead28af6b39b0e43c2c9" last-modified: Tue, 24 Jan 2023 07:07:19 GMT strict-transport-security: max-age=31556926 x-served-by: cache-yyz4535-YYZ x-cache: MISS x-cache-hits: 0 x-timer: S1674559197.436457,VS0,VE72 vary: x-fh-requested-host, accept-encoding cf-cache-status: HIT age: 2352 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIl9jFyf61VIMj1wamgnOvJQ8%2B4dIZDDSrWVlyzaD4wH908uB71cL1zq0ZPPZGSfeALBiXFDVubPWVPIly0%2BobWgaatg354FYNvSJSiF2NR1R6HOW2ZxIVFKdYigX1ov"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 794f06817c890b06-OSL content-encoding: br X-Firefox-Spdy: h2

	embed.typeform.com/next/embed.js	54.230.111.81	200 OK	0 B
URL HTTP/2 embed.typeform.com/next/embed.js IP 54.230.111.81:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /next/embed.js HTTP/1.1 Host: embed.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript last-modified: Mon, 30 Jan 2023 10:11:16 GMT x-amz-version-id: wu8VpFEwiMIutFky5Rky_ouuxZmoV68D server: AmazonS3 content-encoding: gzip date: Sun, 05 Feb 2023 22:14:26 GMT etag: W/"fb1d68b72178df5229dcca73466ecfc1" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: RtI1UKhAUlD5fxjAwRCB_1fpDcEVKmKb7_pDnZpkPpYcYlCRhE2VjA== age: 277 cache-control: public, max-age=0, must-revalidate X-Firefox-Spdy: h2

	font.typeform.com/dist/google/lekton/index.css	54.230.111.25	200 OK	0 B
URL HTTP/2 font.typeform.com/dist/google/lekton/index.css IP 54.230.111.25:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /dist/google/lekton/index.css HTTP/1.1 Host: font.typeform.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://form.typeform.com/to/M6IrgWxa?typeform-embed-id=9442506064850565&typeform-embed=embed-widget&typeform-source=letsdefend.io&typeform-medium=embed-sdk&typeform-medium-version=next&embed-opacity=100 Connection: keep-alive Cookie: __cf_bm=fBNjri52x1IRFcuVkCgjh8SqrlmYcHXny7VDTXEajxs-1675635542-0-AeuHwimSn/EwyfEw8qwJjuQ86d7DHTANHsDLnhwJ8zQtddVy8axp9kVmEYqR6Esd48U2IG80L3zmi8IhpW1iEAM= Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site HTTP/2 200 OK content-type: text/css last-modified: Tue, 24 Jan 2023 00:24:14 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: uFd9OXAB51aoxYS9LhOlcVB6mwCYp7ya server: AmazonS3 content-encoding: gzip date: Sat, 04 Feb 2023 20:38:17 GMT cache-control: max-age=432000 etag: W/"4f1a7f55fc836fd95732b2948117bb05" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: tcGlS0k4WIH4KP5TAQHB5Whm9bxkvDiVI1tB8rJW7NaDCp_XIAgW9Q== age: 92446 X-Firefox-Spdy: h2

	letsdefend.io/images/landing-v2/Microsoft_logo.svg	104.26.15.61	200 OK	0 B
URL HTTP/2 letsdefend.io/images/landing-v2/Microsoft_logo.svg IP 104.26.15.61:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /images/landing-v2/Microsoft_logo.svg HTTP/1.1 Host: letsdefend.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:02 GMT content-type: image/svg+xml last-modified: Tue, 09 Aug 2022 18:47:35 GMT etag: W/"de8-5e5d35da13f26" cache-control: max-age=14400 cf-cache-status: HIT age: 5382 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WfgG8IV0fRzPze5ZaC76u%2FaddwM4S2kMoHXJ6%2FswRJj5DfzfOwyHZvn2iGVqUuFbxRmMyCbmtcNZiyBjhSE12%2Fa77UisQukEly2FC3h2pqjpP2t4V4wUcHJashfQ%2F1c%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 794f06798a030b59-OSL content-encoding: br X-Firefox-Spdy: h2

	in.hotjar.com/api/v2/client/sites/2258091/visit-data?sv=6	52.19.186.201	200 OK	0 B
URL HTTP/2 in.hotjar.com/api/v2/client/sites/2258091/visit-data?sv=6 IP 52.19.186.201:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `POST /api/v2/client/sites/2258091/visit-data?sv=6 HTTP/1.1 Host: in.hotjar.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain; charset=UTF-8 Content-Length: 129 Origin: https://letsdefend.io Connection: keep-alive Referer: https://letsdefend.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Sun, 05 Feb 2023 22:19:03 GMT content-type: application/json vary: Accept-Encoding cache-control: no-cache, no-store access-control-allow-origin: * access-control-allow-credentials: true access-control-max-age: 86400 content-encoding: br X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML