Report - docsend.com/view/s/rhti73riapwaciyj

Report Overview

Submitted URL
docsend.com/view/s/rhti73riapwaciyj
IP
3.220.57.224
ASN
#14618 AMAZON-AES
Submitted
2023-02-02 10:58:00
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
docsend.com	58938	2014-04-04T12:48:39Z	2023-03-13T08:14:34Z	6.3 kB	48 kB	3.232.242.170
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	60 kB	34.120.237.76
d.dropbox.com	1300	2012-11-25T21:07:07Z	2023-03-12T18:12:06Z	1.1 kB	1.1 kB	162.125.7.20
js.intercomcdn.com	2440	2020-02-19T12:43:00Z	2023-03-13T07:32:58Z	735 B	141 kB	54.230.111.118
cfl.dropboxstatic.com	13598	2017-01-30T05:53:29Z	2023-03-13T05:51:24Z	420 B	624 B	104.16.99.29
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.0 kB	5.3 kB	23.33.119.27
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.83.202.51
d5doxliz2zm8u.cloudfront.net	unknown	2021-11-04T18:17:10Z	2023-03-12T17:13:45Z	2.2 kB	138 kB	54.230.245.25
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.6 kB	93.184.220.29
www.dropbox.com	1994	2012-05-21T22:31:28Z	2023-03-13T07:55:48Z	3.4 kB	17 kB	162.125.71.18
l.evidon.com	8143	2020-08-25T21:57:20Z	2023-03-13T07:50:57Z	976 B	382 B	3.208.81.236
api-iam.intercom.io	2892	2018-08-02T22:07:54Z	2023-03-13T07:27:25Z	465 B	974 B	54.145.232.141
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	343 B	699 B	142.250.74.131
consent.dropbox.com	27413	2021-06-16T17:13:58Z	2023-03-12T23:42:49Z	631 B	1.4 kB	143.204.55.116
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.4 kB	4.0 kB	54.230.245.118
widget.intercom.io	2417	2020-07-20T14:16:46Z	2023-03-13T07:32:58Z	365 B	6.7 kB	54.230.111.53
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	340 B	963 B	172.64.155.188
d2qvtfnm75xrxf.cloudfront.net	unknown	2015-07-20T12:03:28Z	2023-03-12T17:13:45Z	3.6 kB	2.6 MB	143.204.42.157
c.evidon.com	1097	2017-03-09T22:38:50Z	2023-03-13T07:50:56Z	2.3 kB	71 kB	23.32.100.208
nexus-websocket-a.intercom.io	2137	2015-06-26T12:17:57Z	2023-03-13T05:38:27Z	729 B	281 B	34.237.73.95

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-02 10:58:15	high	162.125.71.18	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use
2023-02-02 10:58:17	high	162.125.7.20	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-4237ed1ce17a5afc7594086b3a66df63d41d61d28b424404a1f14ed06e951939.js	9.7 kB	2023-03-13	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-4237ed1ce17a5afc7594086b3a66df63d41d61d28b424404a1f14ed06e951939.js IP 143.204.42.157 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:57:28 Last Seen2023-03-13 21:00:33 Times Seen1 Hash 99d361c4cc59ff3e521fca2d03cabdce af3e75fe59f72c0796a7c0a4367ce4233154c6f1 4237ed1ce17a5afc7594086b3a66df63d41d61d28b424404a1f14ed06e951939 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 19:49:14 Times Seen37024216 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	c.evidon.com/sitenotice/3401/translations/en.js	41 kB	2023-03-08	2023-03-14
Pretty URL c.evidon.com/sitenotice/3401/translations/en.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:03:09 Last Seen2023-03-14 06:57:53 Times Seen1 Hash 92ddb3e3355b422d8513e225548bbf64 0d9a331620a7153aa3c70f20fbda54bdc7ed2b8c 83798cc9c57adec03a4547e9cec6a563696f0318ec6e0f885d325e226c34fe06 Loading...

	c.evidon.com/sitenotice/evidon-banner.js	13 kB	2023-03-09	2023-03-26
Pretty URL c.evidon.com/sitenotice/evidon-banner.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:10:59 Last Seen2023-03-26 13:12:38 Times Seen50 Hash 953f08dcce4b8af3f743056f673c8514 4e8acdae78b9b5f1c228cb28de23cca6ad5b3c4e f82f137e8e73611fa376c19abe5d768d8880cfce9082c8cb8a5819d3350bc881 Loading...

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/error_handling-823ac29f26cc28b1604a557f639f7f1ccf8f0a2f27529de9e6cc3f3088cb62e1.js	45 kB	2023-03-13	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/error_handling-823ac29f26cc28b1604a557f639f7f1ccf8f0a2f27529de9e6cc3f3088cb62e1.js IP 143.204.42.157 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:57:28 Last Seen2023-03-13 15:22:18 Times Seen1 Hash 3833c5a32aaf2a38d6a74690cc764e70 566015a1719d8bc325d9c7b74e9bf46bb34c6e43 823ac29f26cc28b1604a557f639f7f1ccf8f0a2f27529de9e6cc3f3088cb62e1 Loading...

	docsend.com/view/s/rhti73riapwaciyj	292 B	2023-03-12	2023-03-13
Pretty URL docsend.com/view/s/rhti73riapwaciyj IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:23:38 Last Seen2023-03-13 19:45:45 Times Seen1 Hash dd2d086a0c37ecbc9497ae2d2ad4f4d5 ceab8107721d747ee65a763f3ca99ab197f8f0a6 76450dd61645b78669c536ed1182e5951d2eeb7dc7c2bf18d172ad9b8bba3aef Loading...

	docsend.com/view/s/rhti73riapwaciyj	31 B	2023-03-07	2024-04-20
Pretty URL docsend.com/view/s/rhti73riapwaciyj IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-04-20 22:15:48 Times Seen468 Hash 997bc267a126a1af0b147e52ee2274ec 283f5eea465445d4a02d6b006954adabe6ae86b1 f37819c0a8f3d5b4aefb1c1a91f921d9b7b5f9377e136614329bc495b993087a Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js	218 kB	2023-03-13	2023-03-13
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js IP 104.16.99.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:46:02 Last Seen2023-03-13 15:11:50 Times Seen1 Hash c09157ad4df79ea30313688e19981ac2 2284f9ce2b52b5e356c96351ded93ce38627507a 84edf4212bc1a17eec7b00aaf7fcd3e36c62c47864fef0135067851724dadcbf Loading...

	c.evidon.com/sitenotice/3401/dropbox/settings.js	5.1 kB	2023-03-07	2023-03-14
Pretty URL c.evidon.com/sitenotice/3401/dropbox/settings.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-03-14 06:57:53 Times Seen1 Hash 7119db14253f426ac1ed52da3fd5d054 9377f384c543a5211174e97b4cec458e2a801d34 4a01a147c430ebeffa841da984db9622de37957eed294ed3dcf4fa4deb7422df Loading...

	docsend.com/view/s/rhti73riapwaciyj	77 B	2023-03-12	2024-02-05
Pretty URL docsend.com/view/s/rhti73riapwaciyj IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:13:33 Last Seen2024-02-05 11:03:35 Times Seen37 Hash ad3a2eb5789d7523efb35897620d6712 5eb67afc82f0179bb3f98a0efdf34b87c267827f 2ebe1a24d5c6baafa871bb8f135b7a9f128451f0e06c673a5b20bd15ce3781d1 Loading...

	www.dropbox.com/pithos/privacy_consent	8.4 kB	2023-03-13	2023-03-13
Pretty URL www.dropbox.com/pithos/privacy_consent IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:48:46 Last Seen2023-03-13 15:11:50 Times Seen1 Hash 1109f4067f063577f565304b2de41396 c2fec2f18baebb58501776b0111f64d897d5fb6d 19ec4d569b1a5d307dcdc90fc97df9ebb45b865fac6e254f11fa64c5eafbe68d Loading...

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	569 B	2023-03-07	2023-04-05
Pretty URL consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-04-05 02:11:39 Times Seen83 Hash 61b81b2411a67a89aad55835c4e864f2 623c4e487131583d402815eb75cfced9b694017d 929203495e37db6972ddc172e9664002093c6bb973da2ca7a5001c26d680d2de Loading...

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	75 kB	2023-03-09	2023-03-13
Pretty URL c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:15:50 Last Seen2023-03-13 19:09:27 Times Seen1 Hash b9539a2e77d15a946ad29fbada55c14c 01b157a8436cb78c9ff3364c629b5390429b0308 973e0be9ad095c6bea8d2a9b22df3acbc368ecb234823059ddac700ed103c593 Loading...

	widget.intercom.io/widget/lv6lji7h	19 kB	2023-03-13	2023-03-13
Pretty URL widget.intercom.io/widget/lv6lji7h IP 54.230.111.53 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:56:46 Last Seen2023-03-13 14:57:34 Times Seen1 Hash 87ac4d4b010efa9ca61649c0032d97ef db4057edb58a68dafac17fa9b12bff785c32219d 635334a73a54d83816dd12dcbe8fd5a37524625f3029a00644db378e982b0789 Loading...

	docsend.com/view/s/rhti73riapwaciyj	3.3 kB	2023-03-13	2023-03-13
Pretty URL docsend.com/view/s/rhti73riapwaciyj IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:57:28 Last Seen2023-03-13 14:57:28 Times Seen1 Hash def59001f0eb4a904b1d057acf3fef8f ed7c1d139b37222adb03fdfe3d0a72f8ace75744 ec27b39120958ba7e86e83a0780db59cd987586d68583aeed97f5c501235ec68 Loading...

	docsend.com/view/s/rhti73riapwaciyj	777 B	2023-03-07	2024-04-20
Pretty URL docsend.com/view/s/rhti73riapwaciyj IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-04-20 22:15:48 Times Seen487 Hash eed47e70bb30c26af1d2b05cb6cbb36e a6280e737500da85f94d5dd1b4bcf53e8ab7ebb6 33f828b1c1cc8d01a5365dda26f42257988e5ab755e9d1c9c06c8b650564b612 Loading...

	www.dropbox.com/pithos/privacy_consent_service	12 kB	2023-03-13	2023-03-13
Pretty URL www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:57:28 Last Seen2023-03-13 14:57:28 Times Seen1 Hash 931e0838944bdc8b1ceb244ef8d2605e 5cfcb414a9a252c6163ab6b415bb86b43596148e cfa2f62888baa753de24ad4c49f2f36936f24448d4804984f084cda3e2d44b34 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vfllph1M9.js	108 kB	2023-03-13	2023-03-13
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vfllph1M9.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:25:48 Last Seen2023-03-13 15:11:09 Times Seen1 Hash 96987533d4700e38006e30ad8fad9edb 3b784dec2308460a9f40585423936c4e54fc93ff fc677b17157c0d63f0f8a552aab9080d73c07aa4b1da0b5db178dc7e67ada14b Loading...

	c.evidon.com/sitenotice/3401/snthemes.js	125 kB	2023-03-07	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/snthemes.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2023-04-02 21:30:48 Times Seen64 Hash 0e8f664fca39681028b4b07b5be34f2d 7298f430eb83f9116df80423cf956d09d0e6f8c4 4f71436a97288b116c8b61d62030fa6549acb42827ca7f7aeaacab78132190a8 Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-23 19:44:48 Times Seen14259 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (70)

	URL	IP	Response	Size
	docsend.com/view/s/rhti73riapwaciyj	3.232.242.170	301 Moved Permanently	0 B
URL HTTP/1.1 docsend.com/view/s/rhti73riapwaciyj IP 3.232.242.170:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /view/s/rhti73riapwaciyj HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:48 GMT Content-Type: text/html Transfer-Encoding: chunked Location: https://docsend.com/view/s/rhti73riapwaciyj Via: 1.1 vegur`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7e05c8461bd2dc5a149f71e2c465ea29 705983959c887e243cb55a8a1796757b579ee977 4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17736 Expires: Thu, 02 Feb 2023 15:53:24 GMT Date: Thu, 02 Feb 2023 10:57:48 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 62de35a6c8e4efd7633fc5236b5b086f 6a92912a86dfcd0330d040cef06bef36889c76ab ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC" Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10660 Expires: Thu, 02 Feb 2023 13:55:28 GMT Date: Thu, 02 Feb 2023 10:57:48 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4224 Expires: Thu, 02 Feb 2023 12:08:12 GMT Date: Thu, 02 Feb 2023 10:57:48 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 02 Feb 2023 10:43:30 GMT content-type: application/json age: 858 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: YSyaUMP6ErjgE9SXdILVZogA35UsyD7cQtwZza9Aez/lyFncylr/x9EQWr0wxrMnzYQSgPebGxo= x-amz-request-id: BZ268S8HA019JFM6 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 02 Feb 2023 10:51:57 GMT age: 351 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 02 Feb 2023 10:57:48 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	172.64.155.188	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash e9aaa3c00d662e2f6b3c2ea9102c4775 7770c94dc1924906c9c4c7545734a78b3ae17e70 8f98804254dc781f74845e9b3a12592320b7d9bf4eab9dc1b7a1495b9c5805bc HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Thu, 02 Feb 2023 10:57:48 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Tue, 31 Jan 2023 03:57:44 GMT Expires: Tue, 07 Feb 2023 03:57:43 GMT Etag: "7770c94dc1924906c9c4c7545734a78b3ae17e70" Cache-Control: max-age=406194,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 793268774a06b512-OSL`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 02 Feb 2023 10:30:30 GMT age: 1638 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17961 Expires: Thu, 02 Feb 2023 15:57:10 GMT Date: Thu, 02 Feb 2023 10:57:49 GMT Connection: keep-alive`

	docsend.com/view/s/rhti73riapwaciyj	52.20.78.240	200 OK	13 kB
URL HTTP/1.1 docsend.com/view/s/rhti73riapwaciyj IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5642) Size 13 kB (13050 bytes) Hash 54368da585e30bcc23fc0666c1202f85 457c5af94e7b32c39757de894dcca91932116c88 6ff82cfd2b58394e4fff4ad79f7d5175674efa7a631250aa6ff3a849d9e2c436 HTTP Headers `GET /view/s/rhti73riapwaciyj HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:49 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"3072ead5b9f737b055838f5ab9e0889f" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-V30q3MDZgDnjXsdUYjFl8Q=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=A5JeWGD9y3mdwICGwfGB6Ori%2Fyi4RabcewqIYTTaFiMn9jAZ7NNl4kz%2BhgfpgA0Gq9sRPXIngTSNv%2Bou6IQmqCE%2FfWwKjtPvGWGNHw0%3D--sp2J1fA%2Bd3a16agd--IexTGbEyr6UCSg42GecxYw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 02 Feb 2024 10:57:48 GMT; SameSite=None; secure _dss_=6a38d7cfe67cfaedcd3287c70db49fe6; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None X-Request-Id: 80740179-ba26-498e-8a96-f8351a24c537 X-Runtime: 0.138404 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-263661053f1760213010288e1276a3ee24a9b9f752b8c26d317081ffeed40cba.css	143.204.42.157	200 OK	23 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-263661053f1760213010288e1276a3ee24a9b9f752b8c26d317081ffeed40cba.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 23 kB (22694 bytes) Hash 22d925055af19b3355f50787a3cd7c93 8a0be09b6997b7da7e7917d8b4b3840c1c9a1e62 d77756eac179f84da34000aeeb0d17593bac9a81a6db11b6bee3aed905831e7f HTTP Headers `GET /assets/javascripts/presentation-263661053f1760213010288e1276a3ee24a9b9f752b8c26d317081ffeed40cba.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 01 Feb 2023 21:18:39 GMT Last-Modified: Wed, 01 Feb 2023 20:59:11 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: C_iv0ShuFXGcC9wctaU4bHWnQMGf2pjC2belwOnSFAUIjtakFTaUpg== Age: 49150

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-4237ed1ce17a5afc7594086b3a66df63d41d61d28b424404a1f14ed06e951939.js	143.204.42.157	200 OK	3.0 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-4237ed1ce17a5afc7594086b3a66df63d41d61d28b424404a1f14ed06e951939.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (9565) Size 3.0 kB (3014 bytes) Hash 85e7189d2c5613770ffc9eabe0828b09 4f99670adf68c3488a58fb353cc5746b6e0b7ab3 50cc4a65689eb4db47ca8b70d964e28d46843ae018177d3ab979cd22df9faaa9 HTTP Headers `GET /assets/javascripts/langpacks/en-4237ed1ce17a5afc7594086b3a66df63d41d61d28b424404a1f14ed06e951939.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 01 Feb 2023 21:18:39 GMT Last-Modified: Wed, 01 Feb 2023 20:59:11 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: yl-CgcobwezTw7xfv3muYplz5GAUeZlzhTqP_xTbZ4kSFycTTGSF2A== Age: 49150

	d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css	143.204.42.157	200 OK	948 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type exported SGML document, ASCII text Size 948 B (948 bytes) Hash a7ace942f4f580ee5902c36fed888af9 ca1c01b03c6763b0f458af9eea82b8f00b430141 514da21f8d0805b785cf184f4beaa6bc62f6c6de58fd489f7d9f52e9087b62e0 HTTP Headers `GET /assets/ie_specific_hacks_v2.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 06:50:37 GMT Last-Modified: Wed, 01 Feb 2023 21:29:54 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 87AjIBMLqA_OqZlJYLet5EPdWc583RQw7s2qjTaVPQGacQVoCWWhRg== Age: 14832

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/error_handling-823ac29f26cc28b1604a557f639f7f1ccf8f0a2f27529de9e6cc3f3088cb62e1.js	143.204.42.157	200 OK	14 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/error_handling-823ac29f26cc28b1604a557f639f7f1ccf8f0a2f27529de9e6cc3f3088cb62e1.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (14736) Size 14 kB (13998 bytes) Hash ccfca84490a938bcaf3794572daf2f80 6d239ba9fccffab507cee791c6c6152b083f0092 52107224dbe2f1ebf024dd368c3099ac43814eeb40e2a6644380476182827428 HTTP Headers `GET /assets/javascripts/error_handling-823ac29f26cc28b1604a557f639f7f1ccf8f0a2f27529de9e6cc3f3088cb62e1.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 01 Feb 2023 21:18:39 GMT Last-Modified: Wed, 01 Feb 2023 20:59:11 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pHiHYapJFyBr-_zkbd3pu9faRhyQ5E7r9DheAJ4GibE6oShnEhFP7g== Age: 49150

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-d83a5b3bb30728b883a500a5f107c1ec0b1a001ff5d4ccd707e437e2aa162dea.js	143.204.42.157	200 OK	2.0 MB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-d83a5b3bb30728b883a500a5f107c1ec0b1a001ff5d4ccd707e437e2aa162dea.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 2.0 MB (1989810 bytes) Hash 14c55a43edbdfe74f08b34291bda7aa4 cf5c2873afe9406d16a57c696a562e1430b66684 92479b7d263b2522cea1869cf562cb004dcb3c59f0a3a4ec3664f7c33dbf6139 HTTP Headers `GET /assets/javascripts/presentation-d83a5b3bb30728b883a500a5f107c1ec0b1a001ff5d4ccd707e437e2aa162dea.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 01 Feb 2023 22:08:42 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Wed, 01 Feb 2023 21:52:22 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: oz1wpc6Uw32chScCpnA7swv4SbqyhEwNnNebnXqJt2eG_MIwrSrm6Q== Age: 46147

	d2qvtfnm75xrxf.cloudfront.net/assets/stylesheets/presentation-127c0903552938845ceddf4022fda0cdb9cccc974e02bf59527aec097652c2c1.css	143.204.42.157	200 OK	93 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/stylesheets/presentation-127c0903552938845ceddf4022fda0cdb9cccc974e02bf59527aec097652c2c1.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 93 kB (92858 bytes) Hash 54c8888eccd1f88a46d6083fdbe0754b 0f2719322d66156e8b5ec04537f0c41743fac40e dfb2398b56d9a6a743f31bd17e33b15cebd1995cd54e0518c68d5c71a16265a9 HTTP Headers `GET /assets/stylesheets/presentation-127c0903552938845ceddf4022fda0cdb9cccc974e02bf59527aec097652c2c1.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 01 Feb 2023 21:18:39 GMT Last-Modified: Wed, 01 Feb 2023 20:59:11 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: w56BOGnGyRdQ9Q9tGWDxSs7WKOARPDjH713J8dQ17ZUxYd2d8laJoA== Age: 49150

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash de49044c9365e16fec3a6d361cb94728 2b7b69c16de6fda1ae5206f92fe781ee07bd182a 6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 02 Feb 2023 10:57:49 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	35.83.202.51	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.83.202.51:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: MwtlMeXQN40jZ/TdEGMvUA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: BqrOn6nPqA+sx5rOcUIy7AD6tt0=`

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2	54.230.245.25	200 OK	43 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data Size 43 kB (43308 bytes) Hash 93b6f18ec99bcb7c3fa7ea570a75e240 60b9e3062fe532cbc18b897fac542c56a03544c7 43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db HTTP Headers GET /assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 43308 Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 02:47:17 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) Vary: Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: GgHuFm-3e5mhF4pUi5eNeze06aZiMuBx2H0zFU892lnAKDKAMuylHg== Age: 29432

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2	54.230.245.25	200 OK	46 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data Size 46 kB (46188 bytes) Hash dfc5e24cbc1b134e0c00c61e84ec999a d3b1a8ef1d0f6f9162986479252570525719f203 b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3 HTTP Headers GET /assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 46188 Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 01:50:15 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) Vary: Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Lk40luTUv7L9Cm70AE1d3GhMbLCj7GgV-zIrwU_6fZxYfRxpgPh41Q== Age: 32854

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4bf7c924a00d06f6a33f33a91554d977 e397d454b729753e014406596656378d542c0d7e 159a4a9927bcf2066262af6f3b0572c0a35045ba8ddc98e3eb141f288bcbcef3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5910 Cache-Control: max-age=102194 Content-Type: application/ocsp-response Date: Thu, 02 Feb 2023 10:57:50 GMT Etag: "63da6c4a-1d7" Expires: Fri, 03 Feb 2023 15:21:04 GMT Last-Modified: Wed, 01 Feb 2023 13:42:34 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4bf7c924a00d06f6a33f33a91554d977 e397d454b729753e014406596656378d542c0d7e 159a4a9927bcf2066262af6f3b0572c0a35045ba8ddc98e3eb141f288bcbcef3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5910 Cache-Control: max-age=102194 Content-Type: application/ocsp-response Date: Thu, 02 Feb 2023 10:57:50 GMT Etag: "63da6c4a-1d7" Expires: Fri, 03 Feb 2023 15:21:04 GMT Last-Modified: Wed, 01 Feb 2023 13:42:34 GMT Server: ECS (ska/F709) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15173 Expires: Thu, 02 Feb 2023 15:10:43 GMT Date: Thu, 02 Feb 2023 10:57:50 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15173 Expires: Thu, 02 Feb 2023 15:10:43 GMT Date: Thu, 02 Feb 2023 10:57:50 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type gzip compressed data, max compression\012- data Size 10 kB (10098 bytes) Hash dea41bc3259a1e51eb7f9f5b64b5581b 25f83d4d5dadb0b543c793f2348eff20b5aae8ae cd36759ba46d833ecf6f8469d03309c0ba98e5c9a0b0d796617264f017bb2249 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9221 x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frdTBFv5IAMFgqQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:12:07 GMT age: 45943 etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg	34.120.237.76	200 OK	2.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 2.5 kB (2530 bytes) Hash 5a1ddd54f3c344b36a26476a33ccfe20 3cc3a77f6a59cafed25fa0882e13644f4eebef50 65cef0476175fca421fef73419440b82dcb763879b79385f2cacc43f42b3237b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 2530 x-amzn-requestid: 3ce99c09-61b5-4a51-97ec-c40c443238ab x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: freplHVZoAMFz5A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dade3d-605687635e0a740e49ff78b9;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:48:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: TjYU3BsU2PsKUBuk4ZK6JOH3x9BBHltihOwtyFTZP7C1V6RdUGFDtg== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:25:20 GMT etag: "3cc3a77f6a59cafed25fa0882e13644f4eebef50" content-type: image/jpeg age: 45150 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg	34.120.237.76	200 OK	5.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.0 kB (5011 bytes) Hash 3c56d08c13f357f91a14309b48d75e88 739ff0319e25b99fbf69b6a1c12159d4dda7549b 7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5011 x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frc5JE0AIAMFn8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: zTIOb8GbYU3-38UBlsbhdREhQ4dwFrporBjb--FSNOdz9fmVjss-hg== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 09:25:18 GMT age: 5552 etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg	34.120.237.76	200 OK	5.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.4 kB (5356 bytes) Hash 7c823f1d6bf1c50d58eb263b85e6e37c a7b74d11494fb3254df907e5cc1eead070d84617 b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5356 x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frc5BEB6oAMFczg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:18:55 GMT age: 45535 etag: "a7b74d11494fb3254df907e5cc1eead070d84617" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg	34.120.237.76	200 OK	16 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 16 kB (15857 bytes) Hash 4bb3a6fba496d54cdbbccaf2b9600386 8e30002699e9fbf2047f9ac11a36d2175fc9c591 927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 15857 x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmJ2JGGWoAMFSLA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 07:28:37 GMT age: 12553 etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg	34.120.237.76	200 OK	15 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 15 kB (14593 bytes) Hash 0ceb09fa3caa0fcda4a6314141e2d019 d08f43956f6859e4c2385231bb5506262257445f a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 14593 x-amzn-requestid: e8b062cd-a2e6-4110-b97a-278c09aa3232 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frc5JE59oAMFx9A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadb6d-02cac6b3417a8d2b028b8ca2;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: mJxQBYHzPzTHN3jjom55KlSyicUPfqmpdriEWffRozt7jItlxS-TVA== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 05:01:28 GMT age: 21382 etag: "d08f43956f6859e4c2385231bb5506262257445f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	docsend.com/view/s/rhti73riapwaciyj/header_image	52.20.78.240	302 Found	483 B
URL HTTP/1.1 docsend.com/view/s/rhti73riapwaciyj/header_image IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document, ASCII text, with very long lines (560), with no line terminators Size 483 B (483 bytes) Hash 8b296a9964a12a0265e0efbfec8e433b 125ae7c11b1b6d4bd7e9e487fbac7ac959046004 258ed6c3e8fc4cce0c9d72908b59e5801d406a59976ae494f0df14e6e9520e75 HTTP Headers GET /view/s/rhti73riapwaciyj/header_image HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=A5JeWGD9y3mdwICGwfGB6Ori%2Fyi4RabcewqIYTTaFiMn9jAZ7NNl4kz%2BhgfpgA0Gq9sRPXIngTSNv%2Bou6IQmqCE%2FfWwKjtPvGWGNHw0%3D--sp2J1fA%2Bd3a16agd--IexTGbEyr6UCSg42GecxYw%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 302 Found Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:50 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Location: https://d2qvtfnm75xrxf.cloudfront.net/bundle_headers%2Fdefault_bundle_headers%2F6.jpg?Expires=1675335530&Signature=VY6E12OYN0cwX~a0FtEHG70T969NP5NA7xnijU85t-h2H7DYo7gu3LGkM3k4~jlLApvZTMEhPgkydykFRV1K~H7WGIG81Gu8hVymTAQX4daMGUA1ruQBGc39Id94ZKCAZ15jjt65gQs4AkbKYZx-6d5pQ33zF1oZZItMbDGUj-ILj1XpslPCD1-xMdpIt-ifUXJXF2AKHCWVSEG7ttJTSYvDsqr53qgWSjBT21-DqSBNawISxUvq33gp8ceWkqPdKt8lAF-j0BNJmJWASL~2R9gFQTY-a20M2NArH6N3k8v1kLOynzvPRykw~lhTZFKl5U3r1jTsCqy9CCbgG1l~bw__&Key-Pair-Id=K3IVFO0KFGPSF4 Cache-Control: no-cache Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-T7sQcLqBLa6S0LMcbqpK1A=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=QbX2pAt6N9ZM1IMDSATxYPekuBEtwqDDC7F4GsmDs2DqbdvKy2Rp%2FupFZUvIdmAY%2FBtqyzzadF0H%2BhIQs%2F4Yrk%2BMfgj2coA2o9EGa3A%3D--zR0WbCgV4nLzCiFd--en3oqV%2Bw98u1B1pbcQmzZg%3D%3D; domain=.docsend.com; path=/; expires=Fri, 02 Feb 2024 10:57:50 GMT; SameSite=None; secure X-Request-Id: 78969838-cfa7-4d1c-b521-b44f7a53658e X-Runtime: 0.040985 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2	54.230.245.25	200 OK	45 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 45008, version 1.66\012- data Size 45 kB (45008 bytes) Hash 38846f0a3b6bb0b9d1b4f21b61e57c54 8893fa19d5550ae165dcdee85935d67677e5888d 39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff HTTP Headers GET /assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 45008 Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 06:17:49 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) Vary: Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: o9gQlU8UiJccpf6RRIYiL_aVT84a0zIU7oCRIaMsg-ld0sfaPoDi3Q== Age: 16801

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4072 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-u14p0uYCmGE5h7zcLhDZ' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-u14p0uYCmGE5h7zcLhDZ' 'nonce-KiLhCtiSS3sJ7HMYHPNz' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTMzMTY4NjYxMzA1MjQxNzA3NDA0NTA0NjYwNzQwNjcxMzYzOTYx; expires=Tue, 01 Feb 2028 10:57:50 GMT; HttpOnly; Path=/; SameSite=None; Secure t=4dUNPDetK5WP_tzJDkc3cXDK; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:50 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=4dUNPDetK5WP_tzJDkc3cXDK; expires=Sun, 01 Feb 2026 10:57:50 GMT; Path=/; SameSite=None; Secure __Host-ss=eMNrOtnxRk; expires=Sun, 01 Feb 2026 10:57:50 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Tue, 01 Feb 2028 10:57:50 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Thu, 02 Feb 2023 10:57:50 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 08b097ba067e4181807bd51eec0ba08a X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4037 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-XFgomEUgPiE6nxs8flm/' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-XFgomEUgPiE6nxs8flm/' 'nonce-xjDIskzR2/RgJU5Ihwkt' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzMwNjUwNTY0MzgwOTcwNjY1NDc5MTE3Mzc5ODQ3NTQ3OTg2MzIw; expires=Tue, 01 Feb 2028 10:57:50 GMT; HttpOnly; Path=/; SameSite=None; Secure t=aRGbKbDShazM8OuMlq6GGzqQ; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:50 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=aRGbKbDShazM8OuMlq6GGzqQ; expires=Sun, 01 Feb 2026 10:57:50 GMT; Path=/; SameSite=None; Secure __Host-ss=JHWQpbf6_g; expires=Sun, 01 Feb 2026 10:57:50 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Tue, 01 Feb 2028 10:57:50 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Thu, 02 Feb 2023 10:57:50 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: a4cd9757e572449890a6db48426c9d85 X-Firefox-Spdy: h2

	docsend.com/metrics/events	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------40376157913915779981478160269 Content-Length: 1082 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=A5JeWGD9y3mdwICGwfGB6Ori%2Fyi4RabcewqIYTTaFiMn9jAZ7NNl4kz%2BhgfpgA0Gq9sRPXIngTSNv%2Bou6IQmqCE%2FfWwKjtPvGWGNHw0%3D--sp2J1fA%2Bd3a16agd--IexTGbEyr6UCSg42GecxYw%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:50 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-BYQJh6Kbc1a0zUN6S/5mzA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 256b2da9-f19c-4321-b23b-fbc1b0e89940 X-Runtime: 0.015774 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	docsend.com/view/s/rhti73riapwaciyj/doc_thumb/rtkq25jsvw2hvsuz?variant=350x350	52.20.78.240	404 Not Found	1.1 kB
URL HTTP/1.1 docsend.com/view/s/rhti73riapwaciyj/doc_thumb/rtkq25jsvw2hvsuz?variant=350x350 IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 1.1 kB (1099 bytes) Hash 2b2f33c972d6a06a905f34da7edcf7f6 e47483d5060ff255990ae88008f8b8c3d444f374 94c8268eece6b27b4fdf5fee0e2b6e6849b4ca6722397fb856e527e3c85531d1 HTTP Headers GET /view/s/rhti73riapwaciyj/doc_thumb/rtkq25jsvw2hvsuz?variant=350x350 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=A5JeWGD9y3mdwICGwfGB6Ori%2Fyi4RabcewqIYTTaFiMn9jAZ7NNl4kz%2BhgfpgA0Gq9sRPXIngTSNv%2Bou6IQmqCE%2FfWwKjtPvGWGNHw0%3D--sp2J1fA%2Bd3a16agd--IexTGbEyr6UCSg42GecxYw%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 404 Not Found Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:50 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-TfDOYUTjdGzb4dtNoQUNIQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=RrpanGpUt%2BHU9Wjd0rzocPWmmI9Eojv1kRC9ymqFE8FcfSCF95Pxc1v1nVracsDXIbS7OMhlz81cNCX6aGAf7ka10VU1Kuaze76K340%3D--2gW3E3UcpM%2FFHCfk--ss4l9Ho4DiwoP26CThXMOQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 02 Feb 2024 10:57:50 GMT; SameSite=None; secure X-Request-Id: ad91e049-e4b5-45eb-a64e-431425d61896 X-Runtime: 0.033122 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	docsend.com/view/s/rhti73riapwaciyj/doc_thumb/rx6ccpnitgvgqyk3?variant=350x350	52.20.78.240	404 Not Found	1.1 kB
URL HTTP/1.1 docsend.com/view/s/rhti73riapwaciyj/doc_thumb/rx6ccpnitgvgqyk3?variant=350x350 IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 1.1 kB (1099 bytes) Hash 2b2f33c972d6a06a905f34da7edcf7f6 e47483d5060ff255990ae88008f8b8c3d444f374 94c8268eece6b27b4fdf5fee0e2b6e6849b4ca6722397fb856e527e3c85531d1 HTTP Headers GET /view/s/rhti73riapwaciyj/doc_thumb/rx6ccpnitgvgqyk3?variant=350x350 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=A5JeWGD9y3mdwICGwfGB6Ori%2Fyi4RabcewqIYTTaFiMn9jAZ7NNl4kz%2BhgfpgA0Gq9sRPXIngTSNv%2Bou6IQmqCE%2FfWwKjtPvGWGNHw0%3D--sp2J1fA%2Bd3a16agd--IexTGbEyr6UCSg42GecxYw%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 404 Not Found Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:50 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-njVpMsUaO/JsOp+DfGloDg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=%2FPcd9UlftEzja8A%2FZF3OH0hJcpwfwiQe0cF%2BHxVthwF8%2F54JVPZ27b8TuqXjC71FARj%2By1UwbIK%2FVhi%2BNW5HvvC%2BlRg%2FUdl7WIv8zQY%3D--AnsysI01IKWUHrQw--NhKSoLZN1aHbR63W3r3uGg%3D%3D; domain=.docsend.com; path=/; expires=Fri, 02 Feb 2024 10:57:50 GMT; SameSite=None; secure X-Request-Id: 08d5ba03-431a-4635-98d9-5d1cc63ac888 X-Runtime: 0.036521 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	docsend.com/view/s/rhti73riapwaciyj/doc_thumb/zdnjgqx8g4jbf6t4?variant=350x350	52.20.78.240	404 Not Found	1.1 kB
URL HTTP/1.1 docsend.com/view/s/rhti73riapwaciyj/doc_thumb/zdnjgqx8g4jbf6t4?variant=350x350 IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 1.1 kB (1099 bytes) Hash 2b2f33c972d6a06a905f34da7edcf7f6 e47483d5060ff255990ae88008f8b8c3d444f374 94c8268eece6b27b4fdf5fee0e2b6e6849b4ca6722397fb856e527e3c85531d1 HTTP Headers GET /view/s/rhti73riapwaciyj/doc_thumb/zdnjgqx8g4jbf6t4?variant=350x350 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=A5JeWGD9y3mdwICGwfGB6Ori%2Fyi4RabcewqIYTTaFiMn9jAZ7NNl4kz%2BhgfpgA0Gq9sRPXIngTSNv%2Bou6IQmqCE%2FfWwKjtPvGWGNHw0%3D--sp2J1fA%2Bd3a16agd--IexTGbEyr6UCSg42GecxYw%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 404 Not Found Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:50 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-ql+VYtEmCQphbxjPtP8JKA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=KeHpR9fc7CSo2D4PzZ5HIlrpQb8sM%2F2j3J1fYmf9h9Nu8AL0jEW5Ulg2QM10X6xyICFlxV3kikdvhMnTlJyDQjHk1I4m00nbGe%2BI8Ns%3D--AWJbAeh2BhBE9B2H--DGyJFo%2FUsFdIUat%2F6sxQ6w%3D%3D; domain=.docsend.com; path=/; expires=Fri, 02 Feb 2024 10:57:50 GMT; SameSite=None; secure X-Request-Id: 36b6c9c8-bd26-4326-84db-bda344dd68b2 X-Runtime: 0.031882 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d5doxliz2zm8u.cloudfront.net/assets/content-text-ZM7DFLCS-9728840f3e10d5a96e4e61a0396463dc79b8f2596b664fc16ec34bd71fe37bad.svg	54.230.245.25	200 OK	544 B
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/content-text-ZM7DFLCS-9728840f3e10d5a96e4e61a0396463dc79b8f2596b664fc16ec34bd71fe37bad.svg IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (544), with no line terminators Size 544 B (544 bytes) Hash 59a660662ca48fef609650d3b44f63a4 8d4162a3f3cbf5bace151c366e33efb2f7ba21e6 9728840f3e10d5a96e4e61a0396463dc79b8f2596b664fc16ec34bd71fe37bad HTTP Headers `GET /assets/content-text-ZM7DFLCS-9728840f3e10d5a96e4e61a0396463dc79b8f2596b664fc16ec34bd71fe37bad.svg HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 544 Connection: keep-alive Server: nginx Last-Modified: Fri, 16 Dec 2022 23:47:03 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront) Date: Thu, 02 Feb 2023 03:07:47 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Xh3bGSCVHcazB5KOpHEs5kWGLnkG4aQIxZe7Mms0Sro04nqSdtEqQA== Age: 28203`

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	143.204.55.116	200 OK	854 B
URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.116:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 854 B (854 bytes) Hash dc63fb23d6563676b3090bae3f02ccde dd6c4202705f760dd5744caee7ccb31f703fc880 c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: t=C5Za5_umjrtOFTCQCTb3v3Ew; locale=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/html content-length: 854 last-modified: Tue, 06 Sep 2022 19:00:36 GMT x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ server: AmazonS3 date: Thu, 02 Feb 2023 07:04:16 GMT etag: "dc63fb23d6563676b3090bae3f02ccde" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: Li4lF-a37Nmn0MRG3RYLPc1yKD8qq-eoZN2jyeAk7DpUcURm2iKZdg== age: 21782 X-Firefox-Spdy: h2`

	d2qvtfnm75xrxf.cloudfront.net/bundle_headers%2Fdefault_bundle_headers%2F6.jpg?Expires=1675335530&Signature=VY6E12OYN0cwX~a0FtEHG70T969NP5NA7xnijU85t-h2H7DYo7gu3LGkM3k4~jlLApvZTMEhPgkydykFRV1K~H7WGIG81Gu8hVymTAQX4daMGUA1ruQBGc39Id94ZKCAZ15jjt65gQs4AkbKYZx-6d5pQ33zF1oZZItMbDGUj-ILj1XpslPCD1-xMdpIt-ifUXJXF2AKHCWVSEG7ttJTSYvDsqr53qgWSjBT21-DqSBNawISxUvq33gp8ceWkqPdKt8lAF-j0BNJmJWASL~2R9gFQTY-a20M2NArH6N3k8v1kLOynzvPRykw~lhTZFKl5U3r1jTsCqy9CCbgG1l~bw__&Key-Pair-Id=K3IVFO0KFGPSF4	143.204.42.157	200 OK	478 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/bundle_headers%2Fdefault_bundle_headers%2F6.jpg?Expires=1675335530&Signature=VY6E12OYN0cwX~a0FtEHG70T969NP5NA7xnijU85t-h2H7DYo7gu3LGkM3k4~jlLApvZTMEhPgkydykFRV1K~H7WGIG81Gu8hVymTAQX4daMGUA1ruQBGc39Id94ZKCAZ15jjt65gQs4AkbKYZx-6d5pQ33zF1oZZItMbDGUj-ILj1XpslPCD1-xMdpIt-ifUXJXF2AKHCWVSEG7ttJTSYvDsqr53qgWSjBT21-DqSBNawISxUvq33gp8ceWkqPdKt8lAF-j0BNJmJWASL~2R9gFQTY-a20M2NArH6N3k8v1kLOynzvPRykw~lhTZFKl5U3r1jTsCqy9CCbgG1l~bw__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 6016x1504, components 3\012- data Size 478 kB (478337 bytes) Hash 25ec65ab8ddf7f2068bee463a5521086 dccf079893c188e16bd675494185151bc6f1f207 a281bf05a206c7093b4d63288ea5d643ce2d3114c2d26d47bc49d85fd4ffb4c9 HTTP Headers GET /bundle_headers%2Fdefault_bundle_headers%2F6.jpg?Expires=1675335530&Signature=VY6E12OYN0cwX~a0FtEHG70T969NP5NA7xnijU85t-h2H7DYo7gu3LGkM3k4~jlLApvZTMEhPgkydykFRV1K~H7WGIG81Gu8hVymTAQX4daMGUA1ruQBGc39Id94ZKCAZ15jjt65gQs4AkbKYZx-6d5pQ33zF1oZZItMbDGUj-ILj1XpslPCD1-xMdpIt-ifUXJXF2AKHCWVSEG7ttJTSYvDsqr53qgWSjBT21-DqSBNawISxUvq33gp8ceWkqPdKt8lAF-j0BNJmJWASL~2R9gFQTY-a20M2NArH6N3k8v1kLOynzvPRykw~lhTZFKl5U3r1jTsCqy9CCbgG1l~bw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: image/jpeg Content-Length: 478337 Connection: keep-alive Last-Modified: Wed, 23 Jun 2021 18:43:38 GMT x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 Date: Thu, 02 Feb 2023 06:14:31 GMT ETag: "25ec65ab8ddf7f2068bee463a5521086" X-Cache: Hit from cloudfront Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 0qaPQYGXfucCv7c0p6-b6eZi6fXKNfxnN_j3DfvMkLYMYIxiurzleA== Age: 17000`

	docsend.com/favicon-196x196.png	52.20.78.240	200 OK	4.1 kB
URL HTTP/1.1 docsend.com/favicon-196x196.png IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4131 bytes) Hash 6664c3890e329c7609151e0081f5e7cb 6216d5de79d8b245676a86f8b862880837345e2a 8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568 HTTP Headers GET /favicon-196x196.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=KeHpR9fc7CSo2D4PzZ5HIlrpQb8sM%2F2j3J1fYmf9h9Nu8AL0jEW5Ulg2QM10X6xyICFlxV3kikdvhMnTlJyDQjHk1I4m00nbGe%2BI8Ns%3D--AWJbAeh2BhBE9B2H--DGyJFo%2FUsFdIUat%2F6sxQ6w%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:51 GMT Content-Type: image/png Content-Length: 4131 Last-Modified: Wed, 01 Feb 2023 21:29:54 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur`

	docsend.com/favicon-16x16.png	52.20.78.240	200 OK	393 B
URL HTTP/1.1 docsend.com/favicon-16x16.png IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 393 B (393 bytes) Hash a8c678babc40c4ac6d8c70fc560094d4 66002c0719ddbd75c837f5a939689ea6df13b6dc a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=KeHpR9fc7CSo2D4PzZ5HIlrpQb8sM%2F2j3J1fYmf9h9Nu8AL0jEW5Ulg2QM10X6xyICFlxV3kikdvhMnTlJyDQjHk1I4m00nbGe%2BI8Ns%3D--AWJbAeh2BhBE9B2H--DGyJFo%2FUsFdIUat%2F6sxQ6w%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:51 GMT Content-Type: image/png Content-Length: 393 Last-Modified: Wed, 01 Feb 2023 21:29:54 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur`

	docsend.com/metrics/properties	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/properties IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/properties HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: mreAJEs/og0s85zQJq9/TIRghAgW3wnzdHwPBGOUMgcEtCS+wnllVYQeB/ovNpCJH0Buen/4hzyIZwSkmU/MtA== X-Requested-With: XMLHttpRequest Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/s/rhti73riapwaciyj Cookie: _v_=KeHpR9fc7CSo2D4PzZ5HIlrpQb8sM%2F2j3J1fYmf9h9Nu8AL0jEW5Ulg2QM10X6xyICFlxV3kikdvhMnTlJyDQjHk1I4m00nbGe%2BI8Ns%3D--AWJbAeh2BhBE9B2H--DGyJFo%2FUsFdIUat%2F6sxQ6w%3D%3D; _dss_=6a38d7cfe67cfaedcd3287c70db49fe6 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Thu, 02 Feb 2023 10:57:51 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-+2D8RvUsVk+bVeBUMKUrwQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 42573603-c8d2-4241-a1cd-2d723c6f350e X-Runtime: 0.023028 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d.dropbox.com/crashdash/proxy/sessions	162.125.7.20	200 OK	0 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.7.20:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type Referer: https://docsend.com/ Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At access-control-allow-methods: POST access-control-allow-origin: * content-length: 0 date: Thu, 02 Feb 2023 10:57:51 GMT server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 5fb6985e6c2a426b9b787ef4af188b6e X-Firefox-Spdy: h2`

	c.evidon.com/sitenotice/3401/snthemes.js	23.32.100.208	200 OK	37 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type data Size 37 kB (36859 bytes) Hash 5c9b8a13c492ca33feb0fd3db09ff77f 081f4cfc8ac6a9b4b31610ded2a07deb14449fb2 4632dfccd797b15a6573fec3742c5ab024303697b23d43acbac5f5e6102f9700 HTTP Headers `GET /sitenotice/3401/snthemes.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398" last-modified: Fri, 29 Jul 2022 21:56:25 GMT server: AkamaiNetStorage content-encoding: gzip expires: Sat, 04 Feb 2023 10:57:51 GMT date: Thu, 02 Feb 2023 10:57:51 GMT content-length: 5695 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	23.32.100.208	200 OK	20 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (65536), with no line terminators Size 20 kB (19598 bytes) Hash 3b00a7ecdaf4bff1751456e89ce005f4 2645658a488474676e934af157bf2164f8edeb6b b8fb30b4d1bdb4738bf563d499929ccdadda6a489d88faf959f40166268ed300 HTTP Headers `GET /sitenotice/evidon-sitenotice-tag.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "b9539a2e77d15a946ad29fbada55c14c:1671558610.191575" last-modified: Tue, 20 Dec 2022 17:50:10 GMT server: AkamaiNetStorage content-encoding: gzip expires: Sat, 04 Feb 2023 10:57:51 GMT date: Thu, 02 Feb 2023 10:57:51 GMT content-length: 19598 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settings.js	23.32.100.208	301 Moved Permanently	0 B
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sitenotice/3401/dropbox/settings.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 301 Moved Permanently server: AkamaiGHost content-length: 0 location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js date: Thu, 02 Feb 2023 10:57:51 GMT vary: Origin cache-control: max-age=432000, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2`

	c.evidon.com/sitenotice/3401/translations/en.js	23.32.100.208	200 OK	6.4 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (41349), with no line terminators Size 6.4 kB (6406 bytes) Hash 7cdb0408336768c3c8697de7fe062fed 455d1237f3256aba83c5102b10212f8bc767bf22 f5c051f3693f6e0a92a0576bbdc74de8c243ec02c5232e49c919999fe1c79ece HTTP Headers `GET /sitenotice/3401/translations/en.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "92ddb3e3355b422d8513e225548bbf64:1664899591.798772" last-modified: Tue, 04 Oct 2022 16:06:31 GMT server: AkamaiNetStorage content-encoding: gzip expires: Sat, 04 Feb 2023 10:57:51 GMT date: Thu, 02 Feb 2023 10:57:51 GMT content-length: 6406 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settingsV2.js	23.32.100.208	200 OK	1.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (5082), with no line terminators Size 1.7 kB (1691 bytes) Hash 181b62cb4ca1877b5952d8864d1ddb04 ebae59485369852733c2648e907227b2a7666bc5 425ce9a30e4efd92bce6af1d1c99a07a276691e091e66dccb9c50746a1830e0f HTTP Headers `GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "7119db14253f426ac1ed52da3fd5d054:1662485692.434043" last-modified: Tue, 06 Sep 2022 17:34:52 GMT server: AkamaiNetStorage content-encoding: gzip expires: Sat, 04 Feb 2023 10:57:51 GMT date: Thu, 02 Feb 2023 10:57:51 GMT content-length: 1691 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-banner.js	23.32.100.208	200 OK	3.5 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (12607), with no line terminators Size 3.5 kB (3535 bytes) Hash 304674456118422bd448366f7bb05879 c6549199a4fb419c05a3513238a89002307034b9 29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068 HTTP Headers `GET /sitenotice/evidon-banner.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "953f08dcce4b8af3f743056f673c8514:1671558610.744236" last-modified: Tue, 20 Dec 2022 17:50:10 GMT server: AkamaiNetStorage content-encoding: gzip expires: Sat, 04 Feb 2023 10:57:51 GMT date: Thu, 02 Feb 2023 10:57:51 GMT content-length: 3535 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	d.dropbox.com/crashdash/proxy/sessions	162.125.7.20	202 Accepted	21 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.7.20:0 ASN #19679 DROPBOX File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash 1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a HTTP Headers POST /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a Bugsnag-Payload-Version: 1 Bugsnag-Sent-At: 2023-02-02T10:58:15.523Z Content-Length: 514 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 202 Accepted access-control-allow-origin: * alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 bugsnag-session-uuid: dd920fd3-a1a6-486a-a29d-b6b83d770a1f content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none' content-type: application/json date: Thu, 02 Feb 2023 10:57:51 GMT referrer-policy: strict-origin-when-cross-origin via: 1.1 google x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 21 server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 7b78aba24ca845b2bca523dc4a307134 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4072 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-yYAi0yIfRX+WIISr6t4i' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-yYAi0yIfRX+WIISr6t4i' 'nonce-GYZILv1nnjeg7ilB3Noy' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjE2OTUyODk4NDQ3MDQxMzk4Mjk1Mjk1MjQyOTE5MzI3Mjk3NTQz; expires=Tue, 01 Feb 2028 10:57:51 GMT; HttpOnly; Path=/; SameSite=None; Secure t=g0s-csl2PdUpDxa8pwPzbFPN; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:51 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=g0s-csl2PdUpDxa8pwPzbFPN; expires=Sun, 01 Feb 2026 10:57:51 GMT; Path=/; SameSite=None; Secure __Host-ss=HCjYbXI7ks; expires=Sun, 01 Feb 2026 10:57:51 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Tue, 01 Feb 2028 10:57:51 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Thu, 02 Feb 2023 10:57:51 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 74787f9657d6431e973f0f31bc3967d8 X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 1edc2596e886008166be664d2e28bd57 422e8e259367193c31040a3f6d65b30d76a5eb56 fcad73afa11b3c731f7e131dec92ed2c9422593cd82e942f049f6377ed85efa1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=107206 Date: Thu, 02 Feb 2023 10:57:52 GMT Etag: "63da7d45-1d7" Expires: Fri, 03 Feb 2023 16:44:38 GMT Last-Modified: Wed, 01 Feb 2023 14:55:01 GMT Server: ECS (bsa/EB1F) X-Cache: Miss from cloudfront Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ThpjYbC_TpDpLgpJsXBMSnoi-FSSe1RNhwB70q_7oMWqgg33QOrB_A== Age: 6577

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 1edc2596e886008166be664d2e28bd57 422e8e259367193c31040a3f6d65b30d76a5eb56 fcad73afa11b3c731f7e131dec92ed2c9422593cd82e942f049f6377ed85efa1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=105888 Date: Thu, 02 Feb 2023 10:57:52 GMT Etag: "63da7d45-1d7" Expires: Fri, 03 Feb 2023 16:22:40 GMT Last-Modified: Wed, 01 Feb 2023 14:55:01 GMT Server: ECS (bsa/EB13) X-Cache: Miss from cloudfront Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Q9CUGdICtYkgwtXZgSG4aqOfrNLPPil-jor3nNIt8jnwlcwmSF1iew== Age: 5259

	l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F	3.208.81.236	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F IP 3.208.81.236:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Thu, 02 Feb 2023 10:57:52 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F	3.208.81.236	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F IP 3.208.81.236:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Thu, 02 Feb 2023 10:57:52 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	widget.intercom.io/widget/lv6lji7h	54.230.111.53	200 OK	6.0 kB
URL HTTP/2 widget.intercom.io/widget/lv6lji7h IP 54.230.111.53:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (18637), with no line terminators Size 6.0 kB (6044 bytes) Hash bfdd9d48f6b7d4aef0eb1064ab81c9d4 3edb5b59e380c9ef77994290b7b48700c5e4f5cf d389ee4db17e35f1a59095a6a17b6814e5c665849eb47a9549d19cbd66aa6d17 HTTP Headers `GET /widget/lv6lji7h HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 6044 last-modified: Thu, 02 Feb 2023 10:21:35 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: mOjlQW8aDDo5ksQ0Z1qNtnQ2Gua59a2B accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 10:41:47 GMT cache-control: max-age=900, s-maxage=900, public etag: "bfdd9d48f6b7d4aef0eb1064ab81c9d4" x-cache: Error from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: KNaI-uZZcBw1VIcoyGhEzIb2ByzpwEj3BF7Nb2Fn0Ou3l9qagGjPjQ== age: 1066 vary: Origin X-Firefox-Spdy: h2

	js.intercomcdn.com/frame.79eaa9e6.js	54.230.111.118	200 OK	140 kB
URL HTTP/2 js.intercomcdn.com/frame.79eaa9e6.js IP 54.230.111.118:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 140 kB (139579 bytes) Hash 37fff475f51d097657aee0db88d2c48a 6554aa0bd3634a1db6cb1cf01eaa9f23a5dd99a3 5ab11f20af1c21ee4c1718396dafa566ed9dcf877341670306ef7729f89fc771 HTTP Headers `GET /frame.79eaa9e6.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 139579 date: Thu, 02 Feb 2023 10:21:41 GMT last-modified: Thu, 02 Feb 2023 10:20:08 GMT etag: "37fff475f51d097657aee0db88d2c48a" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000, s-maxage=7200, public content-encoding: gzip x-amz-version-id: kg4mNJmWfQfa4Y8S.cmEalLIrXRbu1db accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: jNAm2dit8lV0RnaSzLe87FhQM1UVBeVwpuNq3XU7YqBSs1pF6s0exQ== age: 2172 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 621c9d51fc1626afc8205b3f1a813900 7fdc3b13737de934c1fc8f3cd7c6561c1ba45be3 2eb462fe8ec2d915d27d1d047f43114f6a2c97ba173f16b9148ba71547d1e53e HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Thu, 02 Feb 2023 10:57:52 GMT Last-Modified: Thu, 02 Feb 2023 09:28:11 GMT Server: ECS (bsa/EB1B) X-Cache: Miss from cloudfront Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: IbVcg5IcUbKF5LCrxXaW8WGG0qG5U9DMV8nHdBavmSQiO2MDso23Kw== Age: 5381`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 7a84cbade3ea59c2392e301faba996d8 e345947fdc8cb39bd755ff633e346f3adcb718fe 46a7a69a8947a5fa736a88fd29ae904c021567b55185a6bf2298469751cd11f7 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=169573 Date: Thu, 02 Feb 2023 10:57:52 GMT Etag: "63db8593-1d7" Expires: Sat, 04 Feb 2023 10:04:05 GMT Last-Modified: Thu, 02 Feb 2023 09:42:43 GMT Server: ECS (nyb/1D11) X-Cache: Miss from cloudfront Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: HCvEBxrcCWKKVEUiEa4oZihccFxnBT32-Q8PfRaY4trZTOQHIBEOew== Age: 1282

	nexus-websocket-a.intercom.io/pubsub/5-mjL49BEPAcRoWIn4YO240642UY4zYk_1CWEUD4ZIaz491Mpwu4nQ7Skms2P4rvCpZ_iZ7CmRTCNwM174qgKe61GEp_WOLabWd0e2?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined	34.237.73.95	101 Switching Protocols	0 B
URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-mjL49BEPAcRoWIn4YO240642UY4zYk_1CWEUD4ZIaz491Mpwu4nQ7Skms2P4rvCpZ_iZ7CmRTCNwM174qgKe61GEp_WOLabWd0e2?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined IP 34.237.73.95:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-mjL49BEPAcRoWIn4YO240642UY4zYk_1CWEUD4ZIaz491Mpwu4nQ7Skms2P4rvCpZ_iZ7CmRTCNwM174qgKe61GEp_WOLabWd0e2?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://docsend.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: MgqCD+9JTwSMDhahBfuMSA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Thu, 02 Feb 2023 10:57:53 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: +lScW0e8XcwOah26byiOQc8r5hI= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4072 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-RELtK0/nDskrUfurk3+f' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-RELtK0/nDskrUfurk3+f' 'nonce-o9KK1eKNyr6aG59OSySW' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjIxMjI4OTc4ODcxNzQ2NzczNzY5NTA4NzM3ODAxMzU4MDMzOTQ%3D; expires=Tue, 01 Feb 2028 10:57:53 GMT; HttpOnly; Path=/; SameSite=None; Secure t=jXpIfkfwjeH7mXkZvJtEUDC8; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:53 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=jXpIfkfwjeH7mXkZvJtEUDC8; expires=Sun, 01 Feb 2026 10:57:53 GMT; Path=/; SameSite=None; Secure __Host-ss=9HJnHCBm28; expires=Sun, 01 Feb 2026 10:57:53 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Tue, 01 Feb 2028 10:57:53 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Thu, 02 Feb 2023 10:57:53 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 7f629e05991344ce902cd0a812aa2a9b X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent	162.125.71.18	200 OK	0 B
URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: gvc=MzIxMDY4NDI0OTA0MjQzMzQzNjgyODI0Njk1MjEwNjgyNjkzMzc4; t=C5Za5_umjrtOFTCQCTb3v3Ew; __Host-js_csrf=C5Za5_umjrtOFTCQCTb3v3Ew; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK cache-control: no-cache,no-cache, no-store content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-yt5o40DWKskPUODVnHnl' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-yt5o40DWKskPUODVnHnl' 'nonce-rNg94hw1l+m+46kh4jXi' referrer-policy: strict-origin-when-cross-origin set-cookie: t=C5Za5_umjrtOFTCQCTb3v3Ew; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:50 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=C5Za5_umjrtOFTCQCTb3v3Ew; expires=Sun, 01 Feb 2026 10:57:50 GMT; Path=/; SameSite=None; Secure __Host-ss=HD2hNIpFbg; expires=Sun, 01 Feb 2026 10:57:50 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChBAOv8Q0XfkQ3AXM82J8UPGEK6u7p4GGi5BRnFkM3o3N1ZSQ0ZMNXRQSGxqZ3JDMk05Q3FJS0V6Ym5SMWUwYWQxSWpPNGdR; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 38 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Thu, 02 Feb 2023 10:57:49 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 7714f2fb13ad44b59ab0368654314cfc X-Firefox-Spdy: h2

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js	104.16.99.29	200 OK	0 B
URL HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js IP 104.16.99.29:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 02 Feb 2023 10:57:50 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Wed, 18 Jan 2023 04:57:33 GMT x-dropbox-request-id: ec456f95d53725edb88a560cd9b26fca x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 1273784 server: cloudflare cf-ray: 79326880a8cdb4e8-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent_service	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=MzIxMDY4NDI0OTA0MjQzMzQzNjgyODI0Njk1MjEwNjgyNjkzMzc4; t=C5Za5_umjrtOFTCQCTb3v3Ew; __Host-js_csrf=C5Za5_umjrtOFTCQCTb3v3Ew; locale=en; __Host-logged-out-session=ChBAOv8Q0XfkQ3AXM82J8UPGEK6u7p4GGi5BRnFkM3o3N1ZSQ0ZMNXRQSGxqZ3JDMk05Q3FJS0V6Ym5SMWUwYWQxSWpPNGdR Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 307 Temporary Redirect cache-control: no-cache,no-cache, no-store content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service referrer-policy: strict-origin-when-cross-origin set-cookie: t=C5Za5_umjrtOFTCQCTb3v3Ew; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:51 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=C5Za5_umjrtOFTCQCTb3v3Ew; expires=Sun, 01 Feb 2026 10:57:51 GMT; Path=/; SameSite=None; Secure __Host-ss=HD2hNIpFbg; expires=Sun, 01 Feb 2026 10:57:51 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Thu, 02 Feb 2023 10:57:50 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 9798656f99924787b5695513718e1794 X-Firefox-Spdy: h2

	js.intercomcdn.com/vendor.093ba5d6.js	54.230.111.118	200 OK	0 B
URL HTTP/2 js.intercomcdn.com/vendor.093ba5d6.js IP 54.230.111.118:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vendor.093ba5d6.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 108273 last-modified: Wed, 01 Feb 2023 15:55:25 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: NpPoCVUCd4vkMm81e_W27_i8UjXhREgF accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 09:26:07 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "b07617332a2da4edc9e0f73e8c835864" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: aBq1mH13mcEvuj9kJiyTlhWV7spiqltYqlKLjdd2VF4puxa45BWgbQ== age: 5506 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	54.145.232.141	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 54.145.232.141:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 358 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 02 Feb 2023 10:57:53 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1675335480 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13319 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: 9b46fb32ec10021b53ad61e5bcbab3aac757ca38 x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 0002gn9rq9islemmlbdg access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"5a0eada7579320a3d22c3bc41a0c7a21" x-runtime: 0.322016 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0c75d874912a7b35f X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers `GET /pithos/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 307 Temporary Redirect cache-control: no-cache,no-cache, no-store content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzIxMDY4NDI0OTA0MjQzMzQzNjgyODI0Njk1MjEwNjgyNjkzMzc4; expires=Tue, 01 Feb 2028 10:57:49 GMT; HttpOnly; Path=/; SameSite=None; Secure t=C5Za5_umjrtOFTCQCTb3v3Ew; Domain=dropbox.com; expires=Sun, 01 Feb 2026 10:57:49 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=C5Za5_umjrtOFTCQCTb3v3Ew; expires=Sun, 01 Feb 2026 10:57:49 GMT; Path=/; SameSite=None; Secure __Host-ss=HD2hNIpFbg; expires=Sun, 01 Feb 2026 10:57:49 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Tue, 01 Feb 2028 10:57:49 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Thu, 02 Feb 2023 10:57:49 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 73119f6d41b64ab08eb69e564c415e72 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL